Test Kennung:	1.3.6.1.4.1.25623.1.0.840581
Kategorie:	Ubuntu Local Security Checks
Titel:	Ubuntu Update for linux-source-2.6.15 vulnerabilities USN-1057-1
Zusammenfassung:	Ubuntu Update for Linux kernel vulnerabilities USN-1057-1
Beschreibung:	Summary: Ubuntu Update for Linux kernel vulnerabilities USN-1057-1 Vulnerability Insight: Dave Chinner discovered that the XFS filesystem did not correctly order inode lookups when exported by NFS. A remote attacker could exploit this to read or write disk blocks that had changed file assignment or had become unlinked, leading to a loss of privacy. (CVE-2010-2943) Dan Rosenberg discovered that several network ioctls did not clear kernel memory correctly. A local user could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-3297) Kees Cook and Vasiliy Kulikov discovered that the shm interface did not clear kernel memory correctly. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4072) Affected Software/OS: linux-source-2.6.15 vulnerabilities on Ubuntu 6.06 LTS Solution: Please Install the Updated Packages. CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2943 BugTraq ID: 42527 http://www.securityfocus.com/bid/42527 Bugtraq: 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console (Google Search) http://www.securityfocus.com/archive/1/520102/100/0/threaded http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767 http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771 http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768 http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769 http://www.openwall.com/lists/oss-security/2010/08/18/2 http://www.openwall.com/lists/oss-security/2010/08/19/5 http://oss.sgi.com/archives/xfs/2010-06/msg00191.html http://oss.sgi.com/archives/xfs/2010-06/msg00198.html http://www.redhat.com/support/errata/RHSA-2010-0723.html http://secunia.com/advisories/42758 http://secunia.com/advisories/43161 http://secunia.com/advisories/46397 http://www.ubuntu.com/usn/USN-1041-1 http://www.ubuntu.com/usn/USN-1057-1 http://www.vupen.com/english/advisories/2011/0070 http://www.vupen.com/english/advisories/2011/0280 Common Vulnerability Exposure (CVE) ID: CVE-2010-3297 BugTraq ID: 43229 http://www.securityfocus.com/bid/43229 Debian Security Information: DSA-2126 (Google Search) http://www.debian.org/security/2010/dsa-2126 http://www.mandriva.com/security/advisories?name=MDVSA-2011:051 http://lkml.org/lkml/2010/9/11/168 http://www.openwall.com/lists/oss-security/2010/09/14/2 http://www.openwall.com/lists/oss-security/2010/09/14/7 http://www.redhat.com/support/errata/RHSA-2010-0771.html http://secunia.com/advisories/41440 SuSE Security Announcement: SUSE-SA:2010:050 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00003.html SuSE Security Announcement: SUSE-SA:2010:054 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html SuSE Security Announcement: SUSE-SA:2011:007 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html http://www.vupen.com/english/advisories/2011/0298 Common Vulnerability Exposure (CVE) ID: CVE-2010-4072 BugTraq ID: 45054 http://www.securityfocus.com/bid/45054 http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 http://lkml.org/lkml/2010/10/6/454 http://www.openwall.com/lists/oss-security/2010/10/07/1 http://www.openwall.com/lists/oss-security/2010/10/25/3 http://www.redhat.com/support/errata/RHSA-2010-0958.html http://www.redhat.com/support/errata/RHSA-2011-0007.html http://www.redhat.com/support/errata/RHSA-2011-0017.html http://www.redhat.com/support/errata/RHSA-2011-0162.html http://secunia.com/advisories/42778 http://secunia.com/advisories/42884 http://secunia.com/advisories/42890 http://secunia.com/advisories/42932 http://secunia.com/advisories/42963 http://secunia.com/advisories/43291 SuSE Security Announcement: SUSE-SA:2010:060 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html SuSE Security Announcement: SUSE-SA:2011:001 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html SuSE Security Announcement: SUSE-SA:2011:004 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html SuSE Security Announcement: SUSE-SA:2011:008 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html http://www.vupen.com/english/advisories/2011/0012 http://www.vupen.com/english/advisories/2011/0124 http://www.vupen.com/english/advisories/2011/0168 http://www.vupen.com/english/advisories/2011/0375
Copyright	Copyright (C) 2011 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.