Summary
Ubuntu Update for Linux kernel vulnerabilities USN-1533-1
Solution
Please Install the Updated Packages.
Insight
An error was discovered in the Linux kernel's network TUN/TAP device implementation. A local user with access to the TUN/TAP interface (which is not available to unprivileged users until granted by a root user) could exploit this flaw to crash the system or potential gain administrative privileges. (CVE-2012-2136)
Ulrich Obergfell discovered an error in the Linux kernel's memory management subsystem on 32 bit PAE systems with more than 4GB of memory installed. A local unprivileged user could exploit this flaw to crash the system. (CVE-2012-2373)
A flaw was discovered in the Linux kernel's epoll system call. An unprivileged local user could use this flaw to crash the system.
(CVE-2012-3375)
Some errors where discovered in the Linux kernel's UDF file system, which is used to mount some CD-ROMs and DVDs. An unprivileged local user could use these flaws to crash the system. (CVE-2012-3400)
Affected
linux on Ubuntu 11.10
Severity
Classification
-
CVE CVE-2012-2136, CVE-2012-2373, CVE-2012-3375, CVE-2012-3400 -
CVSS Base Score: 7.6
AV:N/AC:H/Au:N/C:C/I:C/A:C
Related Vulnerabilities