CVE-2012-5374)A denial of service flaw was discovered in the Btrfs file system in theLinux kernel. A local user could cause a denial of service (prevent filecreation) for a victim, by creating a file with a specific CRC32C hashvalue in a directory important to the victim. (CVE-2012-5375)Vasily Kulikov discovered a flaw in the Linux Kernel's perf tool thatallows for privilege escalation. A local user could exploit this flaw torun commands as root when using the perf tool. (CVE-2013-1060)A flaw was discovered in the Xen subsystem of the Linux kernel when itprovides read-only access to a disk that supports TRIM or SCSI UNMAP to aguest OS. A privileged user in the guest OS could exploit this flaw todestroy data on the disk, even though the guest OS should not be able towrite to the disk. (CVE-2013-2140)A flaw was discovered in the Linux kernel when an IPv6 socket is used toconnect to an IPv4 destination. An unprivileged local user could exploitthis flaw to cause a denial of service (system crash). (CVE-2013-2232)An information leak was discovered in the IPSec key_socket implementationin the Linux kernel. An local user could exploit this flaw to examinepotentially sensitive information in kernel memory. (CVE-2013-2234)Hannes Frederic Sowa discovered a flaw in setsockopt UDP_CORK option in theLinux kernel's IPv6 stack. A local user could exploit this flaw to cause adenial of service (system crash). (CVE-2013-4162)Hannes Frederic Sowa discovered a flaw in the IPv6 subsystem of the Linuxkernel when the IPV6_MTU setsockopt option has been specified incombination with the UDP_CORK option. A local user could exploit this flawto cause a denial of service (system crash). (CVE-2013-4163)"> OVAL Reference oval:org.mitre.oval:def:27018 - CERT Civis.Net
Oval Definition:oval:org.mitre.oval:def:27018
Revision Date:2014-12-08Version:3
Title:USN-1946-1 -- Linux kernel (OMAP4) vulnerabilities
Description:A denial of service flaw was discovered in the Btrfs file system in theLinux kernel. A local user could cause a denial of service by creating alarge number of files with names that have the same CRC32 hash value.(CVE-2012-5374)A denial of service flaw was discovered in the Btrfs file system in theLinux kernel. A local user could cause a denial of service (prevent filecreation) for a victim, by creating a file with a specific CRC32C hashvalue in a directory important to the victim. (CVE-2012-5375)Vasily Kulikov discovered a flaw in the Linux Kernel's perf tool thatallows for privilege escalation. A local user could exploit this flaw torun commands as root when using the perf tool. (CVE-2013-1060)A flaw was discovered in the Xen subsystem of the Linux kernel when itprovides read-only access to a disk that supports TRIM or SCSI UNMAP to aguest OS. A privileged user in the guest OS could exploit this flaw todestroy data on the disk, even though the guest OS should not be able towrite to the disk. (CVE-2013-2140)A flaw was discovered in the Linux kernel when an IPv6 socket is used toconnect to an IPv4 destination. An unprivileged local user could exploitthis flaw to cause a denial of service (system crash). (CVE-2013-2232)An information leak was discovered in the IPSec key_socket implementationin the Linux kernel. An local user could exploit this flaw to examinepotentially sensitive information in kernel memory. (CVE-2013-2234)Hannes Frederic Sowa discovered a flaw in setsockopt UDP_CORK option in theLinux kernel's IPv6 stack. A local user could exploit this flaw to cause adenial of service (system crash). (CVE-2013-4162)Hannes Frederic Sowa discovered a flaw in the IPv6 subsystem of the Linuxkernel when the IPV6_MTU setsockopt option has been specified incombination with the UDP_CORK option. A local user could exploit this flawto cause a denial of service (system crash). (CVE-2013-4163)
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2012-5374
CVE-2012-5375
CVE-2013-1060
CVE-2013-2140
CVE-2013-2232
CVE-2013-2234
CVE-2013-4162
CVE-2013-4163
USN-1946-1
Platform(s):Ubuntu 13.04
Product(s):linux-ti-omap4
Definition Synopsis
  • Ubuntu 13.04 is installed
  • AND linux-image-3.5.0-232-omap4 is earlier than 0:3.5.0-232.48
    • BACK