Ubuntu Update For Linux USN-2264-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Salva Peir&#243 discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3144) A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3145)

Affected

linux on Ubuntu 13.10

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-June/002570.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-1739, CVE-2014-3144, CVE-2014-3145
CVSS Base Score: 4.9
AV:L/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Ubuntu Update for cups, cupsys vulnerabilities USN-906-1
Ubuntu Update for dbus vulnerabilities USN-653-1
Ubuntu Update for clamav vulnerability USN-1076-1
Ubuntu Update for curl USN-2048-1
Ubuntu Update for clamav vulnerability USN-986-2

Ubuntu Update for linux USN-2264-1

Take action and discover your vulnerabilities