Oval Definition:	oval:com.ubuntu.precise:def:20152042000
Revision Date: 2015-04-21 Version: 1 Title: CVE-2015-2042 on Ubuntu 12.04 LTS (precise) - low. Description: net/rds/sysctl.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry. An information leak was discovered in how the Linux kernel handles setting the Reliable Datagram Sockets (RDS) settings. A local user could exploit this flaw to read data from other sysctl settings. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-2042 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'linux' package in precise was vulnerable but has been fixed (note: '3.2.0-80.116'). OR The 'linux-armadaxp' package in precise was vulnerable but has been fixed (note: '3.2.0-1648.67'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'was pending [3.5.0-60.87~precise1] OEM release'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'was needs-triage now end-of-life'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'was pending [3.11.0-33.54~precise1] OEM release'). OR The 'linux-lts-trusty' package in precise was vulnerable but has been fixed (note: '3.13.0-49.81~precise1'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR The 'linux-ti-omap4' package in precise was vulnerable but has been fixed (note: '3.2.0-1462.82').
BACK