Ubuntu Update for Linux kernel vulnerabilities USN-1000-1

Please Install the Updated Packages.

Joel Becker discovered that OCFS2 did not correctly validate on-disk symlink structures. If an attacker were able to trick a user or automated system into mounting a specially crafted filesystem, it could crash the system or exposde kernel memory, leading to a loss of privacy. (Ubuntu 6.06 LTS, 8.04 LTS, and 9.04 were not affected.) Al Viro discovered a race condition in the TTY driver. A local attacker could exploit this to crash the system, leading to a denial of service. (Only Ubuntu 9.04 and 9.10 were affected.) (CVE-2009-4895) Dan Rosenberg discovered that the MOVE_EXT ext4 ioctl did not correctly check file permissions. A local attacker could overwrite append-only files, leading to potential data loss. (Only Ubuntu 9.10 was affected.) (CVE-2010-2066) Dan Rosenberg discovered that the swapexit xfs ioctl did not correctly check file permissions. A local attacker could exploit this to read from write-only files, leading to a loss of privacy. (Only Ubuntu 8.04 LTS, 9.04, and 9.10 were affected.) (CVE-2010-2226) Suresh Jayaraman discovered that CIFS did not correctly validate certain response packats. A remote attacker could send specially crafted traffic that would crash the system, leading to a denial of service. (Ubuntu 10.04 LTS and 10.10 were not affected.) (CVE-2010-2248) Ben Hutchings discovered that the ethtool interface did not correctly check certain sizes. A local attacker could perform malicious ioctl calls that could crash the system, leading to a denial of service. (Only Ubuntu 9.10 and 10.04 LTS were affected.) (CVE-2010-2478, CVE-2010-3084) James Chapman discovered that L2TP did not correctly evaluate checksum capabilities. If an attacker could make malicious routing changes, they could crash the system, leading to a denial of service. (Only Ubuntu 9.10 was affected.) (CVE-2010-2495) Neil Brown discovered that NFSv4 did not correctly check certain write requests. A remote attacker could send specially crafted traffic that could crash the system or possibly gain root privileges. (Ubuntu 10.04 LTS and 10.10 were not affected.) (CVE-2010-2521) David Howells discovered that DNS resolution in CIFS could be spoofed. A local attacker could exploit this to control DNS replies, leading to a loss of privacy and possible privilege escalation. (Only Ubuntu 9.10 was affected.) (CVE-2010-2524) Bob Peterson discovered that GFS2 rename operations did not correctly validate certain sizes. A local a ... Description truncated, for more information please check the Reference URL

Linux kernel vulnerabilities on Ubuntu 6.06 LTS , Ubuntu 8.04 LTS , Ubuntu 9.04 , Ubuntu 9.10 , Ubuntu 10.04 LTS