Oval Definition:oval:org.mitre.oval:def:13709
Revision Date:2014-06-30Version:20
Title:USN-1072-1 -- linux vulnerabilities
Description:Gleb Napatov discovered that KVM did not correctly check certain privileged operations. A local attacker with access to a guest kernel could exploit this to crash the host system, leading to a denial of service. Dave Chinner discovered that the XFS filesystem did not correctly order inode lookups when exported by NFS. A remote attacker could exploit this to read or write disk blocks that had changed file assignment or had become unlinked, leading to a loss of privacy. Dan Rosenberg discovered that several network ioctls did not clear kernel memory correctly. A local user could exploit this to read kernel stack memory, leading to a loss of privacy. Dan Jacobson discovered that ThinkPad video output was not correctly access controlled. A local attacker could exploit this to hang the system, leading to a denial of service. It was discovered that KVM did not correctly initialize certain CPU registers. A local attacker could exploit this to crash the system, leading to a denial of service. It was discovered that Xen did not correctly clean up threads. A local attacker in a guest system could exploit this to exhaust host system resources, leading to a denial of serivce. Brad Spengler discovered that stack memory for new a process was not correctly calculated. A local attacker could exploit this to crash the system, leading to a denial of service. Dan Rosenberg discovered that the Linux kernel TIPC implementation contained multiple integer signedness errors. A local attacker could exploit this to gain root privileges. Dan Rosenberg discovered that the Linux kernel X.25 implementation incorrectly parsed facilities. A remote attacker could exploit this to crash the kernel, leading to a denial of service. Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Vasiliy Kulikov discovered that the Linux kernel sockets implementation did not properly initialize certain structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Vasiliy Kulikov discovered that the TIPC interface did not correctly initialize certain structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Nelson Elhage discovered that the Linux kernel IPv4 implementation did not properly audit certain bytecodes in netlink messages. A local attacker could exploit this to cause the kernel to hang, leading to a denial of service. Kees Cook and Vasiliy Kulikov discovered that the shm interface did not clear kernel memory correctly. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the USB subsystem did not correctly initialize certian structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the SiS video driver did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the ivtv V4L driver did not correctly initialize certian structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the RME Hammerfall DSP audio interface driver did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the semctl syscall did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. James Bottomley discovered that the ICP vortex storage array controller driver did not validate certain sizes. A local attacker on a 64bit system could exploit this to crash the kernel, leading to a denial of service. Dan Rosenberg discovered that the Linux kernel L2TP implementation contained multiple integer signedness errors. A local attacker could exploit this to to crash the kernel, or possibly gain root privileges. It was discovered that multithreaded exec did not handle CPU timers correctly. A local attacker could exploit this to crash the system, leading to a denial of service
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-0435
CVE-2010-2943
CVE-2010-3296
CVE-2010-3297
CVE-2010-3448
CVE-2010-3698
CVE-2010-3699
CVE-2010-3858
CVE-2010-3859
CVE-2010-3873
CVE-2010-3875
CVE-2010-3876
CVE-2010-3877
CVE-2010-3880
CVE-2010-4072
CVE-2010-4074
CVE-2010-4078
CVE-2010-4079
CVE-2010-4080
CVE-2010-4081
CVE-2010-4083
CVE-2010-4157
CVE-2010-4160
CVE-2010-4248
USN-1072-1
USN-1072-1
Platform(s):Ubuntu 8.04
Product(s):linux
Definition Synopsis
  • Ubuntu 8.04 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • linux-source-2.6.24 DPKG is earlier than 2.6.24-28.86
  • OR linux-doc-2.6.24 DPKG is earlier than 2.6.24-28.86
  • OR linux-kernel-devel DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28 DPKG is earlier than 2.6.24-28.86
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is i386
  • AND Packages section
  • linux-image-2.6.24-28-generic DPKG is earlier than 2.6.24-28.86
  • OR kernel-image-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-debug-2.6.24-28-server DPKG is earlier than 2.6.24-28.86
  • OR crypto-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR acpi-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-rt DPKG is earlier than 2.6.24-28.86
  • OR sata-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-libc-dev DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-xen DPKG is earlier than 2.6.24-28.86
  • OR pata-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR usb-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR block-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-xen DPKG is earlier than 2.6.24-28.86
  • OR plip-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR input-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR irda-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR fs-secondary-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR nfs-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR floppy-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-server DPKG is earlier than 2.6.24-28.86
  • OR parport-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR nic-pcmcia-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-debug-2.6.24-28-generic DPKG is earlier than 2.6.24-28.86
  • OR serial-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR ipv6-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR nic-usb-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR md-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR message-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-rt DPKG is earlier than 2.6.24-28.86
  • OR pcmcia-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-server DPKG is earlier than 2.6.24-28.86
  • OR ide-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR storage-core-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR ppp-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR firewire-core-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-openvz DPKG is earlier than 2.6.24-28.86
  • OR scsi-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR nic-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR pcmcia-storage-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR nic-shared-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-openvz DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-generic DPKG is earlier than 2.6.24-28.86
  • OR socket-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR fb-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR fat-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR fs-core-modules-2.6.24-28-generic-di DPKG is earlier than 2.6.24-28.86
  • OR Architecture depended section
  • Installed architecture is i386
  • AND Packages section
  • firewire-core-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR crypto-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-386 DPKG is earlier than 2.6.24-28.86
  • OR md-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR socket-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR usb-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR nfs-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR scsi-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-virtual DPKG is earlier than 2.6.24-28.86
  • OR linux-image-debug-2.6.24-28-386 DPKG is earlier than 2.6.24-28.86
  • OR sata-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR pcmcia-storage-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR pcmcia-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR nic-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR parport-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR fs-secondary-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR ide-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR kernel-image-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR storage-core-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-debug-2.6.24-28-virtual DPKG is earlier than 2.6.24-28.86
  • OR nic-pcmcia-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR nic-shared-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR floppy-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR irda-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-virtual DPKG is earlier than 2.6.24-28.86
  • OR serial-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR message-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR pata-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR fat-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR acpi-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-386 DPKG is earlier than 2.6.24-28.86
  • OR plip-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR ppp-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR input-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR nic-usb-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR block-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR fb-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR ipv6-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR fs-core-modules-2.6.24-28-386-di DPKG is earlier than 2.6.24-28.86
  • OR Supported platform section
  • Installed architecture is powerpc
  • AND Packages section
  • nic-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-powerpc64-smp DPKG is earlier than 2.6.24-28.86
  • OR ide-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-powerpc-smp DPKG is earlier than 2.6.24-28.86
  • OR socket-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR crypto-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR crypto-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR parport-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR pcmcia-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR parport-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR floppy-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR pata-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR fs-secondary-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR input-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR fs-secondary-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR linux-libc-dev DPKG is earlier than 2.6.24-28.86
  • OR fat-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR nfs-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR storage-core-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR ide-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR fs-core-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR ppp-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR socket-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR irda-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR message-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR plip-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR sata-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR pcmcia-storage-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR pcmcia-storage-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR ipv6-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR pcmcia-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR kernel-image-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR serial-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR firewire-core-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-powerpc DPKG is earlier than 2.6.24-28.86
  • OR block-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR nic-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR nic-pcmcia-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR md-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR md-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR usb-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR sata-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR nic-usb-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR nic-shared-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR message-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-powerpc DPKG is earlier than 2.6.24-28.86
  • OR nic-usb-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR scsi-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR linux-headers-2.6.24-28-powerpc64-smp DPKG is earlier than 2.6.24-28.86
  • OR nic-pcmcia-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR nic-shared-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR nfs-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR block-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR ppp-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR pata-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR input-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR fat-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR irda-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR serial-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR firewire-core-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR fs-core-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR storage-core-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR scsi-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR kernel-image-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR ipv6-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
  • OR usb-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR linux-image-2.6.24-28-powerpc-smp DPKG is earlier than 2.6.24-28.86
  • OR plip-modules-2.6.24-28-powerpc64-smp-di DPKG is earlier than 2.6.24-28.86
  • OR floppy-modules-2.6.24-28-powerpc-di DPKG is earlier than 2.6.24-28.86
    • BACK