 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.71611 |
| Category: | Ubuntu Local Security Checks |
| Title: | Ubuntu USN-1507-1 (linux-image-2.6.24-32-386) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to linux-image-2.6.24-32-386 announced via advisory USN-1507-1. Details: A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. (CVE-2012-1601) An error was found in the Linux kernel's IPv6 netfilter when connection tracking is enabled. A remote attacker could exploit this flaw to crash a system if it is using IPv6 with the nf_contrack_ipv6 kernel module loaded. (CVE-2012-2744) Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 8.04 LTS: linux-image-2.6.24-32-386 2.6.24-32.104 linux-image-2.6.24-32-generic 2.6.24-32.104 linux-image-2.6.24-32-hppa32 2.6.24-32.104 linux-image-2.6.24-32-hppa64 2.6.24-32.104 linux-image-2.6.24-32-itanium 2.6.24-32.104 linux-image-2.6.24-32-lpia 2.6.24-32.104 linux-image-2.6.24-32-lpiacompat 2.6.24-32.104 linux-image-2.6.24-32-mckinley 2.6.24-32.104 linux-image-2.6.24-32-openvz 2.6.24-32.104 linux-image-2.6.24-32-powerpc 2.6.24-32.104 linux-image-2.6.24-32-powerpc-smp 2.6.24-32.104 linux-image-2.6.24-32-powerpc64-smp 2.6.24-32.104 linux-image-2.6.24-32-rt 2.6.24-32.104 linux-image-2.6.24-32-server 2.6.24-32.104 linux-image-2.6.24-32-sparc64 2.6.24-32.104 linux-image-2.6.24-32-sparc64-smp 2.6.24-32.104 linux-image-2.6.24-32-virtual 2.6.24-32.104 linux-image-2.6.24-32-xen 2.6.24-32.104 https://secure1.securityspace.com/smysecure/catid.html?in=USN-1507-1 CVSS Score: 7.8 CVSS Vector: AV:L/AC:L/Au:NR/C:N/I:N/A:C |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2012-1601 1026897 http://www.securitytracker.com/id?1026897 49928 http://secunia.com/advisories/49928 DSA-2469 http://www.debian.org/security/2012/dsa-2469 RHSA-2012:0571 http://rhn.redhat.com/errata/RHSA-2012-0571.html RHSA-2012:0676 http://rhn.redhat.com/errata/RHSA-2012-0676.html SUSE-SU-2012:1679 https://www.suse.com/support/update/announcement/2012/suse-su-20121679-1.html [oss-security] 20120329 Re: CVE request -- kernel: kvm: irqchip_in_kernel() and vcpu->arch.apic inconsistency http://www.openwall.com/lists/oss-security/2012/03/30/1 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.6 https://bugzilla.redhat.com/show_bug.cgi?id=808199 https://github.com/torvalds/linux/commit/9c895160d25a76c21b65bad141b08e8d4f99afef openSUSE-SU-2013:0925 http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2012-2744 1027235 http://www.securitytracker.com/id?1027235 54367 http://www.securityfocus.com/bid/54367 RHSA-2012:1064 http://rhn.redhat.com/errata/RHSA-2012-1064.html RHSA-2012:1148 http://rhn.redhat.com/errata/RHSA-2012-1148.html http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9e2dcf72023d1447f09c47d77c99b0c49659e5ce https://bugzilla.redhat.com/show_bug.cgi?id=833402 https://github.com/torvalds/linux/commit/9e2dcf72023d1447f09c47d77c99b0c49659e5ce |
| Copyright | Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |