Test ID:	1.3.6.1.4.1.25623.1.0.840745
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-1202-1)
Summary:	The remote host is missing an update for the 'linux-ti-omap4' package(s) announced via the USN-1202-1 advisory.
Description:	Summary: The remote host is missing an update for the 'linux-ti-omap4' package(s) announced via the USN-1202-1 advisory. Vulnerability Insight: Dan Rosenberg discovered that several network ioctls did not clear kernel memory correctly. A local user could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-3296, CVE-2010-3297) Brad Spengler discovered that stack memory for new a process was not correctly calculated. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-3858) Dan Rosenberg discovered that the Linux kernel TIPC implementation contained multiple integer signedness errors. A local attacker could exploit this to gain root privileges. (CVE-2010-3859) Dan Rosenberg discovered that the CAN protocol on 64bit systems did not correctly calculate the size of certain buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. (CVE-2010-3874) Nelson Elhage discovered that the Linux kernel IPv4 implementation did not properly audit certain bytecodes in netlink messages. A local attacker could exploit this to cause the kernel to hang, leading to a denial of service. (CVE-2010-3880) Dan Rosenberg discovered that IPC structures were not correctly initialized on 64bit systems. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4073) Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. (CVE-2010-4075, CVE-2010-4076, CVE-2010-4077) Dan Rosenberg discovered that the RME Hammerfall DSP audio interface driver did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4080, CVE-2010-4081) Dan Rosenberg discovered that the VIA video driver did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4082) Dan Rosenberg discovered that the semctl syscall did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4083) James Bottomley discovered that the ICP vortex storage array controller driver did not validate certain sizes. A local attacker on a 64bit system could exploit this to crash the kernel, leading to a denial of service. (CVE-2010-4157) Dan Rosenberg discovered that the Linux kernel L2TP implementation contained multiple integer signedness errors. A local attacker could exploit this to crash the kernel, or possibly gain root privileges. (CVE-2010-4160) Dan Rosenberg discovered that certain iovec operations did not calculate page counts correctly. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4162) Dan Rosenberg discovered that the SCSI subsystem did not ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'linux-ti-omap4' package(s) on Ubuntu 10.10. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3296 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console http://www.securityfocus.com/archive/1/520102/100/0/threaded 41440 http://secunia.com/advisories/41440 42758 http://secunia.com/advisories/42758 42884 http://secunia.com/advisories/42884 43221 http://www.securityfocus.com/bid/43221 46397 http://secunia.com/advisories/46397 ADV-2011-0070 http://www.vupen.com/english/advisories/2011/0070 ADV-2011-0298 http://www.vupen.com/english/advisories/2011/0298 DSA-2126 http://www.debian.org/security/2010/dsa-2126 RHSA-2011:0017 http://www.redhat.com/support/errata/RHSA-2011-0017.html SUSE-SA:2010:050 http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00003.html SUSE-SA:2010:054 http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html SUSE-SA:2011:007 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html USN-1041-1 http://www.ubuntu.com/usn/USN-1041-1 [linux-kernel] 20100911 [PATCH] drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack memory http://lkml.org/lkml/2010/9/11/170 [oss-security] 20100914 CVE request: kernel: numerous infoleaks http://www.openwall.com/lists/oss-security/2010/09/14/2 [oss-security] 20100914 Re: CVE request: kernel: numerous infoleaks http://www.openwall.com/lists/oss-security/2010/09/14/7 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=49c37c0334a9b85d30ab3d6b5d1acb05ef2ef6de http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.36-rc5 http://www.vmware.com/security/advisories/VMSA-2011-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=633149 Common Vulnerability Exposure (CVE) ID: CVE-2010-3297 43161 http://secunia.com/advisories/43161 43229 http://www.securityfocus.com/bid/43229 ADV-2011-0280 http://www.vupen.com/english/advisories/2011/0280 MDVSA-2011:051 http://www.mandriva.com/security/advisories?name=MDVSA-2011:051 RHSA-2010:0771 http://www.redhat.com/support/errata/RHSA-2010-0771.html USN-1057-1 http://www.ubuntu.com/usn/USN-1057-1 [linux-kernel] 20100911 [PATCH] drivers/net/eql.c: prevent reading uninitialized stack memory http://lkml.org/lkml/2010/9/11/168 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=44467187dc22fdd33a1a06ea0ba86ce20be3fe3c https://bugzilla.redhat.com/show_bug.cgi?id=633145 Common Vulnerability Exposure (CVE) ID: CVE-2010-3858 15619 http://www.exploit-db.com/exploits/15619 42789 http://secunia.com/advisories/42789 44301 http://www.securityfocus.com/bid/44301 ADV-2011-0024 http://www.vupen.com/english/advisories/2011/0024 MDVSA-2010:257 http://www.mandriva.com/security/advisories?name=MDVSA-2010:257 RHSA-2010:0958 http://www.redhat.com/support/errata/RHSA-2010-0958.html RHSA-2011:0004 http://www.redhat.com/support/errata/RHSA-2011-0004.html [oss-security] 20101021 CVE request: kernel: setup_arg_pages: diagnose excessive argument size http://www.openwall.com/lists/oss-security/2010/10/21/1 [oss-security] 20101022 Re: CVE request: kernel: setup_arg_pages: diagnose excessive argument size http://www.openwall.com/lists/oss-security/2010/10/22/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1b528181b2ffa14721fb28ad1bd539fe1732c583 http://grsecurity.net/~spender/64bit_dos.c http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36 https://bugzilla.redhat.com/show_bug.cgi?id=645222 Common Vulnerability Exposure (CVE) ID: CVE-2010-3859 42963 http://secunia.com/advisories/42963 44354 http://www.securityfocus.com/bid/44354 ADV-2011-0168 http://www.vupen.com/english/advisories/2011/0168 MDVSA-2011:029 http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 RHSA-2011:0162 http://www.redhat.com/support/errata/RHSA-2011-0162.html [netdev] 20101021 TIPC security issues http://marc.info/?l=linux-netdev&m=128770476511716&w=2 [netdev] 20101027 Re: [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() http://www.spinics.net/lists/netdev/msg145248.html [netdev] 20101027 [PATCH 0/4] RFC: tipc int vs size_t fixes http://www.spinics.net/lists/netdev/msg145247.html [netdev] 20101027 [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() http://www.spinics.net/lists/netdev/msg145263.html [netdev] 20101027 [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() http://www.spinics.net/lists/netdev/msg145265.html [netdev] 20101027 [PATCH 3/4] tipc: Update arguments to use size_t for iovec array sizes http://www.spinics.net/lists/netdev/msg145262.html [netdev] 20101027 [PATCH 4/4] tipc: Fix bugs in sending of large amounts of byte-stream data http://www.spinics.net/lists/netdev/msg145264.html [netdev] 20101028 Re: [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() http://www.spinics.net/lists/netdev/msg145352.html [oss-security] 20101022 CVE request: kernel: heap overflow in TIPC http://www.openwall.com/lists/oss-security/2010/10/22/2 [oss-security] 20101022 Re: CVE request: kernel: heap overflow in TIPC http://www.openwall.com/lists/oss-security/2010/10/22/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=253eacc070b114c2ec1f81b067d2fed7305467b0 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8acfe468b0384e834a303f08ebc4953d72fb690a http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2 https://bugzilla.redhat.com/show_bug.cgi?id=645867 Common Vulnerability Exposure (CVE) ID: CVE-2010-3874 42745 http://secunia.com/advisories/42745 42778 http://secunia.com/advisories/42778 42801 http://secunia.com/advisories/42801 42890 http://secunia.com/advisories/42890 42932 http://secunia.com/advisories/42932 ADV-2010-3321 http://www.vupen.com/english/advisories/2010/3321 ADV-2011-0012 http://www.vupen.com/english/advisories/2011/0012 ADV-2011-0124 http://www.vupen.com/english/advisories/2011/0124 FEDORA-2010-18983 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052513.html RHSA-2011:0007 http://www.redhat.com/support/errata/RHSA-2011-0007.html SUSE-SA:2011:001 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html SUSE-SA:2011:002 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html SUSE-SA:2011:004 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html [netdev] 20101102 [SECURITY] CAN info leak/minor heap overflow http://www.spinics.net/lists/netdev/msg145791.html [netdev] 20101110 can-bcm: fix minor heap overflow http://www.spinics.net/lists/netdev/msg146469.html [oss-security] 20101103 CVE request: kernel: CAN information leak http://openwall.com/lists/oss-security/2010/11/03/3 [oss-security] 20101104 Re: CVE request: kernel: CAN information leak http://openwall.com/lists/oss-security/2010/11/04/4 [oss-security] 20101220 CVE request: kernel: CAN information leak, 2nd attempt http://openwall.com/lists/oss-security/2010/12/20/2 [oss-security] 20101220 Re: CVE request: kernel: CAN information leak, 2nd attempt http://openwall.com/lists/oss-security/2010/12/20/3 http://openwall.com/lists/oss-security/2010/12/20/4 http://openwall.com/lists/oss-security/2010/12/20/5 http://openwall.com/lists/oss-security/2010/12/21/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0597d1b99fcfc2c0eada09a698f85ed413d4ba84 https://bugzilla.redhat.com/show_bug.cgi?id=649695 Common Vulnerability Exposure (CVE) ID: CVE-2010-3880 42126 http://secunia.com/advisories/42126 44665 http://www.securityfocus.com/bid/44665 [netdev] 20101103 [PATCH 2/2] inet_diag: Make sure we actually run the same bytecode we audited. http://www.spinics.net/lists/netdev/msg145899.html [oss-security] 20101104 CVE request: kernel: logic error in INET_DIAG bytecode auditing http://openwall.com/lists/oss-security/2010/11/04/9 [oss-security] 20101105 Re: CVE request: kernel: logic error in INET_DIAG bytecode auditing http://openwall.com/lists/oss-security/2010/11/05/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=22e76c849d505d87c5ecf3d3e6742a65f0ff4860 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc2 https://bugzilla.redhat.com/show_bug.cgi?id=651264 Common Vulnerability Exposure (CVE) ID: CVE-2010-4073 BugTraq ID: 45073 http://www.securityfocus.com/bid/45073 Bugtraq: 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console (Google Search) Debian Security Information: DSA-2126 (Google Search) http://lkml.org/lkml/2010/10/6/492 http://www.openwall.com/lists/oss-security/2010/10/07/1 http://www.openwall.com/lists/oss-security/2010/10/25/3 http://secunia.com/advisories/43291 http://securityreason.com/securityalert/8366 SuSE Security Announcement: SUSE-SA:2010:060 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html SuSE Security Announcement: SUSE-SA:2011:001 (Google Search) SuSE Security Announcement: SUSE-SA:2011:004 (Google Search) SuSE Security Announcement: SUSE-SA:2011:007 (Google Search) SuSE Security Announcement: SUSE-SA:2011:008 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html http://www.vupen.com/english/advisories/2011/0375 Common Vulnerability Exposure (CVE) ID: CVE-2010-4075 BugTraq ID: 43806 http://www.securityfocus.com/bid/43806 http://lkml.indiana.edu/hypermail//linux/kernel/1009.1/03388.html http://www.openwall.com/lists/oss-security/2010/09/25/2 http://www.openwall.com/lists/oss-security/2010/10/06/6 Common Vulnerability Exposure (CVE) ID: CVE-2010-4076 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=d281da7ff6f70efca0553c288bb883e8605b3862 http://lkml.org/lkml/2010/9/15/389 Common Vulnerability Exposure (CVE) ID: CVE-2010-4077 BugTraq ID: 45059 http://www.securityfocus.com/bid/45059 http://lkml.indiana.edu/hypermail//linux/kernel/1009.1/03387.html http://securityreason.com/securityalert/8129 Common Vulnerability Exposure (CVE) ID: CVE-2010-4080 BugTraq ID: 45058 http://www.securityfocus.com/bid/45058 BugTraq ID: 45063 http://www.securityfocus.com/bid/45063 http://lkml.org/lkml/2010/9/25/41 SuSE Security Announcement: SUSE-SA:2011:002 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2010-4081 Common Vulnerability Exposure (CVE) ID: CVE-2010-4082 BugTraq ID: 43817 http://www.securityfocus.com/bid/43817 http://lkml.indiana.edu/hypermail//linux/kernel/1009.1/03392.html Common Vulnerability Exposure (CVE) ID: CVE-2010-4083 BugTraq ID: 43809 http://www.securityfocus.com/bid/43809 http://www.spinics.net/lists/mm-commits/msg80234.html Common Vulnerability Exposure (CVE) ID: CVE-2010-4157 43291 44648 http://www.securityfocus.com/bid/44648 ADV-2011-0375 SUSE-SA:2010:060 SUSE-SA:2011:008 [linux-scsi] 20101008 [patch] gdth: integer overflow in ioctl http://ns3.spinics.net/lists/linux-scsi/msg47361.html [oss-security] 20101108 CVE request: kernel: gdth: integer overflow in ioc_general() http://openwall.com/lists/oss-security/2010/11/09/1 [oss-security] 20101108 Re: CVE request: kernel: gdth: integer overflow in ioc_general() http://openwall.com/lists/oss-security/2010/11/09/3 [oss-security] 20101109 Re: CVE request: kernel: gdth: integer overflow in ioc_general() http://openwall.com/lists/oss-security/2010/11/09/4 http://openwall.com/lists/oss-security/2010/11/09/5 [oss-security] 20101110 Re: CVE request: kernel: gdth: integer overflow in ioc_general() http://openwall.com/lists/oss-security/2010/11/10/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f63ae56e4e97fb12053590e41a4fa59e7daa74a4 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.1 https://bugzilla.redhat.com/show_bug.cgi?id=651147 Common Vulnerability Exposure (CVE) ID: CVE-2010-4160 43056 http://secunia.com/advisories/43056 44762 http://www.securityfocus.com/bid/44762 ADV-2011-0213 http://www.vupen.com/english/advisories/2011/0213 SUSE-SA:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00007.html [netdev] 20101031 [SECURITY] L2TP send buffer allocation size overflows http://www.spinics.net/lists/netdev/msg145673.html [oss-security] 20101110 CVE request: kernel: L2TP send buffer allocation size overflows http://openwall.com/lists/oss-security/2010/11/10/5 [oss-security] 20101110 Re: CVE request: kernel: L2TP send buffer allocation size overflows http://openwall.com/lists/oss-security/2010/11/10/16 [oss-security] 20101124 Re: CVE request: kernel: L2TP send buffer allocation size overflows http://openwall.com/lists/oss-security/2010/11/24/12 http://openwall.com/lists/oss-security/2010/11/24/4 http://openwall.com/lists/oss-security/2010/11/24/5 http://openwall.com/lists/oss-security/2010/11/24/6 http://xorl.wordpress.com/2010/11/11/cve-2010-4160-linux-kernel-l2tp-integer-overflows/ https://bugzilla.redhat.com/show_bug.cgi?id=651892 Common Vulnerability Exposure (CVE) ID: CVE-2010-4162 44793 http://www.securityfocus.com/bid/44793 [oss-security] 20101110 CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/10/18 [oss-security] 20101112 Re: CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/12/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cb4644cac4a2797afc847e6c92736664d4b0ea34 https://bugzilla.redhat.com/show_bug.cgi?id=652529 Common Vulnerability Exposure (CVE) ID: CVE-2010-4163 [oss-security] 20101129 Re: CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/29/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9284bcf4e335e5f18a8bc7b26461c33ab60d0689 https://bugzilla.redhat.com/show_bug.cgi?id=652957 Common Vulnerability Exposure (CVE) ID: CVE-2010-4169 44861 http://www.securityfocus.com/bid/44861 [oss-security] 20101115 CVE request: kernel: perf bug http://marc.info/?l=oss-security&m=128979684911295&w=2 [oss-security] 20101115 Re: CVE request: kernel: perf bug http://marc.info/?l=oss-security&m=128984344103497&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=63bfd7384b119409685a17d5c58f0b56e5dc03da https://bugzilla.redhat.com/show_bug.cgi?id=651671 kernel-perfeventmmap-dos(63316) https://exchange.xforce.ibmcloud.com/vulnerabilities/63316 Common Vulnerability Exposure (CVE) ID: CVE-2010-4175 44921 http://www.securityfocus.com/bid/44921 [linux-netdev] 20101117 [PATCH] Integer overflow in RDS cmsg handling http://marc.info/?l=linux-netdev&m=129001184803080&w=2 [oss-security] 20101117 CVE request: kernel: integer overflow in RDS http://www.openwall.com/lists/oss-security/2010/11/17/8 [oss-security] 20101118 Re: CVE request: kernel: integer overflow in RDS http://www.openwall.com/lists/oss-security/2010/11/18/1 kernel-rdscmsgrdmaargs-dos(64618) https://exchange.xforce.ibmcloud.com/vulnerabilities/64618 Common Vulnerability Exposure (CVE) ID: CVE-2010-4242 45014 http://www.securityfocus.com/bid/45014 [linux-kernel] 20101007 Peculiar stuff in hci_ath3k/badness in hci_uart https://lkml.org/lkml/2010/10/7/255 http://git.kernel.org/linus/c19483cc5e56ac5e22dd19cf25ba210ab1537773 http://xorl.wordpress.com/2010/12/01/cve-2010-4242-linux-kernel-bluetooth-hci-uart-invalid-pointer-access/ https://bugzilla.redhat.com/show_bug.cgi?id=641410 kernel-hciuartttyopen-dos(64617) https://exchange.xforce.ibmcloud.com/vulnerabilities/64617 Common Vulnerability Exposure (CVE) ID: CVE-2010-4243 45004 http://www.securityfocus.com/bid/45004 [linux-kernel] 20100827 [PATCH] exec argument expansion can inappropriately trigger OOM-killer http://lkml.org/lkml/2010/8/27/429 [linux-kernel] 20100830 Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer http://lkml.org/lkml/2010/8/29/206 http://lkml.org/lkml/2010/8/30/138 http://lkml.org/lkml/2010/8/30/378 [linux-kernel] 20101130 [PATCH 1/2] exec: make argv/envp memory visible to oom-killer http://linux.derkeiler.com/Mailing-Lists/Kernel/2010-11/msg13278.html [oss-security] 20101122 CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads http://openwall.com/lists/oss-security/2010/11/22/6 [oss-security] 20101122 Re: CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads http://openwall.com/lists/oss-security/2010/11/22/15 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3c77f845722158206a7209c45ccddc264d19319c http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 https://bugzilla.redhat.com/show_bug.cgi?id=625688 linux-kernel-execve-dos(64700) https://exchange.xforce.ibmcloud.com/vulnerabilities/64700 Common Vulnerability Exposure (CVE) ID: CVE-2010-4248 45028 http://www.securityfocus.com/bid/45028 [oss-security] 20101123 CVE request: kernel: posix-cpu-timers: workaround to suppress the problems with mt exec http://www.openwall.com/lists/oss-security/2010/11/23/2 [oss-security] 20101124 Re: CVE request: kernel: posix-cpu-timers: workaround to suppress the problems with mt exec http://www.openwall.com/lists/oss-security/2010/11/24/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e0a70217107e6f9844628120412cb27bb4cea194 https://bugzilla.redhat.com/show_bug.cgi?id=656264 Common Vulnerability Exposure (CVE) ID: CVE-2010-4256 [oss-security] 20101130 CVE request: kernel: pipe_fcntl local DoS http://openwall.com/lists/oss-security/2010/11/30/6 [oss-security] 20101130 Re: CVE request: kernel: pipe_fcntl local DoS http://openwall.com/lists/oss-security/2010/11/30/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c66fb347946ebdd5b10908866ecc9fa05ee2cf3d Common Vulnerability Exposure (CVE) ID: CVE-2010-4565 BugTraq ID: 44661 http://www.securityfocus.com/bid/44661 https://bugzilla.redhat.com/show_bug.cgi?id=664544 http://www.spinics.net/lists/netdev/msg145796.html http://www.spinics.net/lists/netdev/msg146270.html http://www.spinics.net/lists/netdev/msg146468.html Common Vulnerability Exposure (CVE) ID: CVE-2010-4649 46073 http://www.securityfocus.com/bid/46073 RHSA-2011:0927 http://rhn.redhat.com/errata/RHSA-2011-0927.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7182afea8d1afd432a17c18162cc3fd441d0da93 https://bugzilla.redhat.com/show_bug.cgi?id=667916 Common Vulnerability Exposure (CVE) ID: CVE-2010-4655 45972 http://www.securityfocus.com/bid/45972 USN-1146-1 http://www.ubuntu.com/usn/USN-1146-1 [linux-kernel] 20101007 [PATCH] net: clear heap allocations for privileged ethtool actions https://lkml.org/lkml/2010/10/7/297 [oss-security] 20110124 CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/24/9 [oss-security] 20110124 Re: CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/25/3 [oss-security] 20110125 Re: CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/25/4 http://openwall.com/lists/oss-security/2011/01/25/5 [oss-security] 20110128 Re: CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/28/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b00916b189d13a615ff05c9242201135992fcda3 https://bugzilla.redhat.com/show_bug.cgi?id=672428 Common Vulnerability Exposure (CVE) ID: CVE-2010-4656 46069 http://www.securityfocus.com/bid/46069 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3ed780117dbe5acb64280d218f0347f238dafed0 https://bugzilla.redhat.com/show_bug.cgi?id=672420 Common Vulnerability Exposure (CVE) ID: CVE-2010-4668 BugTraq ID: 45660 http://www.securityfocus.com/bid/45660 http://lkml.org/lkml/2010/11/29/70 http://lkml.org/lkml/2010/11/29/68 http://openwall.com/lists/oss-security/2010/11/30/4 http://openwall.com/lists/oss-security/2010/11/30/7 XForce ISS Database: linux-blkrqmapuseriov-dos(64496) https://exchange.xforce.ibmcloud.com/vulnerabilities/64496 Common Vulnerability Exposure (CVE) ID: CVE-2011-0463 http://oss.oracle.com/pipermail/ocfs2-devel/2011-February/007846.html http://secunia.com/advisories/43966 Common Vulnerability Exposure (CVE) ID: CVE-2011-0521 1025195 http://www.securitytracker.com/id?1025195 43009 http://secunia.com/advisories/43009 45986 http://www.securityfocus.com/bid/45986 [oss-security] 20110125 Linux kernel av7110 negative array offset http://openwall.com/lists/oss-security/2011/01/24/2 [oss-security] 20110125 Re: Linux kernel av7110 negative array offset http://openwall.com/lists/oss-security/2011/01/25/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cb26a24ee9706473f31d34cc259f4dcf45cd0644 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.38-rc2 kernel-av7110ca-privilege-escalation(64988) https://exchange.xforce.ibmcloud.com/vulnerabilities/64988 Common Vulnerability Exposure (CVE) ID: CVE-2011-0695 43693 http://secunia.com/advisories/43693 46839 http://www.securityfocus.com/bid/46839 [linux-rdma] 20110223 [PATCH 1/2] rdma/cm: Fix crash in request handlers http://www.spinics.net/lists/linux-rdma/msg07447.html [linux-rdma] 20110223 [PATCH 2/2] ib/cm: Bump reference count on cm_id before invoking callback http://www.spinics.net/lists/linux-rdma/msg07448.html [oss-security] 20110311 CVE-2011-0695 kernel: panic in ib_cm:cm_work_handler http://www.openwall.com/lists/oss-security/2011/03/11/1 kernel-infiniband-dos(66056) https://exchange.xforce.ibmcloud.com/vulnerabilities/66056 Common Vulnerability Exposure (CVE) ID: CVE-2011-0711 46417 http://www.securityfocus.com/bid/46417 70950 http://osvdb.org/70950 [oss-security] 20110216 CVE request - kernel: xfs infoleak http://openwall.com/lists/oss-security/2011/02/16/4 [oss-security] 20110216 Re: CVE request - kernel: xfs infoleak http://openwall.com/lists/oss-security/2011/02/16/10 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3a3675b7f23f83ca8c67c9c2b6edf707fd28d1ba http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git3.log https://bugzilla.redhat.com/show_bug.cgi?id=677260 https://patchwork.kernel.org/patch/555461/ Common Vulnerability Exposure (CVE) ID: CVE-2011-0712 46419 http://www.securityfocus.com/bid/46419 [oss-security] 20110216 Re: kernel: ALSA: caiaq - Fix possible string-buffer overflow http://www.openwall.com/lists/oss-security/2011/02/16/11 http://www.openwall.com/lists/oss-security/2011/02/16/12 [oss-security] 20110216 kernel: ALSA: caiaq - Fix possible string-buffer overflow http://www.openwall.com/lists/oss-security/2011/02/16/5 http://git.kernel.org/?p=linux/kernel/git/tiwai/sound-2.6.git%3Ba=commit%3Bh=eaae55dac6b64c0616046436b294e69fc5311581 http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.38-rc4-next-20110215.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=677881 kernel-usbdevice-bo(65461) https://exchange.xforce.ibmcloud.com/vulnerabilities/65461 Common Vulnerability Exposure (CVE) ID: CVE-2011-0726 BugTraq ID: 47791 http://www.securityfocus.com/bid/47791 https://lkml.org/lkml/2011/3/11/380 http://www.spinics.net/lists/mm-commits/msg82726.html RedHat Security Advisories: RHSA-2011:0833 http://rhn.redhat.com/errata/RHSA-2011-0833.html Common Vulnerability Exposure (CVE) ID: CVE-2011-1010 1025126 http://www.securitytracker.com/id?1025126 20110223 [PRE-SA-2011-01] Multiple Linux kernel vulnerabilities in partition handling code of LDM and MAC partition tables http://www.securityfocus.com/archive/1/516615/100/0/threaded 46492 http://www.securityfocus.com/bid/46492 8115 http://securityreason.com/securityalert/8115 [oss-security] 20110222 CVE request: kernel: fs/partitions: validate map_count in mac partition tables http://openwall.com/lists/oss-security/2011/02/22/3 [oss-security] 20110222 Re: CVE request: kernel: fs/partitions: validate map_count in mac partition tables http://openwall.com/lists/oss-security/2011/02/22/11 http://openwall.com/lists/oss-security/2011/02/22/15 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fa7ea87a057958a8b7926c1a60a3ca6d696328ed http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37.2 http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt https://bugzilla.redhat.com/show_bug.cgi?id=679282 kernel-map-dos(65643) https://exchange.xforce.ibmcloud.com/vulnerabilities/65643 Common Vulnerability Exposure (CVE) ID: CVE-2011-1012 1025127 http://www.securitytracker.com/id?1025127 46512 http://www.securityfocus.com/bid/46512 [mm-commits] 20110222 + ldm-corrupted-partition-table-can-cause-kernel-oops.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg82429.html [oss-security] 20110223 CVE request: kernel: Corrupted LDM partition table issues http://openwall.com/lists/oss-security/2011/02/23/4 [oss-security] 20110223 Re: CVE request: kernel: Corrupted LDM partition table issues http://openwall.com/lists/oss-security/2011/02/23/21 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=294f6cf48666825d23c9372ef37631232746e40d http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git6.log Common Vulnerability Exposure (CVE) ID: CVE-2011-1013 47639 http://www.securityfocus.com/bid/47639 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1922756124ddd53846877416d92ba4a802bc658f http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38 http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/pci/drm/drm_irq.c http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/pci/drm/drm_irq.c.diff?r1=1.41%3Br2=1.42%3Bf=h https://bugzilla.redhat.com/show_bug.cgi?id=679925 kernel-drmioctl-priv-escalation(67199) https://exchange.xforce.ibmcloud.com/vulnerabilities/67199 Common Vulnerability Exposure (CVE) ID: CVE-2011-1016 46557 http://www.securityfocus.com/bid/46557 [oss-security] 20110224 CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/24/3 [oss-security] 20110224 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/24/11 [oss-security] 20110225 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fff1ce4dc6113b6fdc4e3a815ca5fd229408f8ef http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.38-rc5 https://bugzilla.redhat.com/show_bug.cgi?id=680000 kernel-atiradeon-sec-bypass(65691) https://exchange.xforce.ibmcloud.com/vulnerabilities/65691 Common Vulnerability Exposure (CVE) ID: CVE-2011-1017 BugTraq ID: 46512 Bugtraq: 20110223 [PRE-SA-2011-01] Multiple Linux kernel vulnerabilities in partition handling code of LDM and MAC partition tables (Google Search) http://openwall.com/lists/oss-security/2011/02/23/16 http://openwall.com/lists/oss-security/2011/02/24/4 http://openwall.com/lists/oss-security/2011/02/24/14 http://securitytracker.com/id?1025128 http://secunia.com/advisories/43716 http://secunia.com/advisories/43738 Common Vulnerability Exposure (CVE) ID: CVE-2011-1019 [oss-security] 20110225 Re: CVE request: kernel: CAP_SYS_MODULE bypass via CAP_NET_ADMIN http://www.openwall.com/lists/oss-security/2011/02/25/1 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8909c9ad8ff03611c9c96c9a92656213e4bb495b https://bugzilla.redhat.com/show_bug.cgi?id=680360 https://github.com/torvalds/linux/commit/8909c9ad8ff03611c9c96c9a92656213e4bb495b Common Vulnerability Exposure (CVE) ID: CVE-2011-1020 20110122 Proc filesystem and SUID-Binaries http://seclists.org/fulldisclosure/2011/Jan/421 43496 http://secunia.com/advisories/43496 46567 http://www.securityfocus.com/bid/46567 8107 http://securityreason.com/securityalert/8107 [linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/414 https://lkml.org/lkml/2011/2/7/474 [linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/368 [linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/404 https://lkml.org/lkml/2011/2/7/466 [linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/10/21 https://lkml.org/lkml/2011/2/9/417 [oss-security] 20110224 CVE request: kernel: /proc/$pid/ leaks contents across setuid exec http://openwall.com/lists/oss-security/2011/02/24/18 [oss-security] 20110225 Re: CVE request: kernel: /proc/$pid/ leaks contents across setuid exec http://openwall.com/lists/oss-security/2011/02/25/2 http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/ kernel-procpid-security-bypass(65693) https://exchange.xforce.ibmcloud.com/vulnerabilities/65693 Common Vulnerability Exposure (CVE) ID: CVE-2011-1044 BugTraq ID: 46488 http://www.securityfocus.com/bid/46488 RedHat Security Advisories: RHSA-2011:0927 XForce ISS Database: kernel-ibuverbspollcq-info-disclosure(65563) https://exchange.xforce.ibmcloud.com/vulnerabilities/65563 Common Vulnerability Exposure (CVE) ID: CVE-2011-1078 RHSA-2011:0833 RHSA-2012:1156 http://rhn.redhat.com/errata/RHSA-2012-1156.html [oss-security] 20110301 Re: CVE request: kernel: two bluetooth and one ebtables infoleaks/DoSes http://www.openwall.com/lists/oss-security/2011/03/01/10 http://downloads.avaya.com/css/P8/documents/100145416 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c4c896e1471aec3b004a693c689f60be3b17ac86 https://bugzilla.redhat.com/show_bug.cgi?id=681259 https://github.com/torvalds/linux/commit/c4c896e1471aec3b004a693c689f60be3b17ac86 Common Vulnerability Exposure (CVE) ID: CVE-2011-1079 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=43629f8f5ea32a998d06d1bb41eefa0e821ff573 http://packetstormsecurity.com/files/153799/Kernel-Live-Patch-Security-Notice-LSN-0053-1.html https://bugzilla.redhat.com/show_bug.cgi?id=681260 https://github.com/torvalds/linux/commit/43629f8f5ea32a998d06d1bb41eefa0e821ff573 Common Vulnerability Exposure (CVE) ID: CVE-2011-1080 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d846f71195d57b0bbb143382647c2c6638b04c5a https://bugzilla.redhat.com/show_bug.cgi?id=681262 https://github.com/torvalds/linux/commit/d846f71195d57b0bbb143382647c2c6638b04c5a Common Vulnerability Exposure (CVE) ID: CVE-2011-1082 [linux-kernel] 20110205 [PATCH] epoll: Prevent deadlock through unsafe ->f_op->poll() calls. https://lkml.org/lkml/2011/2/5/220 [oss-security] 20110301 CVE request: kernel: Multiple DoS issues in epoll http://openwall.com/lists/oss-security/2011/03/02/1 [oss-security] 20110302 Re: CVE request: kernel: Multiple DoS issues in epoll http://openwall.com/lists/oss-security/2011/03/02/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=22bacca48a1755f79b7e0f192ddb9fbb7fc6e64e https://bugzilla.redhat.com/show_bug.cgi?id=681575 Common Vulnerability Exposure (CVE) ID: CVE-2011-1090 1025336 http://securitytracker.com/id?1025336 SUSE-SU-2015:0812 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html [oss-security] 20110307 CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/2 [oss-security] 20110307 Re: CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e9e3d724e2145f5039b423c290ce2b2c3d8f94bc https://bugzilla.redhat.com/show_bug.cgi?id=682641 Common Vulnerability Exposure (CVE) ID: CVE-2011-1093 46793 http://www.securityfocus.com/bid/46793 [oss-security] 20110308 CVE request: kernel: dccp: fix oops on Reset after close http://openwall.com/lists/oss-security/2011/03/08/4 [oss-security] 20110308 Re: CVE request: kernel: dccp: fix oops on Reset after close http://openwall.com/lists/oss-security/2011/03/08/19 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=720dc34bbbe9493c7bd48b2243058b4e447a929d https://bugzilla.redhat.com/show_bug.cgi?id=682954 Common Vulnerability Exposure (CVE) ID: CVE-2011-1160 [oss-security] 20110315 Re: CVE requests - kernel: tpm infoleaks http://www.openwall.com/lists/oss-security/2011/03/15/13 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1309d7afbed112f0e8e90be9af975550caa0076b https://bugzilla.redhat.com/show_bug.cgi?id=684671 https://github.com/torvalds/linux/commit/1309d7afbed112f0e8e90be9af975550caa0076b Common Vulnerability Exposure (CVE) ID: CVE-2011-1163 1025225 http://securitytracker.com/id?1025225 20110317 [PRE-SA-2011-02] Information disclosure vulnerability in the OSF partition handling code of the Linux kernel http://www.securityfocus.com/archive/1/517050 46878 http://www.securityfocus.com/bid/46878 8189 http://securityreason.com/securityalert/8189 [mm-commits] 20110314 + fs-partitions-osfc-corrupted-osf-partition-table-can-cause-information-disclosure.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg82737.html [oss-security] 20110315 CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure http://openwall.com/lists/oss-security/2011/03/15/9 [oss-security] 20110315 Re: CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure http://openwall.com/lists/oss-security/2011/03/15/14 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1eafbfeb7bdf59cfe173304c76188f3fd5f1fd05 http://www.pre-cert.de/advisories/PRE-SA-2011-02.txt https://bugzilla.redhat.com/show_bug.cgi?id=688021 Common Vulnerability Exposure (CVE) ID: CVE-2011-1169 [oss-security] 20110318 CVE request: kernel: AudioScience HPI driver http://openwall.com/lists/oss-security/2011/03/18/1 [oss-security] 20110318 Re: CVE request: kernel: AudioScience HPI driver http://openwall.com/lists/oss-security/2011/03/18/2 http://git.kernel.org/?p=linux/kernel/git/tiwai/sound-2.6.git%3Ba=commit%3Bh=4a122c10fbfe9020df469f0f669da129c5757671 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.1 https://bugzilla.redhat.com/show_bug.cgi?id=688898 Common Vulnerability Exposure (CVE) ID: CVE-2011-1170 8278 http://securityreason.com/securityalert/8278 8282 http://securityreason.com/securityalert/8282 [netfilter-devel] 20110310 [PATCH] ipv4: netfilter: arp_tables: fix infoleak to userspace http://marc.info/?l=netfilter-devel&m=129978081009955&w=2 [oss-security] 20110318 CVE request: kernel: netfilter & econet infoleaks http://www.openwall.com/lists/oss-security/2011/03/18/15 [oss-security] 20110321 Re: CVE request: kernel: netfilter & econet infoleaks http://www.openwall.com/lists/oss-security/2011/03/21/1 http://www.openwall.com/lists/oss-security/2011/03/21/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=42eab94fff18cb1091d3501cd284d6bd6cc9c143 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 https://bugzilla.redhat.com/show_bug.cgi?id=689321 Common Vulnerability Exposure (CVE) ID: CVE-2011-1171 8283 http://securityreason.com/securityalert/8283 [linux-kernel] 20110310 [PATCH] ipv4: netfilter: ip_tables: fix infoleak to userspace http://marc.info/?l=linux-kernel&m=129978077609894&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78b79876761b86653df89c48a7010b5cbd41a84a https://bugzilla.redhat.com/show_bug.cgi?id=689327 Common Vulnerability Exposure (CVE) ID: CVE-2011-1172 [linux-kernel] 20110310 [PATCH] ipv6: netfilter: ip6_tables: fix infoleak to userspace http://marc.info/?l=linux-kernel&m=129978086410061&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6a8ab060779779de8aea92ce3337ca348f973f54 https://bugzilla.redhat.com/show_bug.cgi?id=689345 Common Vulnerability Exposure (CVE) ID: CVE-2011-1173 8279 http://securityreason.com/securityalert/8279 [netdev] 20110317 [PATCH] econet: 4 byte infoleak to the network http://marc.info/?l=linux-netdev&m=130036203528021&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=67c5c6cb8129c595f21e88254a3fc6b3b841ae8e https://bugzilla.redhat.com/show_bug.cgi?id=591815#c14 Common Vulnerability Exposure (CVE) ID: CVE-2011-1180 http://www.openwall.com/lists/oss-security/2011/03/22/11 Common Vulnerability Exposure (CVE) ID: CVE-2011-1182 [oss-security] 20110323 Re: Linux kernel signal spoofing vulnerability (CVE request) http://www.openwall.com/lists/oss-security/2011/03/23/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c https://bugzilla.redhat.com/show_bug.cgi?id=690028 https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c Common Vulnerability Exposure (CVE) ID: CVE-2011-1478 8480 http://securityreason.com/securityalert/8480 [oss-security] 20110328 CVE-2011-1478 kernel: gro: reset dev and skb_iff on skb reuse http://openwall.com/lists/oss-security/2011/03/28/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=66c46d741e2e60f0e8b625b80edb0ab820c46d7a http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6d152e23ad1a7a5b40fef1f42e017d66e6115159 http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.38 https://bugzilla.redhat.com/show_bug.cgi?id=691270 Common Vulnerability Exposure (CVE) ID: CVE-2011-1493 [oss-security] 20110405 Re: CVE request: kernel: multiple issues in ROSE http://www.openwall.com/lists/oss-security/2011/04/05/19 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=be20250c13f88375345ad99950190685eda51eb8 https://bugzilla.redhat.com/show_bug.cgi?id=770777 https://github.com/torvalds/linux/commit/be20250c13f88375345ad99950190685eda51eb8 Common Vulnerability Exposure (CVE) ID: CVE-2011-1494 47185 http://www.securityfocus.com/bid/47185 [linux-kernel] 20110405 [PATCH] drivers/scsi/mpt2sas: prevent heap overflows and unchecked reads http://lkml.org/lkml/2011/4/5/327 [oss-security] 20110405 CVE request: kernel: two issues in mpt2sas http://openwall.com/lists/oss-security/2011/04/05/32 [oss-security] 20110406 Re: CVE request: kernel: two issues in mpt2sas http://openwall.com/lists/oss-security/2011/04/06/2 https://bugzilla.redhat.com/show_bug.cgi?id=694021 https://patchwork.kernel.org/patch/688021/ Common Vulnerability Exposure (CVE) ID: CVE-2011-1495 Common Vulnerability Exposure (CVE) ID: CVE-2011-1577 1025355 http://securitytracker.com/id?1025355 20110413 [PRE-SA-2011-03] Denial-of-service vulnerability in EFI partition handling code of the Linux kernel http://www.securityfocus.com/archive/1/517477/100/0/threaded 47343 http://www.securityfocus.com/bid/47343 8238 http://securityreason.com/securityalert/8238 FEDORA-2011-7823 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061236.html [mm-commits] 20110412 + fs-partitions-efic-corrupted-guid-partition-tables-can-cause-kernel-oops.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg83274.html [oss-security] 20110412 CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops http://openwall.com/lists/oss-security/2011/04/12/17 [oss-security] 20110413 Re: CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops http://openwall.com/lists/oss-security/2011/04/13/1 https://bugzilla.redhat.com/show_bug.cgi?id=695976 kernel-guid-dos(66773) https://exchange.xforce.ibmcloud.com/vulnerabilities/66773 Common Vulnerability Exposure (CVE) ID: CVE-2011-1593 1025420 http://securitytracker.com/id?1025420 44164 http://secunia.com/advisories/44164 47497 http://www.securityfocus.com/bid/47497 [linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir) http://groups.google.com/group/fa.linux.kernel/msg/4a28ecb7f755a88d?dmode=source [oss-security] 20110419 CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/19/1 [oss-security] 20110420 Re: CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/20/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c78193e9c7bcbf25b8237ad0dec82f805c4ea69b http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d8bdc59f215e62098bc5b4256fd9928bf27053a1 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.4 https://bugzilla.redhat.com/show_bug.cgi?id=697822 kernel-nextpidmap-dos(66876) https://exchange.xforce.ibmcloud.com/vulnerabilities/66876 Common Vulnerability Exposure (CVE) ID: CVE-2011-1598 47503 http://www.securityfocus.com/bid/47503 [netdev] 20110420 Add missing socket check in can/bcm release. http://permalink.gmane.org/gmane.linux.network/192898 [oss-security] 20110420 CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/2 [oss-security] 20110420 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/6 [oss-security] 20110421 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/7 http://openwall.com/lists/oss-security/2011/04/21/1 http://openwall.com/lists/oss-security/2011/04/21/2 http://openwall.com/lists/oss-security/2011/04/21/7 [oss-security] 20110422 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/22/2 [oss-security] 20110425 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c6914a6f261aca0c9f715f883a353ae7ff51fe83 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc6 https://bugzilla.redhat.com/show_bug.cgi?id=698057 Common Vulnerability Exposure (CVE) ID: CVE-2011-1745 47534 http://www.securityfocus.com/bid/47534 [linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes https://lkml.org/lkml/2011/4/14/293 [oss-security] 20110421 CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/21/4 [oss-security] 20110422 Re: CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/22/7 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=194b3da873fd334ef183806db751473512af29ce http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.5 https://bugzilla.redhat.com/show_bug.cgi?id=698996 Common Vulnerability Exposure (CVE) ID: CVE-2011-1746 47535 http://www.securityfocus.com/bid/47535 [linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/14/294 [linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/19/400 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b522f02184b413955f3bc952e3776ce41edc6355 https://bugzilla.redhat.com/show_bug.cgi?id=698998 Common Vulnerability Exposure (CVE) ID: CVE-2011-1748 47835 http://www.securityfocus.com/bid/47835 [netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release http://permalink.gmane.org/gmane.linux.network/192974 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=10022a6c66e199d8f61d9044543f38785713cbbd Common Vulnerability Exposure (CVE) ID: CVE-2011-1770 1025592 http://www.securitytracker.com/id?1025592 44932 http://secunia.com/advisories/44932 47769 http://www.securityfocus.com/bid/47769 8286 http://securityreason.com/securityalert/8286 FEDORA-2011-7551 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061366.html [linux-kernel] 20110506 Re: [PATCH] dccp: handle invalid feature options length http://marc.info/?l=linux-kernel&m=130469305815140&w=2 [linux-kernel] 20110506 [PATCH] dccp: handle invalid feature options length http://marc.info/?l=linux-kernel&m=130468845209036&w=2 http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.33/ChangeLog-2.6.33.14 https://bugzilla.redhat.com/show_bug.cgi?id=703011 Common Vulnerability Exposure (CVE) ID: CVE-2011-1833 SuSE Security Announcement: SUSE-SU-2011:0898 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00009.html http://www.ubuntu.com/usn/USN-1188-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-2022 BugTraq ID: 47843 http://www.securityfocus.com/bid/47843 Common Vulnerability Exposure (CVE) ID: CVE-2011-2484 48383 http://www.securityfocus.com/bid/48383 [linux-kernel] 20110616 [PATCH] taskstats: don't allow duplicate entries in listener mode http://lists.openwall.net/linux-kernel/2011/06/16/605 [oss-security] 20110622 CVE request: kernel: taskstats local DoS http://openwall.com/lists/oss-security/2011/06/22/1 [oss-security] 20110622 Re: CVE request: kernel: taskstats local DoS http://openwall.com/lists/oss-security/2011/06/22/2 https://bugzilla.redhat.com/show_bug.cgi?id=715436 kernel-taskstats-dos(68150) https://exchange.xforce.ibmcloud.com/vulnerabilities/68150 Common Vulnerability Exposure (CVE) ID: CVE-2011-2492 1025778 http://securitytracker.com/id?1025778 HPSBGN02970 http://marc.info/?l=bugtraq&m=139447903326211&w=2 [linux-bluetooth] 20110508 Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. http://permalink.gmane.org/gmane.linux.bluez.kernel/12909 [oss-security] 20110624 CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace http://www.openwall.com/lists/oss-security/2011/06/24/2 [oss-security] 20110624 Re: CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace http://www.openwall.com/lists/oss-security/2011/06/24/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8d03e971cf403305217b8e62db3a2e5ad2d6263f http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc4 https://bugzilla.redhat.com/show_bug.cgi?id=703019 Common Vulnerability Exposure (CVE) ID: CVE-2011-2534 BugTraq ID: 46921 http://www.securityfocus.com/bid/46921 http://marc.info/?l=netfilter-devel&m=130036157327564&w=2 http://marc.info/?l=netfilter&m=129978077509888&w=2 http://securityreason.com/securityalert/8284 Common Vulnerability Exposure (CVE) ID: CVE-2011-2699 1027274 http://www.securitytracker.com/id?1027274 MDVSA-2013:150 http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 [oss-security] 20110720 Re: CVE request: kernel: ipv6: make fragment identifications less predictable http://www.openwall.com/lists/oss-security/2011/07/20/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=87c48fa3b4630905f98268dde838ee43626a060c http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1 https://bugzilla.redhat.com/show_bug.cgi?id=723429 https://github.com/torvalds/linux/commit/87c48fa3b4630905f98268dde838ee43626a060c Common Vulnerability Exposure (CVE) ID: CVE-2011-2918 [oss-security] 20110816 Re: CVE request -- kernel: perf: fix software event overflow http://www.openwall.com/lists/oss-security/2011/08/16/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a8b0ca17b80e92faab46ee7179ba9e99ccb61233 https://bugzilla.redhat.com/show_bug.cgi?id=730706 https://github.com/torvalds/linux/commit/a8b0ca17b80e92faab46ee7179ba9e99ccb61233 Common Vulnerability Exposure (CVE) ID: CVE-2011-3637 [oss-security] 20120206 CVE-2011-3637 Linux kernel: proc: fix Oops on invalid /proc/<pid>/maps access http://www.openwall.com/lists/oss-security/2012/02/06/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=76597cd31470fa130784c78fadb4dab2e624a723 https://bugzilla.redhat.com/show_bug.cgi?id=747848 https://github.com/torvalds/linux/commit/76597cd31470fa130784c78fadb4dab2e624a723 Common Vulnerability Exposure (CVE) ID: CVE-2011-4913 [oss-security] 20111227 Re: CVE request: kernel: multiple issues in ROSE http://www.openwall.com/lists/oss-security/2011/12/28/2 Common Vulnerability Exposure (CVE) ID: CVE-2011-4914 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e0bccd315db0c2f919e7fcf9cb60db21d9986f52 https://github.com/torvalds/linux/commit/e0bccd315db0c2f919e7fcf9cb60db21d9986f52
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.