Oval Definition:oval:org.mitre.oval:def:21597
Revision Date:2014-02-24Version:10
Title:RHSA-2012:1445: kernel security and bug fix update (Low)
Description:The ext4_fill_flex_info function in fs/ext4/super.c in the Linux kernel before 3.2.2, on the x86 platform and unspecified other platforms, allows user-assisted remote attackers to trigger inconsistent filesystem-groups data and possibly cause a denial of service via a malformed ext4 filesystem containing a super block with a large FLEX_BG group size (aka s_log_groups_per_flex value). NOTE: this vulnerability exists because of an incomplete fix for CVE-2009-4307.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2012:1445
CVE-2012-2100
RHSA-2012:1445-00
Platform(s):CentOS Linux 5
Red Hat Enterprise Linux 5
Product(s):kernel
Definition Synopsis
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • kernel-xen-devel is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-debug is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-PAE is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-devel is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-debug-devel is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-doc is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-PAE-devel is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-headers is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-kdump-devel is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-kdump is earlier than 0:2.6.18-308.20.1.el5
  • OR kernel-xen is earlier than 0:2.6.18-308.20.1.el5
    • BACK