Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27683
HistoryFeb 15, 2012 - 12:00 a.m.

[USN-1364-1] Linux kernel (OMAP4) vulnerabilities

2012-02-1500:00:00
vulners.com
40
JSON

==========================================================================
Ubuntu Security Notice USN-1364-1
February 13, 2012

linux-ti-omap4 vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 11.10

Summary:

Several security issues were fixed in the kernel.

Software Description:

  • linux-ti-omap4: Linux kernel for OMAP4

Details:

A flaw was discovered in the XFS filesystem. If a local user mounts a
specially crafted XFS image it could potential execute arbitrary code on
the system. (CVE-2012-0038)

Andy Whitcroft discovered a that the Overlayfs filesystem was not doing the
extended permission checks needed by cgroups and Linux Security Modules
(LSMs). A local user could exploit this to by-pass security policy and
access files that should not be accessible. (CVE-2012-0055)

JA?ri Aedla discovered that the kernel incorrectly handled /proc/<pid>/mem
permissions. A local attacker could exploit this and gain root privileges.
(CVE-2012-0056)

A flaw was found in the linux kernels IPv4 IGMP query processing. A remote
attacker could exploit this to cause a denial of service. (CVE-2012-0207)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.10:
linux-image-3.0.0-1207-omap4 3.0.0-1207.16

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kernel metapackages (e.g. linux-generic,
linux-server, linux-powerpc), a standard system upgrade will automatically
perform this as well.

References:
http://www.ubuntu.com/usn/usn-1364-1
CVE-2012-0038, CVE-2012-0055, CVE-2012-0056, CVE-2012-0207

Package Information:
https://launchpad.net/ubuntu/+source/linux-ti-omap4/3.0.0-1207.16

Related

openvas 74
nessus 42
securityvulns 2
ubuntu 15
cve 4
seebug 6
prion 4
veracode 3
ubuntucve 4
exploitpack 3
myhack58 2
oraclelinux 5
redhat 8
chrome 1
android 1
canvas 1
thn 1
cert 1
centos 3
exploitdb 3
amazon 1
fedora 12
suse 2
kitploit 1
openvas
openvas
Ubuntu Update for linux-ti-omap4 USN-1364-1
2012-03-16 00:00:00
Ubuntu: Security Advisory (USN-1364-1)
2012-03-16 00:00:00
Ubuntu Update for linux USN-1363-1
2012-03-16 00:00:00
nessus
nessus
USN-1364-1 : linux-ti-omap4 vulnerabilities
2012-02-14 00:00:00
Ubuntu 11.10 : linux vulnerabilities (USN-1363-1)
2012-02-14 00:00:00
USN-1356-1 : linux-ti-omap4 vulnerabilities
2012-02-07 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2012-02-15 00:00:00
Linux privilege escalation
2012-02-08 00:00:00
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerabilities
2012-02-13 00:00:00
Linux kernel vulnerabilities
2012-02-13 00:00:00
Linux kernel (OMAP4) vulnerabilities
2012-02-06 00:00:00
cve
cve
CVE-2012-0207
2012-05-17 11:00:00
CVE-2012-0038
2012-05-17 11:00:00
CVE-2012-0055
2020-02-19 18:15:00
seebug
seebug
Linux Kernel XFS Filesystem 'fs/xfs/xfs_acl.c'ζ•΄ζ•°ζΊ’ε‡ΊζΌζ΄ž
2012-01-13 00:00:00
Linux IGMP Remote Denial Of Service (Introduced in linux-2.6.36)
2012-01-18 00:00:00
Linux Local Root => 2.6.39 (32-bit & 64-bit) - Mempodipper
2014-07-01 00:00:00
prion
prion
Integer overflow
2012-05-17 11:00:00
Denial of service
2012-05-17 11:00:00
Security feature bypass
2020-02-19 18:15:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:12:12
Denial Of Service (DoS)
2020-04-10 01:07:39
Privilege Escalation
2020-04-10 01:06:51
ubuntucve
ubuntucve
CVE-2012-0207
2012-01-13 00:00:00
CVE-2012-0038
2012-01-13 00:00:00
CVE-2012-0055
2012-01-18 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.36 IGMP - Remote Denial of Service
2012-01-17 00:00:00
Linux Kernel 2.6.39 3.2.2 (Gentoo Ubuntu x86x64) - Mempodipper Local Privilege Escalation (1)
2012-01-23 00:00:00
Linux Kernel 2.6.39 3.2.2 (x86x64) - Mempodipper Local Privilege Escalation (2)
2012-01-12 00:00:00
myhack58
myhack58
Linux 2.6.39 to 3.2.0 explosion mention the right vulnerability-vulnerability warning-the black bar safety net
2012-03-08 00:00:00
Linux kernels >=2.6.39 local root exploit 0day-vulnerability warning-the black bar safety net
2012-01-25 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2012-01-23 00:00:00
Unbreakable Enterprise kernel security and bug fix update
2012-03-07 00:00:00
Unbreakable Enterprise kernel security and bug fix update
2012-01-24 00:00:00
redhat
redhat
(RHSA-2012:0061) Important: kernel-rt security update
2012-01-24 00:00:00
(RHSA-2012:0052) Important: kernel security and bug fix update
2012-01-23 00:00:00
(RHSA-2012:0350) Moderate: kernel security and bug fix update
2012-03-06 00:00:00
chrome
chrome
Stable Channel Update for Chromebooks
2012-02-16 00:00:00
android
android
mempodroid - mempodripper - mem exploit
2012-01-24 00:00:00
canvas
canvas
Immunity Canvas: CVE_2012_0056
2012-01-27 15:55:00
thn
thn
CVE-2012-0056 Linux privilege escalation [Video Demonstration]
2012-01-28 19:55:00
cert
cert
Linux Kernel local privilege escalation via SUID /proc/pid/mem write
2012-01-27 00:00:00
centos
centos
kernel, perf, python security update
2012-01-24 20:01:50
kernel, perf, python security update
2012-03-07 18:09:51
kernel security update
2012-02-09 21:30:36
exploitdb
exploitdb
Linux Kernel 2.6.36 IGMP - Remote Denial of Service
2012-01-17 00:00:00
Linux Kernel 2.6.39 &lt; 3.2.2 (x86/x64) - &#039;Mempodipper&#039; Local Privilege Escalation (2)
2012-01-12 00:00:00
Linux Kernel 2.6.39 &lt; 3.2.2 (Gentoo / Ubuntu x86/x64) - &#039;Mempodipper&#039; Local Privilege Escalation (1)
2012-01-23 00:00:00
amazon
amazon
Medium: kernel
2012-03-16 10:53:00
fedora
fedora
[SECURITY] Fedora 16 Update: kernel-3.2.1-3.fc16
2012-01-24 07:57:29
[SECURITY] Fedora 16 Update: kernel-3.2.5-3.fc16
2012-02-10 22:00:18
[SECURITY] Fedora 16 Update: kernel-3.2.9-1.fc16
2012-03-06 19:30:15
suse
suse
Security update for the Linux Kernel (important)
2012-02-06 15:08:23
Security update for Linux kernel (important)
2012-02-06 23:08:27
kitploit
kitploit
[Linux Exploit Suggester] Grab the Linux Operating Systems release version, and return a suggestive list of possible exploits
2013-08-29 00:48:00
JSON
Related for SECURITYVULNS:DOC:27683
openvas74nessus42securityvulns2ubuntu15cve4seebug6prion4veracode3ubuntucve4exploitpack3myhack582oraclelinux5redhat8chrome1android1canvas1thn1cert1centos3exploitdb3amazon1fedora12suse2kitploit1