Ubuntu Local Security Checks : Ubuntu USN-1426-1 (linux-image-2.6.32-345-ec2)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.71705

Categoría: Ubuntu Local Security Checks

Título: Ubuntu USN-1426-1 (linux-image-2.6.32-345-ec2)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing an update to linux-image-2.6.32-345-ec2
announced via advisory USN-1426-1.

Details:

Sasha Levin discovered a flaw in the permission checking for device
assignments requested via the kvm ioctl in the Linux kernel. A local user
could use this flaw to crash the system causing a denial of service.
(CVE-2011-4347)

Stephan B??rwolf discovered a flaw in the KVM (kernel-based virtual
machine) subsystem of the Linux kernel. A local unprivileged user can crash
use this flaw to crash VMs causing a deny of service. (CVE-2012-0045)

A flaw was discovered in the Linux kernel's cifs file system. An
unprivileged local user could exploit this flaw to crash the system leading
to a denial of service. (CVE-2012-1090)

H. Peter Anvin reported a flaw in the Linux kernel that could crash the
system. A local user could exploit this flaw to crash the system.
(CVE-2012-1097)

Solution:
The problem can be corrected by updating your system to the following
package versions:

Ubuntu 10.04 LTS:
linux-image-2.6.32-345-ec2 2.6.32-345.47

http://www.securityspace.com/smysecure/catid.html?in=USN-1426-1

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:NR/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-4347
http://www.openwall.com/lists/oss-security/2011/11/24/7
Common Vulnerability Exposure (CVE) ID: CVE-2012-0045
http://www.openwall.com/lists/oss-security/2012/01/12/2
SuSE Security Announcement: SUSE-SU-2012:0616 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00013.html
Common Vulnerability Exposure (CVE) ID: CVE-2012-1090
http://www.openwall.com/lists/oss-security/2012/02/28/4
RedHat Security Advisories: RHSA-2012:0481
http://rhn.redhat.com/errata/RHSA-2012-0481.html
RedHat Security Advisories: RHSA-2012:0531
http://rhn.redhat.com/errata/RHSA-2012-0531.html
http://secunia.com/advisories/48842
http://secunia.com/advisories/48964
SuSE Security Announcement: SUSE-SU-2012:0554 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html
Common Vulnerability Exposure (CVE) ID: CVE-2012-1097
http://www.openwall.com/lists/oss-security/2012/03/05/1
http://secunia.com/advisories/48898

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.71705
Categoría:	Ubuntu Local Security Checks
Título:	Ubuntu USN-1426-1 (linux-image-2.6.32-345-ec2)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to linux-image-2.6.32-345-ec2 announced via advisory USN-1426-1. Details: Sasha Levin discovered a flaw in the permission checking for device assignments requested via the kvm ioctl in the Linux kernel. A local user could use this flaw to crash the system causing a denial of service. (CVE-2011-4347) Stephan B??rwolf discovered a flaw in the KVM (kernel-based virtual machine) subsystem of the Linux kernel. A local unprivileged user can crash use this flaw to crash VMs causing a deny of service. (CVE-2012-0045) A flaw was discovered in the Linux kernel's cifs file system. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. (CVE-2012-1090) H. Peter Anvin reported a flaw in the Linux kernel that could crash the system. A local user could exploit this flaw to crash the system. (CVE-2012-1097) Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 10.04 LTS: linux-image-2.6.32-345-ec2 2.6.32-345.47 http://www.securityspace.com/smysecure/catid.html?in=USN-1426-1 CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:NR/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4347 http://www.openwall.com/lists/oss-security/2011/11/24/7 Common Vulnerability Exposure (CVE) ID: CVE-2012-0045 http://www.openwall.com/lists/oss-security/2012/01/12/2 SuSE Security Announcement: SUSE-SU-2012:0616 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00013.html Common Vulnerability Exposure (CVE) ID: CVE-2012-1090 http://www.openwall.com/lists/oss-security/2012/02/28/4 RedHat Security Advisories: RHSA-2012:0481 http://rhn.redhat.com/errata/RHSA-2012-0481.html RedHat Security Advisories: RHSA-2012:0531 http://rhn.redhat.com/errata/RHSA-2012-0531.html http://secunia.com/advisories/48842 http://secunia.com/advisories/48964 SuSE Security Announcement: SUSE-SU-2012:0554 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html Common Vulnerability Exposure (CVE) ID: CVE-2012-1097 http://www.openwall.com/lists/oss-security/2012/03/05/1 http://secunia.com/advisories/48898
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com