Ubuntu Update For Linux USN-1445-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1445-1

Solution

Please Install the Updated Packages.

Insight

A flaw was found in the Linux's kernels ext4 file system when mounted with a journal. A local, unprivileged user could exploit this flaw to cause a denial of service. (CVE-2011-4086) A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. (CVE-2012-1601) Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. (CVE-2012-2123)

Affected

linux on Ubuntu 10.04 LTS

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2012-May/001687.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-4086, CVE-2012-1601, CVE-2012-2123
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for linux USN-1445-1

Take action and discover your vulnerabilities