Test ID:	1.3.6.1.4.1.25623.1.0.842083
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-2491-1)
Summary:	The remote host is missing an update for the 'linux-ec2' package(s) announced via the USN-2491-1 advisory.
Description:	Summary: The remote host is missing an update for the 'linux-ec2' package(s) announced via the USN-2491-1 advisory. Vulnerability Insight: Andy Lutomirski discovered that the Linux kernel does not properly handle faults associated with the Stack Segment (SS) register in the x86 architecture. A local attacker could exploit this flaw to gain administrative privileges. (CVE-2014-9322) Lars Bull reported a race condition in the PIT (programmable interrupt timer) emulation in the KVM (Kernel Virtual Machine) subsystem of the Linux kernel. A local guest user with access to PIT i/o ports could exploit this flaw to cause a denial of service (crash) on the host. (CVE-2014-3611) Lars Bull and Nadav Amit reported a flaw in how KVM (the Kernel Virtual Machine) handles noncanonical writes to certain MSR registers. A privileged guest user can exploit this flaw to cause a denial of service (kernel panic) on the host. (CVE-2014-3610) Andy Lutomirski discovered an information leak in the Linux kernel's Thread Local Storage (TLS) implementation allowing users to bypass the espfix to obtain information that could be used to bypass the Address Space Layout Randomization (ASLR) protection mechanism. A local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-8133) Prasad J Pandit reported a flaw in the rock_continue function of the Linux kernel's ISO 9660 CDROM file system. A local user could exploit this flaw to cause a denial of service (system crash or hang). (CVE-2014-9420) Affected Software/OS: 'linux-ec2' package(s) on Ubuntu 10.04. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-3610 70742 http://www.securityfocus.com/bid/70742 DSA-3060 http://www.debian.org/security/2014/dsa-3060 RHSA-2015:0869 http://rhn.redhat.com/errata/RHSA-2015-0869.html SUSE-SU-2015:0481 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html USN-2394-1 http://www.ubuntu.com/usn/USN-2394-1 USN-2417-1 http://www.ubuntu.com/usn/USN-2417-1 USN-2418-1 http://www.ubuntu.com/usn/USN-2418-1 USN-2491-1 http://www.ubuntu.com/usn/USN-2491-1 [oss-security] 20141024 kvm issues http://www.openwall.com/lists/oss-security/2014/10/24/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=854e8bb1aa06c578c2c9145fa6bfe3680ef63b23 https://bugzilla.redhat.com/show_bug.cgi?id=1144883 https://github.com/torvalds/linux/commit/854e8bb1aa06c578c2c9145fa6bfe3680ef63b23 openSUSE-SU-2015:0566 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html Common Vulnerability Exposure (CVE) ID: CVE-2014-3611 RHSA-2015:0126 http://rhn.redhat.com/errata/RHSA-2015-0126.html RHSA-2015:0284 http://rhn.redhat.com/errata/RHSA-2015-0284.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2febc839133280d5a5e8e1179c94ea674489dae2 https://bugzilla.redhat.com/show_bug.cgi?id=1144878 https://github.com/torvalds/linux/commit/2febc839133280d5a5e8e1179c94ea674489dae2 Common Vulnerability Exposure (CVE) ID: CVE-2014-8133 62801 http://secunia.com/advisories/62801 71684 http://www.securityfocus.com/bid/71684 DSA-3128 http://www.debian.org/security/2015/dsa-3128 MDVSA-2015:058 http://www.mandriva.com/security/advisories?name=MDVSA-2015:058 RHSA-2015:1272 http://rhn.redhat.com/errata/RHSA-2015-1272.html SUSE-SU-2015:0736 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00015.html USN-2490-1 http://www.ubuntu.com/usn/USN-2490-1 USN-2492-1 http://www.ubuntu.com/usn/USN-2492-1 USN-2493-1 http://www.ubuntu.com/usn/USN-2493-1 USN-2515-1 http://www.ubuntu.com/usn/USN-2515-1 USN-2516-1 http://www.ubuntu.com/usn/USN-2516-1 USN-2517-1 http://www.ubuntu.com/usn/USN-2517-1 USN-2518-1 http://www.ubuntu.com/usn/USN-2518-1 [oss-security] 20141215 Linux kernel: multiple x86_64 vulnerabilities http://www.openwall.com/lists/oss-security/2014/12/15/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=41bdc78544b8a93a9c6814b8bbbfef966272abbe https://bugzilla.redhat.com/show_bug.cgi?id=1172797 https://github.com/torvalds/linux/commit/41bdc78544b8a93a9c6814b8bbbfef966272abbe Common Vulnerability Exposure (CVE) ID: CVE-2014-9322 http://www.exploit-db.com/exploits/36266 HPdes Security Advisory: HPSBGN03282 http://marc.info/?l=bugtraq&m=142722544401658&w=2 HPdes Security Advisory: HPSBGN03285 http://marc.info/?l=bugtraq&m=142722450701342&w=2 http://www.zerodayinitiative.com/advisories/ZDI-16-170 http://osvdb.org/show/osvdb/115919 RedHat Security Advisories: RHSA-2014:1998 http://rhn.redhat.com/errata/RHSA-2014-1998.html RedHat Security Advisories: RHSA-2014:2008 http://rhn.redhat.com/errata/RHSA-2014-2008.html RedHat Security Advisories: RHSA-2014:2028 http://rhn.redhat.com/errata/RHSA-2014-2028.html RedHat Security Advisories: RHSA-2014:2031 http://rhn.redhat.com/errata/RHSA-2014-2031.html RedHat Security Advisories: RHSA-2015:0009 http://rhn.redhat.com/errata/RHSA-2015-0009.html http://secunia.com/advisories/62336 SuSE Security Announcement: SUSE-SU-2015:0736 (Google Search) SuSE Security Announcement: SUSE-SU-2015:0812 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html SuSE Security Announcement: openSUSE-SU-2015:0566 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2014-9420 FEDORA-2015-0515 http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147973.html FEDORA-2015-0517 http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147864.html RHSA-2015:1081 http://rhn.redhat.com/errata/RHSA-2015-1081.html RHSA-2015:1137 http://rhn.redhat.com/errata/RHSA-2015-1137.html RHSA-2015:1138 http://rhn.redhat.com/errata/RHSA-2015-1138.html SUSE-SU-2015:0178 http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00035.html SUSE-SU-2015:0652 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00000.html SUSE-SU-2015:0812 [oss-security] 20141225 Re: CVE Request Linux kernel: fs: isofs: infinite loop in CE records http://www.openwall.com/lists/oss-security/2014/12/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f54e18f1b831c92f6512d2eedb224cd63d607d3d http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html https://bugzilla.redhat.com/show_bug.cgi?id=1175235 https://github.com/torvalds/linux/commit/f54e18f1b831c92f6512d2eedb224cd63d607d3d https://source.android.com/security/bulletin/2017-01-01.html openSUSE-SU-2015:0714 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00009.html
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.