Oval Definition:oval:com.ubuntu.precise:def:20110006000
Revision Date:2012-06-21Version:1
Title:CVE-2011-0006 on Ubuntu 12.04 LTS (precise) - low.
Description:The ima_lsm_rule_init function in security/integrity/ima/ima_policy.c in the Linux kernel before 2.6.37, when the Linux Security Modules (LSM) framework is disabled, allows local users to bypass Integrity Measurement Architecture (IMA) rules in opportunistic circumstances by leveraging an administrator's addition of an IMA rule for LSM. A flaw was found in the kernel's Integrity Measurement Architecture (IMA). Changes made by an attacker might not be discovered by IMA, if SELinux was disabled, and a new IMA rule was loaded.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2011-0006
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'linux' package in precise is not affected (note: '3.1.0-1.1').
  • OR NOT While related to the CVE in some way, the 'linux-armadaxp' package in precise is not affected (note: '3.2.0-1600.1').
  • OR NOT While related to the CVE in some way, the 'linux-ti-omap4' package in precise is not affected (note: '3.0.0-1401.2').
    • BACK