Test ID:	1.3.6.1.4.1.25623.1.0.841575
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-1976-1)
Summary:	The remote host is missing an update for the 'linux' package(s) announced via the USN-1976-1 advisory.
Description:	Summary: The remote host is missing an update for the 'linux' package(s) announced via the USN-1976-1 advisory. Vulnerability Insight: An information leak was discovered in the handling of ICMPv6 Router Advertisement (RA) messages in the Linux kernel's IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service (excessive retries and address-generation outage), and consequently obtain sensitive information. (CVE-2013-0343) Kees Cook discovered flaw in the Human Interface Device (HID) subsystem of the Linux kernel. A physically proximate attacker could exploit this flaw to execute arbitrary code or cause a denial of service (heap memory corruption) via a specially crafted device that provides an invalid Report ID. (CVE-2013-2888) Kees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_PANTHERLORD is enabled. A physically proximate attacker could cause a denial of service (heap out-of-bounds write) via a specially crafted device. (CVE-2013-2892) Affected Software/OS: 'linux' package(s) on Ubuntu 10.04. Solution: Please install the updated package(s). CVSS Score: 6.2 CVSS Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-0343 RHSA-2013:1449 http://rhn.redhat.com/errata/RHSA-2013-1449.html RHSA-2013:1490 http://rhn.redhat.com/errata/RHSA-2013-1490.html RHSA-2013:1645 http://rhn.redhat.com/errata/RHSA-2013-1645.html USN-1976-1 http://www.ubuntu.com/usn/USN-1976-1 USN-1977-1 http://www.ubuntu.com/usn/USN-1977-1 USN-2019-1 http://www.ubuntu.com/usn/USN-2019-1 USN-2020-1 http://www.ubuntu.com/usn/USN-2020-1 USN-2021-1 http://www.ubuntu.com/usn/USN-2021-1 USN-2022-1 http://www.ubuntu.com/usn/USN-2022-1 USN-2023-1 http://www.ubuntu.com/usn/USN-2023-1 USN-2024-1 http://www.ubuntu.com/usn/USN-2024-1 USN-2038-1 http://www.ubuntu.com/usn/USN-2038-1 USN-2039-1 http://www.ubuntu.com/usn/USN-2039-1 USN-2050-1 http://www.ubuntu.com/usn/USN-2050-1 [oss-security] 20121205 Re: Linux kernel handling of IPv6 temporary addresses http://openwall.com/lists/oss-security/2012/12/05/4 [oss-security] 20130116 Re: Linux kernel handling of IPv6 temporary addresses http://openwall.com/lists/oss-security/2013/01/16/7 [oss-security] 20130121 Re: Linux kernel handling of IPv6 temporary addresses http://openwall.com/lists/oss-security/2013/01/21/11 [oss-security] 20130222 Re: Linux kernel handling of IPv6 temporary addresses http://www.openwall.com/lists/oss-security/2013/02/22/6 https://bugzilla.redhat.com/show_bug.cgi?id=914664 openSUSE-SU-2014:0204 http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.html Common Vulnerability Exposure (CVE) ID: CVE-2013-2888 Debian Security Information: DSA-2766 (Google Search) http://www.debian.org/security/2013/dsa-2766 http://marc.info/?l=linux-input&m=137772180514608&w=1 http://openwall.com/lists/oss-security/2013/08/28/13 RedHat Security Advisories: RHSA-2013:1490 RedHat Security Advisories: RHSA-2013:1645 http://www.ubuntu.com/usn/USN-1995-1 http://www.ubuntu.com/usn/USN-1998-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2892 BugTraq ID: 62049 http://www.securityfocus.com/bid/62049 http://marc.info/?l=linux-input&m=137772185414625&w=1
Copyright	Copyright (C) 2013 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.