Ubuntu Local Security Checks : Ubuntu Update for linux USN-1380-1

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.840913

Kategorie: Ubuntu Local Security Checks

Titel: Ubuntu Update for linux USN-1380-1

Zusammenfassung: Ubuntu Update for Linux kernel vulnerabilities USN-1380-1

Beschreibung: Summary:
Ubuntu Update for Linux kernel vulnerabilities USN-1380-1

Vulnerability Insight:
The linux kernel did not properly account for PTE pages when deciding which
task to kill in out of memory conditions. A local, unprivileged could
exploit this flaw to cause a denial of service. (CVE-2011-2498)

A flaw was discovered in the TOMOYO LSM's handling of mount system calls.
An unprivileged user could oops the system causing a denial of service.
(CVE-2011-2518)

A bug was discovered in the Linux kernel's calculation of OOM (Out of
memory) scores, that would result in the wrong process being killed. A user
could use this to kill the process with the highest OOM score, even if that
process belongs to another user or the system. (CVE-2011-4097)

A flaw was found in the linux kernels IPv4 IGMP query processing. A remote
attacker could exploit this to cause a denial of service. (CVE-2012-0207)

Affected Software/OS:
linux on Ubuntu 11.04

Solution:
Please Install the Updated Packages.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2011-2498
http://marc.info/?l=oss-security&m=130923704824984&w=2
https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-2498.html
https://security-tracker.debian.org/tracker/CVE-2011-2498
https://usn.ubuntu.com/1167-1/
https://www.rapid7.com/db/vulnerabilities/ubuntu-USN-1383-1
Common Vulnerability Exposure (CVE) ID: CVE-2011-2518
HPdes Security Advisory: HPSBGN02970
http://marc.info/?l=bugtraq&m=139447903326211&w=2
http://www.openwall.com/lists/oss-security/2011/07/01/5
Common Vulnerability Exposure (CVE) ID: CVE-2011-4097
http://www.openwall.com/lists/oss-security/2011/11/01/2
Common Vulnerability Exposure (CVE) ID: CVE-2012-0207
http://www.openwall.com/lists/oss-security/2012/01/10/5

Copyright Copyright (C) 2012 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.840913
Kategorie:	Ubuntu Local Security Checks
Titel:	Ubuntu Update for linux USN-1380-1
Zusammenfassung:	Ubuntu Update for Linux kernel vulnerabilities USN-1380-1
Beschreibung:	Summary: Ubuntu Update for Linux kernel vulnerabilities USN-1380-1 Vulnerability Insight: The linux kernel did not properly account for PTE pages when deciding which task to kill in out of memory conditions. A local, unprivileged could exploit this flaw to cause a denial of service. (CVE-2011-2498) A flaw was discovered in the TOMOYO LSM's handling of mount system calls. An unprivileged user could oops the system causing a denial of service. (CVE-2011-2518) A bug was discovered in the Linux kernel's calculation of OOM (Out of memory) scores, that would result in the wrong process being killed. A user could use this to kill the process with the highest OOM score, even if that process belongs to another user or the system. (CVE-2011-4097) A flaw was found in the linux kernels IPv4 IGMP query processing. A remote attacker could exploit this to cause a denial of service. (CVE-2012-0207) Affected Software/OS: linux on Ubuntu 11.04 Solution: Please Install the Updated Packages. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2498 http://marc.info/?l=oss-security&m=130923704824984&w=2 https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-2498.html https://security-tracker.debian.org/tracker/CVE-2011-2498 https://usn.ubuntu.com/1167-1/ https://www.rapid7.com/db/vulnerabilities/ubuntu-USN-1383-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-2518 HPdes Security Advisory: HPSBGN02970 http://marc.info/?l=bugtraq&m=139447903326211&w=2 http://www.openwall.com/lists/oss-security/2011/07/01/5 Common Vulnerability Exposure (CVE) ID: CVE-2011-4097 http://www.openwall.com/lists/oss-security/2011/11/01/2 Common Vulnerability Exposure (CVE) ID: CVE-2012-0207 http://www.openwall.com/lists/oss-security/2012/01/10/5
Copyright	Copyright (C) 2012 Greenbone Networks GmbH