 |
|
|
|
| Linux kernel multiple security vulnerabilities | | Published: |  | 21.01.2012 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 12151 | | Type: |  | remote | | Level: |  | 6/10 | | Description: |  | DoS conditions, information leaks, privilege escalation. |
| Affected: |  | LINUX : kernel 2.6 | | CVE: |  | CVE-2011-4914 | | | | CVE-2011-4622 (The create_pit_timer function in arch/x86/kvm/i8254.c in KVM 83, and possibly other versions, does not properly handle when Programmable Interval Timer (PIT) interrupt requests (IRQs) when a virtual interrupt controller (irqchip) is not available, which allows local users to cause a denial of service (NULL pointer dereference) by starting a timer.) | | | | CVE-2011-4611 | | | | CVE-2011-4127 | | | | CVE-2011-4110 (The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and "updating a negative key into a fully instantiated key.") | | | | CVE-2011-4077 (Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c in XFS in the Linux kernel 2.6, when CONFIG_XFS_DEBUG is disabled, allows local users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via an XFS image containing a symbolic link with a long pathname.) | | | | CVE-2011-3353 | | | | CVE-2011-2898 | | | | CVE-2011-2213 (The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880.) |
|
|
|
|
|
|
|
|
