Search...

Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)

2013-11-09T00:00:00

ID UBUNTU_USN-2016-1.NASL
Type nessus
Reporter Tenable
Modified 2016-10-26T00:00:00

Description

Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)

Kees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)

Kees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)

Kees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2897)

A flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

                                        
                                            #
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2016-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# &lt;http://www.ubuntu.com/usn/&gt;. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include("compat.inc");

if (description)
{
  script_id(70800);
  script_version("$Revision: 1.4 $");
  script_cvs_date("$Date: 2016/10/26 14:16:25 $");

  script_cve_id("CVE-2013-2147", "CVE-2013-2889", "CVE-2013-2893", "CVE-2013-2897", "CVE-2013-4299");
  script_bugtraq_id(62042, 62044, 62050, 63183);
  script_xref(name:"USN", value:"2016-1");

  script_name(english:"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)");
  script_summary(english:"Checks dpkg output for updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Ubuntu host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Dan Carpenter discovered an information leak in the HP Smart Aray and
Compaq SMART2 disk-array driver in the Linux kernel. A local user
could exploit this flaw to obtain sensitive information from kernel
memory. (CVE-2013-2147)

Kees Cook discovered flaw in the Human Interface Device (HID)
subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate
attacker could leverage this flaw to cause a denial of service via a
specially crafted device. (CVE-2013-2889)

Kees Cook discovered another flaw in the Human Interface Device (HID)
subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,
CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially
proximate attacker can leverage this flaw to cause a denial of service
vias a specially crafted device. (CVE-2013-2893)

Kees Cook discovered yet another flaw in the Human Interface Device
(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is
enabled. A physically proximate attacker could leverage this flaw to
cause a denial of service (OOPS) via a specially crafted device.
(CVE-2013-2897)

A flaw was discovered in the Linux kernel's dm snapshot facility. A
remote authenticated user could exploit this flaw to obtain sensitive
information or modify/corrupt data. (CVE-2013-4299).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected linux-image-2.6-ec2 package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.04:-:lts");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/11/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/11/09");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! ereg(pattern:"^(10\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 10.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" &gt;!&lt; cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

flag = 0;

if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-358-ec2", pkgver:"2.6.32-358.71")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux-image-2.6-ec2");
}

JSON Vulners Source

Initial Source

{"id": "UBUNTU_USN-2016-1.NASL", "bulletinFamily": "scanner", "title": "Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)", "description": "Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2013-11-09T00:00:00", "modified": "2016-10-26T00:00:00", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=70800", "reporter": "Tenable", "references": [], "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "type": "nessus", "lastseen": "2018-09-01T23:37:21", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2"], "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 3, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "hash": "03504371004d0b5906386830e2648cda9ae5d9a34c711a8eef7b3a65a149bc73", "hashmap": [{"hash": "f101d2fcaf0c67cc5eb8c97cc228765b", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "1d731490b777bc15c5d9375993128995", "key": "modified"}, {"hash": "b7fd0bad9a3db89554b13b658b53fddb", "key": "published"}, {"hash": "a1967e6de4ca99fb2635d94b99453928", "key": "pluginID"}, {"hash": "097b6cc7dae71b3152c02c382c19cd39", "key": "sourceData"}, {"hash": "4291c5629785cfeb6aaf3ef90a773b0b", "key": "cpe"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "ba5db5a3d987040b6e1579a34669ac98", "key": "description"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "8c5fa981b7ef285b3f22691e4fd84f41", "key": "href"}, {"hash": "61a37396f8fc8545e5dc3fd73288ce16", "key": "cvss"}, {"hash": "c3ded3328b71b949baffc76a3d257fdd", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=70800", "id": "UBUNTU_USN-2016-1.NASL", "lastseen": "2017-10-29T13:35:14", "modified": "2016-10-26T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "70800", "published": "2013-11-09T00:00:00", "references": [], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2016-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70800);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:16:25 $\");\n\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\", \"CVE-2013-4299\");\n script_bugtraq_id(62042, 62044, 62050, 63183);\n script_xref(name:\"USN\", value:\"2016-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID)\nsubsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate\nattacker could leverage this flaw to cause a denial of service via a\nspecially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service\nvias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device\n(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is\nenabled. A physically proximate attacker could leverage this flaw to\ncause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-2.6-ec2 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-358-ec2\", pkgver:\"2.6.32-358.71\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-ec2\");\n}\n", "title": "Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)", "type": "nessus", "viewCount": 1}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2017-10-29T13:35:14"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2"], "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "hash": "3edde1906ba20c4fffa31b3a733f1f168a119a0c66e39b22bb6458db05ddf1e6", "hashmap": [{"hash": "f101d2fcaf0c67cc5eb8c97cc228765b", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "1d731490b777bc15c5d9375993128995", "key": "modified"}, {"hash": "b7fd0bad9a3db89554b13b658b53fddb", "key": "published"}, {"hash": "a1967e6de4ca99fb2635d94b99453928", "key": "pluginID"}, {"hash": "097b6cc7dae71b3152c02c382c19cd39", "key": "sourceData"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "4291c5629785cfeb6aaf3ef90a773b0b", "key": "cpe"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "ba5db5a3d987040b6e1579a34669ac98", "key": "description"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "8c5fa981b7ef285b3f22691e4fd84f41", "key": "href"}, {"hash": "c3ded3328b71b949baffc76a3d257fdd", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=70800", "id": "UBUNTU_USN-2016-1.NASL", "lastseen": "2018-08-30T19:34:03", "modified": "2016-10-26T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "70800", "published": "2013-11-09T00:00:00", "references": [], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2016-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70800);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:16:25 $\");\n\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\", \"CVE-2013-4299\");\n script_bugtraq_id(62042, 62044, 62050, 63183);\n script_xref(name:\"USN\", value:\"2016-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID)\nsubsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate\nattacker could leverage this flaw to cause a denial of service via a\nspecially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service\nvias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device\n(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is\nenabled. A physically proximate attacker could leverage this flaw to\ncause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-2.6-ec2 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-358-ec2\", pkgver:\"2.6.32-358.71\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-ec2\");\n}\n", "title": "Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)", "type": "nessus", "viewCount": 1}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:34:03"}, {"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "hash": "5dbf1c56af68f74abf47750e9b1bb7bcd5a50d9010c5cb7a30e6687a1d3865ef", "hashmap": [{"hash": "f101d2fcaf0c67cc5eb8c97cc228765b", "key": "title"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "5ebefc09f1b29d9e0dad2276c1ad05e8", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "8686eb1fb0cb79f9557f6fd57f6b695f", "key": "sourceData"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "b7fd0bad9a3db89554b13b658b53fddb", "key": "published"}, {"hash": "a1967e6de4ca99fb2635d94b99453928", "key": "pluginID"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "ba5db5a3d987040b6e1579a34669ac98", "key": "description"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "8c5fa981b7ef285b3f22691e4fd84f41", "key": "href"}, {"hash": "c3ded3328b71b949baffc76a3d257fdd", "key": "cvelist"}, {"hash": "aaebfb5069db2f8782052c1690568a90", "key": "cvss"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=70800", "id": "UBUNTU_USN-2016-1.NASL", "lastseen": "2016-09-26T17:23:44", "modified": "2016-05-25T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.2", "pluginID": "70800", "published": "2013-11-09T00:00:00", "references": [], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2016-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70800);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2016/05/25 16:34:54 $\");\n\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\", \"CVE-2013-4299\");\n script_bugtraq_id(62042, 62044, 62050, 63183);\n script_xref(name:\"USN\", value:\"2016-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID)\nsubsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate\nattacker could leverage this flaw to cause a denial of service via a\nspecially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service\nvias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device\n(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is\nenabled. A physically proximate attacker could leverage this flaw to\ncause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-2.6.32-358-ec2 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6.32-358-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-358-ec2\", pkgver:\"2.6.32-358.71\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6.32-358-ec2\");\n}\n", "title": "Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2016-09-26T17:23:44"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 2, "enchantments": {}, "hash": "bc1a0883745b23d2a8fb1be695bb3dcfe6c51df6207d3852c15216f812df3057", "hashmap": [{"hash": "f101d2fcaf0c67cc5eb8c97cc228765b", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "1d731490b777bc15c5d9375993128995", "key": "modified"}, {"hash": "b7fd0bad9a3db89554b13b658b53fddb", "key": "published"}, {"hash": "a1967e6de4ca99fb2635d94b99453928", "key": "pluginID"}, {"hash": "097b6cc7dae71b3152c02c382c19cd39", "key": "sourceData"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "ba5db5a3d987040b6e1579a34669ac98", "key": "description"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "8c5fa981b7ef285b3f22691e4fd84f41", "key": "href"}, {"hash": "61a37396f8fc8545e5dc3fd73288ce16", "key": "cvss"}, {"hash": "c3ded3328b71b949baffc76a3d257fdd", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=70800", "id": "UBUNTU_USN-2016-1.NASL", "lastseen": "2016-10-26T21:23:53", "modified": "2016-10-26T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.2", "pluginID": "70800", "published": "2013-11-09T00:00:00", "references": [], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2016-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70800);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:16:25 $\");\n\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\", \"CVE-2013-4299\");\n script_bugtraq_id(62042, 62044, 62050, 63183);\n script_xref(name:\"USN\", value:\"2016-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID)\nsubsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate\nattacker could leverage this flaw to cause a denial of service via a\nspecially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service\nvias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device\n(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is\nenabled. A physically proximate attacker could leverage this flaw to\ncause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-2.6-ec2 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-358-ec2\", pkgver:\"2.6.32-358.71\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-ec2\");\n}\n", "title": "Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)", "type": "nessus", "viewCount": 1}, "differentElements": ["cpe"], "edition": 2, "lastseen": "2016-10-26T21:23:53"}], "edition": 5, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "4291c5629785cfeb6aaf3ef90a773b0b"}, {"key": "cvelist", "hash": "c3ded3328b71b949baffc76a3d257fdd"}, {"key": "cvss", "hash": "61a37396f8fc8545e5dc3fd73288ce16"}, {"key": "description", "hash": "ba5db5a3d987040b6e1579a34669ac98"}, {"key": "href", "hash": "8c5fa981b7ef285b3f22691e4fd84f41"}, {"key": "modified", "hash": "1d731490b777bc15c5d9375993128995"}, {"key": "naslFamily", "hash": "c9b7d00377a789a14c9bb9dab6c7168c"}, {"key": "pluginID", "hash": "a1967e6de4ca99fb2635d94b99453928"}, {"key": "published", "hash": "b7fd0bad9a3db89554b13b658b53fddb"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "097b6cc7dae71b3152c02c382c19cd39"}, {"key": "title", "hash": "f101d2fcaf0c67cc5eb8c97cc228765b"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "03504371004d0b5906386830e2648cda9ae5d9a34c711a8eef7b3a65a149bc73", "viewCount": 1, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}, "vulnersScore": 2.1}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2016-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70800);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:16:25 $\");\n\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\", \"CVE-2013-4299\");\n script_bugtraq_id(62042, 62044, 62050, 63183);\n script_xref(name:\"USN\", value:\"2016-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2016-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID)\nsubsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate\nattacker could leverage this flaw to cause a denial of service via a\nspecially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service\nvias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device\n(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is\nenabled. A physically proximate attacker could leverage this flaw to\ncause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-2.6-ec2 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-358-ec2\", pkgver:\"2.6.32-358.71\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-ec2\");\n}\n", "naslFamily": "Ubuntu Local Security Checks", "pluginID": "70800", "cpe": ["cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2"]}

{"openvas": [{"lastseen": "2018-01-22T13:10:26", "references": ["http://www.ubuntu.com/usn/usn-2015-1/", "2015-1"], "pluginID": "841631", "description": "Check for the Version of linux", "edition": 4, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-18T00:00:00", "title": "Ubuntu Update for linux USN-2015-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-01-22T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841631", "id": "OPENVAS:841631", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2015_1.nasl 8483 2018-01-22 06:58:04Z teissa $\n#\n# Ubuntu Update for linux USN-2015-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841631);\n script_version(\"$Revision: 8483 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-22 07:58:04 +0100 (Mon, 22 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-18 17:06:57 +0530 (Mon, 18 Nov 2013)\");\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\",\n \"CVE-2013-4299\");\n script_tag(name:\"cvss_base\", value:\"6.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_name(\"Ubuntu Update for linux USN-2015-1\");\n\n tag_insight = \"Dan Carpenter discovered an information leak in the HP Smart\nAray and Compaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\nleverage this flaw to cause a denial of service via a specially crafted\ndevice. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service vias\na specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\nphysically proximate attacker could leverage this flaw to cause a denial of\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote\nauthenticated user could exploit this flaw to obtain sensitive information\nor modify/corrupt data. (CVE-2013-4299)\";\n\n tag_affected = \"linux on Ubuntu 10.04 LTS\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2015-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2015-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-386\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-generic\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-generic-pae\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-ia64\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-lpia\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-powerpc\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-powerpc-smp\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-powerpc64-smp\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-preempt\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-server\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-sparc64\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-sparc64-smp\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-versatile\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-virtual\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-01-24T11:10:01", "references": ["2016-1", "http://www.ubuntu.com/usn/usn-2016-1/"], "pluginID": "841620", "description": "Check for the Version of linux-ec2", "edition": 4, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-18T00:00:00", "title": "Ubuntu Update for linux-ec2 USN-2016-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-01-24T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841620", "id": "OPENVAS:841620", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2016_1.nasl 8509 2018-01-24 06:57:46Z teissa $\n#\n# Ubuntu Update for linux-ec2 USN-2016-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841620);\n script_version(\"$Revision: 8509 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-24 07:57:46 +0100 (Wed, 24 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-18 15:54:59 +0530 (Mon, 18 Nov 2013)\");\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\",\n \"CVE-2013-4299\");\n script_tag(name:\"cvss_base\", value:\"6.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_name(\"Ubuntu Update for linux-ec2 USN-2016-1\");\n\n tag_insight = \"Dan Carpenter discovered an information leak in the HP Smart\nAray and Compaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\nleverage this flaw to cause a denial of service via a specially crafted\ndevice. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service vias\na specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\nphysically proximate attacker could leverage this flaw to cause a denial of\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote\nauthenticated user could exploit this flaw to obtain sensitive information\nor modify/corrupt data. (CVE-2013-4299)\";\n\n tag_affected = \"linux-ec2 on Ubuntu 10.04 LTS\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2016-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2016-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of linux-ec2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-358-ec2\", ver:\"2.6.32-358.71\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:57:27", "references": ["http://www.ubuntu.com/usn/usn-2015-1/", "2015-1"], "pluginID": "1361412562310841631", "description": "Check for the Version of linux", "edition": 5, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-18T00:00:00", "title": "Ubuntu Update for linux USN-2015-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841631", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841631", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2015_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux USN-2015-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841631\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-18 17:06:57 +0530 (Mon, 18 Nov 2013)\");\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\",\n \"CVE-2013-4299\");\n script_tag(name:\"cvss_base\", value:\"6.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_name(\"Ubuntu Update for linux USN-2015-1\");\n\n\n script_tag(name:\"affected\", value:\"linux on Ubuntu 10.04 LTS\");\n script_tag(name:\"insight\", value:\"Dan Carpenter discovered an information leak in the HP Smart\nAray and Compaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\nleverage this flaw to cause a denial of service via a specially crafted\ndevice. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service vias\na specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\nphysically proximate attacker could leverage this flaw to cause a denial of\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote\nauthenticated user could exploit this flaw to obtain sensitive information\nor modify/corrupt data. (CVE-2013-4299)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2015-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2015-1/\");\n script_tag(name:\"summary\", value:\"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-386\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-generic\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-generic-pae\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-ia64\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-lpia\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-powerpc\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-powerpc-smp\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-powerpc64-smp\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-preempt\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-server\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-sparc64\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-sparc64-smp\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-versatile\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-53-virtual\", ver:\"2.6.32-53.115\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:57:14", "references": ["2016-1", "http://www.ubuntu.com/usn/usn-2016-1/"], "pluginID": "1361412562310841620", "description": "Check for the Version of linux-ec2", "edition": 5, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-18T00:00:00", "title": "Ubuntu Update for linux-ec2 USN-2016-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841620", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841620", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2016_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux-ec2 USN-2016-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841620\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-18 15:54:59 +0530 (Mon, 18 Nov 2013)\");\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\",\n \"CVE-2013-4299\");\n script_tag(name:\"cvss_base\", value:\"6.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_name(\"Ubuntu Update for linux-ec2 USN-2016-1\");\n\n\n script_tag(name:\"affected\", value:\"linux-ec2 on Ubuntu 10.04 LTS\");\n script_tag(name:\"insight\", value:\"Dan Carpenter discovered an information leak in the HP Smart\nAray and Compaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\nleverage this flaw to cause a denial of service via a specially crafted\ndevice. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service vias\na specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\nphysically proximate attacker could leverage this flaw to cause a denial of\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote\nauthenticated user could exploit this flaw to obtain sensitive information\nor modify/corrupt data. (CVE-2013-4299)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2016-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2016-1/\");\n script_tag(name:\"summary\", value:\"Check for the Version of linux-ec2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-358-ec2\", ver:\"2.6.32-358.71\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-01-26T11:10:01", "references": ["http://www.ubuntu.com/usn/usn-2020-1/", "2020-1"], "pluginID": "841618", "description": "Check for the Version of linux-lts-raring", "edition": 4, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-18T00:00:00", "title": "Ubuntu Update for linux-lts-raring USN-2020-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2894", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4343", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-01-26T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841618", "id": "OPENVAS:841618", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2020_1.nasl 8542 2018-01-26 06:57:28Z teissa $\n#\n# Ubuntu Update for linux-lts-raring USN-2020-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841618);\n script_version(\"$Revision: 8542 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-26 07:57:28 +0100 (Fri, 26 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-18 15:45:27 +0530 (Mon, 18 Nov 2013)\");\n script_cve_id(\"CVE-2013-0343\", \"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\",\n \"CVE-2013-2894\", \"CVE-2013-2895\", \"CVE-2013-2897\", \"CVE-2013-4343\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-lts-raring USN-2020-1\");\n\n tag_insight = \"An information leak was discovered in the handling of ICMPv6\nRouter Advertisement (RA) messages in the Linux kernel's IPv6 network stack. A\nremote attacker could exploit this flaw to cause a denial of service\n(excessive retries and address-generation outage), and consequently obtain\nsensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user could\nexploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\nleverage this flaw to cause a denial of service via a specially crafted\ndevice. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service vias\na specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem\nof the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled. A physically\nproximate attacker could exploit this flaw to cause a denial of service via\na specially crafted device. (CVE-2013-2894)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A\nphysically proximate attacker could cause a denial of service (OOPS) or\nobtain sensitive information from kernel memory via a specially crafted\ndevice. (CVE-2013-2895)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\nphysically proximate attacker could leverage this flaw to cause a denial of\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nWannes Rombouts reported a vulnerability in the networking tuntap interface\nof the Linux kernel. A local user with the CAP_NET_ADMIN capability could\nleverage this flaw to gain full admin privileges. (CVE-2013-4343)\";\n\n tag_affected = \"linux-lts-raring on Ubuntu 12.04 LTS\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2020-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2020-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of linux-lts-raring\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.8.0-33-generic\", ver:\"3.8.0-33.48~precise1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:56:48", "references": ["http://www.ubuntu.com/usn/usn-2020-1/", "2020-1"], "pluginID": "1361412562310841618", "description": "Check for the Version of linux-lts-raring", "edition": 5, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-18T00:00:00", "title": "Ubuntu Update for linux-lts-raring USN-2020-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2894", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4343", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841618", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841618", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2020_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux-lts-raring USN-2020-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841618\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-18 15:45:27 +0530 (Mon, 18 Nov 2013)\");\n script_cve_id(\"CVE-2013-0343\", \"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\",\n \"CVE-2013-2894\", \"CVE-2013-2895\", \"CVE-2013-2897\", \"CVE-2013-4343\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-lts-raring USN-2020-1\");\n\n\n script_tag(name:\"affected\", value:\"linux-lts-raring on Ubuntu 12.04 LTS\");\n script_tag(name:\"insight\", value:\"An information leak was discovered in the handling of ICMPv6\nRouter Advertisement (RA) messages in the Linux kernel's IPv6 network stack. A\nremote attacker could exploit this flaw to cause a denial of service\n(excessive retries and address-generation outage), and consequently obtain\nsensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user could\nexploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\nleverage this flaw to cause a denial of service via a specially crafted\ndevice. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service vias\na specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem\nof the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled. A physically\nproximate attacker could exploit this flaw to cause a denial of service via\na specially crafted device. (CVE-2013-2894)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A\nphysically proximate attacker could cause a denial of service (OOPS) or\nobtain sensitive information from kernel memory via a specially crafted\ndevice. (CVE-2013-2895)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\nphysically proximate attacker could leverage this flaw to cause a denial of\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nWannes Rombouts reported a vulnerability in the networking tuntap interface\nof the Linux kernel. A local user with the CAP_NET_ADMIN capability could\nleverage this flaw to gain full admin privileges. (CVE-2013-4343)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2020-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2020-1/\");\n script_tag(name:\"summary\", value:\"Check for the Version of linux-lts-raring\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU12\\.04 LTS\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.8.0-33-generic\", ver:\"3.8.0-33.48~precise1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:57:44", "references": ["2050-1", "http://www.ubuntu.com/usn/usn-2050-1/"], "pluginID": "1361412562310841656", "description": "Check for the Version of linux-ti-omap4", "edition": 5, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-12-17T00:00:00", "title": "Ubuntu Update for linux-ti-omap4 USN-2050-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2896", "CVE-2013-2892", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-2899", "CVE-2013-4387", "CVE-2013-4350", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4470", "CVE-2013-2888", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841656", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841656", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2050_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux-ti-omap4 USN-2050-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841656\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-17 12:09:12 +0530 (Tue, 17 Dec 2013)\");\n script_cve_id(\"CVE-2013-0343\", \"CVE-2013-2147\", \"CVE-2013-2888\", \"CVE-2013-2889\",\n \"CVE-2013-2892\", \"CVE-2013-2893\", \"CVE-2013-2895\", \"CVE-2013-2896\",\n \"CVE-2013-2897\", \"CVE-2013-2899\", \"CVE-2013-4299\", \"CVE-2013-4350\",\n \"CVE-2013-4387\", \"CVE-2013-4470\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-2050-1\");\n\n\n script_tag(name:\"affected\", value:\"linux-ti-omap4 on Ubuntu 13.10\");\n script_tag(name:\"insight\", value:\"An information leak was discovered in the handling of ICMPv6\nRouter Advertisement (RA) messages in the Linux kernel's IPv6 network stack. A\nremote attacker could exploit this flaw to cause a denial of service\n(excessive retries and address-generation outage), and consequently obtain\nsensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Array and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user could\nexploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem of\nthe Linux kernel. A physically proximate attacker could exploit this flaw\nto execute arbitrary code or cause a denial of service (heap memory\ncorruption) via a specially crafted device that provides an invalid Report\nID. (CVE-2013-2888)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\nleverage this flaw to cause a denial of service via a specially crafted\ndevice. (CVE-2013-2889)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem\nof the Linux kerenl when CONFIG_HID_PANTHERLORD is enabled. A physically\nproximate attacker could cause a denial of service (heap out-of-bounds\nwrite) via a specially crafted device. (CVE-2013-2892)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service vias\na specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A\nphysically proximate attacker could cause a denial of service (OOPS) or\nobtain sensitive information from kernel memory via a specially crafted\ndevice. (CVE-2013-2895)\n\nKees Cook discovered a vulnerability in the Linux Kernel's Human Interface\nDevice (HID) subsystem's support for N-Trig touch screens. A physically\nproximate attacker could exploit this flaw to cause a denial of service\n(OOPS) via a specially crafted device. (CVE-2013-2896)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\nphysically proximate attacker could leverage this flaw to cause a denial of\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nKees Cook discovered a flaw in the Human Interface De ...\n\n Description truncated, for more information please check the Reference URL\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2050-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2050-1/\");\n script_tag(name:\"summary\", value:\"Check for the Version of linux-ti-omap4\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU13\\.10\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU13.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-236-omap4\", ver:\"3.5.0-236.52\", rls:\"UBUNTU13.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-19T15:08:41", "references": ["2050-1", "http://www.ubuntu.com/usn/usn-2050-1/"], "pluginID": "841656", "description": "Check for the Version of linux-ti-omap4", "edition": 4, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-12-17T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux-ti-omap4 USN-2050-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2896", "CVE-2013-2892", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-2899", "CVE-2013-4387", "CVE-2013-4350", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4470", "CVE-2013-2888", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-01-19T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841656", "id": "OPENVAS:841656", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2050_1.nasl 8466 2018-01-19 06:58:30Z teissa $\n#\n# Ubuntu Update for linux-ti-omap4 USN-2050-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841656);\n script_version(\"$Revision: 8466 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-19 07:58:30 +0100 (Fri, 19 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-17 12:09:12 +0530 (Tue, 17 Dec 2013)\");\n script_cve_id(\"CVE-2013-0343\", \"CVE-2013-2147\", \"CVE-2013-2888\", \"CVE-2013-2889\",\n \"CVE-2013-2892\", \"CVE-2013-2893\", \"CVE-2013-2895\", \"CVE-2013-2896\",\n \"CVE-2013-2897\", \"CVE-2013-2899\", \"CVE-2013-4299\", \"CVE-2013-4350\",\n \"CVE-2013-4387\", \"CVE-2013-4470\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-2050-1\");\n\n tag_insight = \"An information leak was discovered in the handling of ICMPv6\nRouter Advertisement (RA) messages in the Linux kernel's IPv6 network stack. A\nremote attacker could exploit this flaw to cause a denial of service\n(excessive retries and address-generation outage), and consequently obtain\nsensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Array and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user could\nexploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem of\nthe Linux kernel. A physically proximate attacker could exploit this flaw\nto execute arbitrary code or cause a denial of service (heap memory\ncorruption) via a specially crafted device that provides an invalid Report\nID. (CVE-2013-2888)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\nleverage this flaw to cause a denial of service via a specially crafted\ndevice. (CVE-2013-2889)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem\nof the Linux kerenl when CONFIG_HID_PANTHERLORD is enabled. A physically\nproximate attacker could cause a denial of service (heap out-of-bounds\nwrite) via a specially crafted device. (CVE-2013-2892)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service vias\na specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A\nphysically proximate attacker could cause a denial of service (OOPS) or\nobtain sensitive information from kernel memory via a specially crafted\ndevice. (CVE-2013-2895)\n\nKees Cook discovered a vulnerability in the Linux Kernel's Human Interface\nDevice (HID) subsystem's support for N-Trig touch screens. A physically\nproximate attacker could exploit this flaw to cause a denial of service\n(OOPS) via a specially crafted device. (CVE-2013-2896)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\nphysically proximate attacker could leverage this flaw to cause a denial of\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nKees Cook discovered a flaw in the Human Interface De ...\n\n Description truncated, for more information please check the Reference URL\";\n\n tag_affected = \"linux-ti-omap4 on Ubuntu 13.10\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2050-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2050-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of linux-ti-omap4\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU13.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-236-omap4\", ver:\"3.5.0-236.52\", rls:\"UBUNTU13.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-23T13:09:50", "references": ["1997-1", "http://www.ubuntu.com/usn/usn-1997-1/"], "pluginID": "841608", "description": "Check for the Version of linux-ti-omap4", "edition": 4, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-10-29T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux-ti-omap4 USN-1997-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147"], "modified": "2018-01-23T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841608", "id": "OPENVAS:841608", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1997_1.nasl 8494 2018-01-23 06:57:55Z teissa $\n#\n# Ubuntu Update for linux-ti-omap4 USN-1997-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841608);\n script_version(\"$Revision: 8494 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-23 07:57:55 +0100 (Tue, 23 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-10-29 17:00:16 +0530 (Tue, 29 Oct 2013)\");\n script_cve_id(\"CVE-2013-2147\");\n script_tag(name:\"cvss_base\", value:\"2.1\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-1997-1\");\n\n tag_insight = \"Dan Carpenter discovered an information leak in the HP Smart Array and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user could\nexploit this flaw to obtain sensitive information from kernel memory.\";\n\n tag_affected = \"linux-ti-omap4 on Ubuntu 12.10\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"1997-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1997-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of linux-ti-omap4\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-234-omap4\", ver:\"3.5.0-234.50\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2017-12-04T11:21:52", "references": ["1999-1", "http://www.ubuntu.com/usn/usn-1999-1/"], "pluginID": "841610", "description": "Check for the Version of linux-ti-omap4", "edition": 3, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-10-29T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux-ti-omap4 USN-1999-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841610", "id": "OPENVAS:841610", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1999_1.nasl 7958 2017-12-01 06:47:47Z santu $\n#\n# Ubuntu Update for linux-ti-omap4 USN-1999-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841610);\n script_version(\"$Revision: 7958 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:47:47 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2013-10-29 17:02:30 +0530 (Tue, 29 Oct 2013)\");\n script_cve_id(\"CVE-2013-2147\");\n script_tag(name:\"cvss_base\", value:\"2.1\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-1999-1\");\n\n tag_insight = \"Dan Carpenter discovered an information leak in the HP Smart Array and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user could\nexploit this flaw to obtain sensitive information from kernel memory.\";\n\n tag_affected = \"linux-ti-omap4 on Ubuntu 13.04\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"1999-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1999-1/\");\n script_summary(\"Check for the Version of linux-ti-omap4\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU13.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-234-omap4\", ver:\"3.5.0-234.50\", rls:\"UBUNTU13.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:09:20", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4299", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2889", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2897", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2893"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-versatile", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-preempt", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-386", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-sparc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-ia64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-sparc64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-lpia", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-53.115", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-53-server", "operator": "lt"}], "description": "Dan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel\u2019s dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)", "edition": 3, "reporter": "Ubuntu", "published": "2013-11-08T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2013-11-08T00:00:00", "id": "USN-2015-1", "href": "https://usn.ubuntu.com/2015-1/", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T00:10:19", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4299", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2889", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2897", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2893"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-358.71", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-358-ec2", "operator": "lt"}], "description": "Dan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel\u2019s dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)", "edition": 3, "reporter": "Ubuntu", "published": "2013-11-08T00:00:00", "title": "Linux kernel (EC2) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2013-11-08T00:00:00", "id": "USN-2016-1", "href": "https://usn.ubuntu.com/2016-1/", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T00:08:51", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2889", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2895", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2897", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2894", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4343", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4270", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2893", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0343"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.8.0-33.48~precise1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.8.0-33-generic", "operator": "lt"}], "description": "An information leak was discovered in the handling of ICMPv6 Router Advertisement (RA) messages in the Linux kernel\u2019s IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service (excessive retries and address-generation outage), and consequently obtain sensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled. A physically proximate attacker could exploit this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2894)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A physically proximate attacker could cause a denial of service (OOPS) or obtain sensitive information from kernel memory via a specially crafted device. (CVE-2013-2895)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nMiroslav Vadkerti discovered a flaw in how the permissions for network sysctls are handled in the Linux kernel. An unprivileged local user could exploit this flaw to have privileged access to files in /proc/sys/net/. (CVE-2013-4270)\n\nWannes Rombouts reported a vulnerability in the networking tuntap interface of the Linux kernel. A local user with the CAP_NET_ADMIN capability could leverage this flaw to gain full admin privileges. (CVE-2013-4343)", "edition": 3, "reporter": "Ubuntu", "published": "2013-11-08T00:00:00", "title": "Linux kernel (Raring HWE) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2894", "CVE-2013-4270", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4343", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2013-11-08T00:00:00", "id": "USN-2020-1", "href": "https://usn.ubuntu.com/2020-1/", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:09", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2889", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2895", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2897", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2894", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4343", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4270", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2893", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0343"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "13.04", "packageVersion": "3.8.0-33.48", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.8.0-33-generic", "operator": "lt"}], "description": "An information leak was discovered in the handling of ICMPv6 Router Advertisement (RA) messages in the Linux kernel\u2019s IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service (excessive retries and address-generation outage), and consequently obtain sensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled. A physically proximate attacker could exploit this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2894)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A physically proximate attacker could cause a denial of service (OOPS) or obtain sensitive information from kernel memory via a specially crafted device. (CVE-2013-2895)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nMiroslav Vadkerti discovered a flaw in how the permissions for network sysctls are handled in the Linux kernel. An unprivileged local user could exploit this flaw to have privileged access to files in /proc/sys/net/. (CVE-2013-4270)\n\nWannes Rombouts reported a vulnerability in the networking tuntap interface of the Linux kernel. A local user with the CAP_NET_ADMIN capability could leverage this flaw to gain full admin privileges. (CVE-2013-4343)", "edition": 3, "reporter": "Ubuntu", "published": "2013-11-08T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2894", "CVE-2013-4270", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4343", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2013-11-08T00:00:00", "id": "USN-2023-1", "href": "https://usn.ubuntu.com/2023-1/", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:26", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2892", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2888", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4299", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4470", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2889", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4350", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2895", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2897", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147", "https://people.canonical.com/~ubuntu-security/cve/CVE-2014-1445", "https://people.canonical.com/~ubuntu-security/cve/CVE-2014-1444", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2896", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2899", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2893", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4387", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0343"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "13.10", "packageVersion": "3.5.0-236.52", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-236-omap4", "operator": "lt"}], "description": "An information leak was discovered in the handling of ICMPv6 Router Advertisement (RA) messages in the Linux kernel\u2019s IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service (excessive retries and address-generation outage), and consequently obtain sensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem of the Linux kernel. A physically proximate attacker could exploit this flaw to execute arbitrary code or cause a denial of service (heap memory corruption) via a specially crafted device that provides an invalid Report ID. (CVE-2013-2888)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kerenl when CONFIG_HID_PANTHERLORD is enabled. A physically proximate attacker could cause a denial of service (heap out-of-bounds write) via a specially crafted device. (CVE-2013-2892)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A physically proximate attacker could cause a denial of service (OOPS) or obtain sensitive information from kernel memory via a specially crafted device. (CVE-2013-2895)\n\nKees Cook discovered a vulnerability in the Linux Kernel\u2019s Human Interface Device (HID) subsystem\u2019s support for N-Trig touch screens. A physically proximate attacker could exploit this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2896)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kernel whe CONFIG_HID_PICOLCD is enabled. A physically proximate attacker could exploit this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2899)\n\nA flaw was discovered in the Linux kernel\u2019s dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)\n\nAlan Chester reported a flaw in the IPv6 Stream Control Transmission Protocol (SCTP) of the Linux kernel. A remote attacker could exploit this flaw to obtain sensitive information by sniffing network traffic. (CVE-2013-4350)\n\nDmitry Vyukov reported a flaw in the Linux kernel\u2019s handling of IPv6 UDP Fragmentation Offload (UFO) processing. A remote attacker could leverage this flaw to cause a denial of service (system crash). (CVE-2013-4387)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel\u2019s UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nAn information leak was discovered in the Linux kernel\u2019s SIOCWANDEV ioctl call. A local user with the CAP_NET_ADMIN capability could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1444)\n\nAn information leak was discovered in the wanxl ioctl function the Linux kernel. A local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1445)", "edition": 3, "reporter": "Ubuntu", "published": "2013-12-07T00:00:00", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2896", "CVE-2013-2892", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-2899", "CVE-2013-4387", "CVE-2014-1444", "CVE-2013-4350", "CVE-2013-0343", "CVE-2014-1445", "CVE-2013-2895", "CVE-2013-4470", "CVE-2013-2888", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2013-12-07T00:00:00", "id": "USN-2050-1", "href": "https://usn.ubuntu.com/2050-1/", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:45", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-234.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-234-omap4", "operator": "lt"}], "description": "Dan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory.", "edition": 3, "reporter": "Ubuntu", "published": "2013-10-22T00:00:00", "title": "Linux kernel (OMAP4) vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2147"], "modified": "2013-10-22T00:00:00", "id": "USN-1997-1", "href": "https://usn.ubuntu.com/1997-1/", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T00:08:56", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-42.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-42-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-42.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-42-omap", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-42.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-42-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-42.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-42-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-42.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-42-highbank", "operator": "lt"}], "description": "Dan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory.", "edition": 3, "reporter": "Ubuntu", "published": "2013-10-22T00:00:00", "title": "Linux kernel vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2147"], "modified": "2013-10-22T00:00:00", "id": "USN-1996-1", "href": "https://usn.ubuntu.com/1996-1/", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T00:08:55", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.5.0-42.65~precise1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-42-generic", "operator": "lt"}], "description": "Dan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory.", "edition": 3, "reporter": "Ubuntu", "published": "2013-10-22T00:00:00", "title": "Linux kernel (Quantal HWE) vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2147"], "modified": "2013-10-22T00:00:00", "id": "USN-1994-1", "href": "https://usn.ubuntu.com/1994-1/", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T00:09:30", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2147"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "13.04", "packageVersion": "3.5.0-234.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-234-omap4", "operator": "lt"}], "description": "Dan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory.", "edition": 3, "reporter": "Ubuntu", "published": "2013-10-22T00:00:00", "title": "Linux kernel (OMAP4) vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2147"], "modified": "2013-10-22T00:00:00", "id": "USN-1999-1", "href": "https://usn.ubuntu.com/1999-1/", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T00:09:54", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2892", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2888", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2889", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4350", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2895", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2897", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2896", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2899", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-2893", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-4387", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0343"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "13.04", "packageVersion": "3.5.0-235.51", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-235-omap4", "operator": "lt"}], "description": "An information leak was discovered in the handling of ICMPv6 Router Advertisement (RA) messages in the Linux kernel\u2019s IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service (excessive retries and address-generation outage), and consequently obtain sensitive information. (CVE-2013-0343)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem of the Linux kernel. A physically proximate attacker could exploit this flaw to execute arbitrary code or cause a denial of service (heap memory corruption) via a specially crafted device that provides an invalid Report ID. (CVE-2013-2888)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kerenl when CONFIG_HID_PANTHERLORD is enabled. A physically proximate attacker could cause a denial of service (heap out-of-bounds write) via a specially crafted device. (CVE-2013-2892)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A physically proximate attacker could cause a denial of service (OOPS) or obtain sensitive information from kernel memory via a specially crafted device. (CVE-2013-2895)\n\nKees Cook discovered a vulnerability in the Linux Kernel\u2019s Human Interface Device (HID) subsystem\u2019s support for N-Trig touch screens. A physically proximate attacker could exploit this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2896)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2897)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kernel whe CONFIG_HID_PICOLCD is enabled. A physically proximate attacker could exploit this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2899)\n\nAlan Chester reported a flaw in the IPv6 Stream Control Transmission Protocol (SCTP) of the Linux kernel. A remote attacker could exploit this flaw to obtain sensitive information by sniffing network traffic. (CVE-2013-4350)\n\nDmitry Vyukov reported a flaw in the Linux kernel\u2019s handling of IPv6 UDP Fragmentation Offload (UFO) processing. A remote attacker could leverage this flaw to cause a denial of service (system crash). (CVE-2013-4387)", "edition": 3, "reporter": "Ubuntu", "published": "2013-11-08T00:00:00", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2896", "CVE-2013-2892", "CVE-2013-2897", "CVE-2013-2899", "CVE-2013-4387", "CVE-2013-4350", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-2888", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2013-11-08T00:00:00", "id": "USN-2024-1", "href": "https://usn.ubuntu.com/2024-1/", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2018-09-01T23:58:32", "references": [], "pluginID": "70799", "description": "Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2013-11-09T00:00:00", "title": "Ubuntu 10.04 LTS : linux vulnerabilities (USN-2015-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2016-10-26T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia"], "id": "UBUNTU_USN-2015-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70799", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2015-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70799);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:16:25 $\");\n\n script_cve_id(\"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2897\", \"CVE-2013-4299\");\n script_bugtraq_id(60280, 62042, 62044, 62050, 63183);\n script_xref(name:\"USN\", value:\"2015-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux vulnerabilities (USN-2015-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID)\nsubsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate\nattacker could leverage this flaw to cause a denial of service via a\nspecially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service\nvias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered yet another flaw in the Human Interface Device\n(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is\nenabled. A physically proximate attacker could leverage this flaw to\ncause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nA flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-53-386\", pkgver:\"2.6.32-53.115\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-53-generic\", pkgver:\"2.6.32-53.115\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-53-generic-pae\", pkgver:\"2.6.32-53.115\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-53-lpia\", pkgver:\"2.6.32-53.115\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-53-preempt\", pkgver:\"2.6.32-53.115\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-53-server\", pkgver:\"2.6.32-53.115\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-53-versatile\", pkgver:\"2.6.32-53.115\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-53-virtual\", pkgver:\"2.6.32-53.115\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-386 / linux-image-2.6-generic / etc\");\n}\n", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:06:42", "references": [], "pluginID": "70805", "description": "An information leak was discovered in the handling of ICMPv6 Router Advertisement (RA) messages in the Linux kernel's IPv6 network stack.\nA remote attacker could exploit this flaw to cause a denial of service (excessive retries and address-generation outage), and consequently obtain sensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled.\nA physically proximate attacker could exploit this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2894)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled.\nA physically proximate attacker could cause a denial of service (OOPS) or obtain sensitive information from kernel memory via a specially crafted device. (CVE-2013-2895)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nWannes Rombouts reported a vulnerability in the networking tuntap interface of the Linux kernel. A local user with the CAP_NET_ADMIN capability could leverage this flaw to gain full admin privileges.\n(CVE-2013-4343).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2013-11-09T00:00:00", "title": "Ubuntu 13.04 : linux vulnerabilities (USN-2023-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2894", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4343", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-08-03T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.8-generic", "cpe:/o:canonical:ubuntu_linux:13.04"], "id": "UBUNTU_USN-2023-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70805", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2023-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70805);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/08/03 12:21:24\");\n\n script_cve_id(\"CVE-2013-0343\", \"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2894\", \"CVE-2013-2895\", \"CVE-2013-2897\", \"CVE-2013-4343\");\n script_bugtraq_id(58795, 60280, 62042, 62044, 62045, 62050, 62052, 62360);\n script_xref(name:\"USN\", value:\"2023-1\");\n\n script_name(english:\"Ubuntu 13.04 : linux vulnerabilities (USN-2023-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An information leak was discovered in the handling of ICMPv6 Router\nAdvertisement (RA) messages in the Linux kernel's IPv6 network stack.\nA remote attacker could exploit this flaw to cause a denial of service\n(excessive retries and address-generation outage), and consequently\nobtain sensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID)\nsubsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate\nattacker could leverage this flaw to cause a denial of service via a\nspecially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service\nvias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered a flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled.\nA physically proximate attacker could exploit this flaw to cause a\ndenial of service via a specially crafted device. (CVE-2013-2894)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled.\nA physically proximate attacker could cause a denial of service (OOPS)\nor obtain sensitive information from kernel memory via a specially\ncrafted device. (CVE-2013-2895)\n\nKees Cook discovered yet another flaw in the Human Interface Device\n(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is\nenabled. A physically proximate attacker could leverage this flaw to\ncause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nWannes Rombouts reported a vulnerability in the networking tuntap\ninterface of the Linux kernel. A local user with the CAP_NET_ADMIN\ncapability could leverage this flaw to gain full admin privileges.\n(CVE-2013-4343).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-3.8-generic package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.8-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:13.04\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(13\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 13.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"13.04\", pkgname:\"linux-image-3.8.0-33-generic\", pkgver:\"3.8.0-33.48\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.8-generic\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:04:15", "references": [], "pluginID": "70803", "description": "An information leak was discovered in the handling of ICMPv6 Router Advertisement (RA) messages in the Linux kernel's IPv6 network stack.\nA remote attacker could exploit this flaw to cause a denial of service (excessive retries and address-generation outage), and consequently obtain sensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered a flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled.\nA physically proximate attacker could exploit this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2894)\n\nKees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled.\nA physically proximate attacker could cause a denial of service (OOPS) or obtain sensitive information from kernel memory via a specially crafted device. (CVE-2013-2895)\n\nKees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nWannes Rombouts reported a vulnerability in the networking tuntap interface of the Linux kernel. A local user with the CAP_NET_ADMIN capability could leverage this flaw to gain full admin privileges.\n(CVE-2013-4343).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2013-11-09T00:00:00", "title": "Ubuntu 12.04 LTS : linux-lts-raring vulnerabilities (USN-2020-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2894", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4343", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2018-08-03T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.8-generic", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "id": "UBUNTU_USN-2020-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70803", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2020-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70803);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/08/03 12:21:24\");\n\n script_cve_id(\"CVE-2013-0343\", \"CVE-2013-2147\", \"CVE-2013-2889\", \"CVE-2013-2893\", \"CVE-2013-2894\", \"CVE-2013-2895\", \"CVE-2013-2897\", \"CVE-2013-4343\");\n script_bugtraq_id(58795, 60280, 62042, 62044, 62045, 62050, 62052, 62360);\n script_xref(name:\"USN\", value:\"2020-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux-lts-raring vulnerabilities (USN-2020-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An information leak was discovered in the handling of ICMPv6 Router\nAdvertisement (RA) messages in the Linux kernel's IPv6 network stack.\nA remote attacker could exploit this flaw to cause a denial of service\n(excessive retries and address-generation outage), and consequently\nobtain sensitive information. (CVE-2013-0343)\n\nDan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory. (CVE-2013-2147)\n\nKees Cook discovered flaw in the Human Interface Device (HID)\nsubsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate\nattacker could leverage this flaw to cause a denial of service via a\nspecially crafted device. (CVE-2013-2889)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\nproximate attacker can leverage this flaw to cause a denial of service\nvias a specially crafted device. (CVE-2013-2893)\n\nKees Cook discovered a flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled.\nA physically proximate attacker could exploit this flaw to cause a\ndenial of service via a specially crafted device. (CVE-2013-2894)\n\nKees Cook discovered another flaw in the Human Interface Device (HID)\nsubsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled.\nA physically proximate attacker could cause a denial of service (OOPS)\nor obtain sensitive information from kernel memory via a specially\ncrafted device. (CVE-2013-2895)\n\nKees Cook discovered yet another flaw in the Human Interface Device\n(HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is\nenabled. A physically proximate attacker could leverage this flaw to\ncause a denial of service (OOPS) via a specially crafted device.\n(CVE-2013-2897)\n\nWannes Rombouts reported a vulnerability in the networking tuntap\ninterface of the Linux kernel. A local user with the CAP_NET_ADMIN\ncapability could leverage this flaw to gain full admin privileges.\n(CVE-2013-4343).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-3.8-generic package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.8-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.8.0-33-generic\", pkgver:\"3.8.0-33.48~precise1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.8-generic\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:42:45", "references": [], "pluginID": "70542", "description": "Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2013-10-22T00:00:00", "title": "Ubuntu 12.10 : linux vulnerability (USN-1996-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147"], "modified": "2018-08-03T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-highbank", "cpe:/o:canonical:ubuntu_linux:12.10", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-generic"], "id": "UBUNTU_USN-1996-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70542", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1996-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70542);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/08/03 12:21:24\");\n\n script_cve_id(\"CVE-2013-2147\");\n script_bugtraq_id(60280);\n script_xref(name:\"USN\", value:\"1996-1\");\n\n script_name(english:\"Ubuntu 12.10 : linux vulnerability (USN-1996-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected linux-image-3.5-generic and / or\nlinux-image-3.5-highbank packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.10\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/10/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/10/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.10\", pkgname:\"linux-image-3.5.0-42-generic\", pkgver:\"3.5.0-42.65\")) flag++;\nif (ubuntu_check(osver:\"12.10\", pkgname:\"linux-image-3.5.0-42-highbank\", pkgver:\"3.5.0-42.65\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.5-generic / linux-image-3.5-highbank\");\n}\n", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-01T23:32:45", "references": ["https://oss.oracle.com/pipermail/el-errata/2014-February/003959.html"], "pluginID": "72472", "description": "The remote Oracle Linux host is missing a security update for the Unbreakable Enterprise kernel package(s).", "edition": 4, "reporter": "Tenable", "published": "2014-02-13T00:00:00", "title": "Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2014-3002)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-4345", "CVE-2013-2896", "CVE-2013-2898", "CVE-2013-2892", "CVE-2013-4592", "CVE-2013-2147", "CVE-2013-2897", "CVE-2013-2148", "CVE-2013-6368", "CVE-2013-2850", "CVE-2013-2899", "CVE-2013-6367", "CVE-2013-6376", "CVE-2013-4350", "CVE-2013-0343", "CVE-2013-2895", "CVE-2013-4470", "CVE-2013-2888", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2015-12-01T00:00:00", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-26.el6uek", "p-cpe:/a:oracle:linux:kernel-uek-firmware", "p-cpe:/a:oracle:linux:kernel-uek-doc", "p-cpe:/a:oracle:linux:kernel-uek", "p-cpe:/a:oracle:linux:kernel-uek-debug-devel", "p-cpe:/a:oracle:linux:kernel-uek-devel", "p-cpe:/a:oracle:linux:dtrace-modules-headers", "p-cpe:/a:oracle:linux:dtrace-modules-provider-headers", "p-cpe:/a:oracle:linux:kernel-uek-headers", "p-cpe:/a:oracle:linux:kernel-uek-debug"], "id": "ORACLELINUX_ELSA-2014-3002.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=72472", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from Oracle Linux\n# Security Advisory ELSA-2014-3002.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(72472);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/12/01 17:35:11 $\");\n\n script_cve_id(\"CVE-2013-0343\", \"CVE-2013-2147\", \"CVE-2013-2148\", \"CVE-2013-2850\", \"CVE-2013-2888\", \"CVE-2013-2889\", \"CVE-2013-2892\", \"CVE-2013-2893\", \"CVE-2013-2895\", \"CVE-2013-2896\", \"CVE-2013-2897\", \"CVE-2013-2898\", \"CVE-2013-2899\", \"CVE-2013-4299\", \"CVE-2013-4345\", \"CVE-2013-4350\", \"CVE-2013-4470\", \"CVE-2013-4592\", \"CVE-2013-6367\", \"CVE-2013-6368\", \"CVE-2013-6376\");\n\n script_name(english:\"Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2014-3002)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote Oracle Linux host is missing a security update for\nthe Unbreakable Enterprise kernel package(s).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2014-February/003959.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected unbreakable enterprise kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-26.el6uek\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dtrace-modules-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dtrace-modules-provider-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/02/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/02/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"dtrace-modules-3.8.13-26.el6uek-0.4.2-3.el6\")) flag++;\nif (rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"dtrace-modules-headers-0.4.2-3.el6\")) flag++;\nif (rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"dtrace-modules-provider-headers-0.4.2-3.el6\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-3.8.13-26.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-debug-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-debug-3.8.13-26.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-debug-devel-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-debug-devel-3.8.13-26.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-devel-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-devel-3.8.13-26.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-doc-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-doc-3.8.13-26.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-firmware-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-firmware-3.8.13-26.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-headers-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-headers-3.8.13-26.el6uek\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 7.9, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:33:35", "references": ["https://oss.oracle.com/pipermail/el-errata/2013-October/003737.html", "https://oss.oracle.com/pipermail/el-errata/2013-October/003738.html"], "pluginID": "70526", "description": "Description of changes:\n\n[2.6.39-400.209.2.el6uek]\n- dm snapshot: fix data corruption (Mikulas Patocka) [Orabug: 17618492] {CVE-2013-4299}", "edition": 4, "reporter": "Tenable", "published": "2013-10-20T00:00:00", "title": "Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2013-2576)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-4299"], "modified": "2015-12-01T00:00:00", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:kernel-uek-firmware", "p-cpe:/a:oracle:linux:kernel-uek-doc", "p-cpe:/a:oracle:linux:kernel-uek", "cpe:/o:oracle:linux:5", "p-cpe:/a:oracle:linux:kernel-uek-debug-devel", "p-cpe:/a:oracle:linux:kernel-uek-devel", "p-cpe:/a:oracle:linux:kernel-uek-debug"], "id": "ORACLELINUX_ELSA-2013-2576.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70526", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisory ELSA-2013-2576.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70526);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/12/01 17:25:13 $\");\n\n script_cve_id(\"CVE-2013-4299\");\n script_bugtraq_id(63183);\n\n script_name(english:\"Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2013-2576)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Description of changes:\n\n[2.6.39-400.209.2.el6uek]\n- dm snapshot: fix data corruption (Mikulas Patocka) [Orabug: 17618492] \n{CVE-2013-4299}\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-October/003737.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-October/003738.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected unbreakable enterprise kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/10/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/10/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(5|6)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5 / 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-uek-2.6.39\") && rpm_check(release:\"EL5\", reference:\"kernel-uek-2.6.39-400.209.2.el5uek\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-uek-debug-2.6.39\") && rpm_check(release:\"EL5\", reference:\"kernel-uek-debug-2.6.39-400.209.2.el5uek\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-uek-debug-devel-2.6.39\") && rpm_check(release:\"EL5\", reference:\"kernel-uek-debug-devel-2.6.39-400.209.2.el5uek\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-uek-devel-2.6.39\") && rpm_check(release:\"EL5\", reference:\"kernel-uek-devel-2.6.39-400.209.2.el5uek\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-uek-doc-2.6.39\") && rpm_check(release:\"EL5\", reference:\"kernel-uek-doc-2.6.39-400.209.2.el5uek\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-uek-firmware-2.6.39\") && rpm_check(release:\"EL5\", reference:\"kernel-uek-firmware-2.6.39-400.209.2.el5uek\")) flag++;\n\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-2.6.39\") && rpm_check(release:\"EL6\", reference:\"kernel-uek-2.6.39-400.209.2.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-debug-2.6.39\") && rpm_check(release:\"EL6\", reference:\"kernel-uek-debug-2.6.39-400.209.2.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-debug-devel-2.6.39\") && rpm_check(release:\"EL6\", reference:\"kernel-uek-debug-devel-2.6.39-400.209.2.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-devel-2.6.39\") && rpm_check(release:\"EL6\", reference:\"kernel-uek-devel-2.6.39-400.209.2.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-doc-2.6.39\") && rpm_check(release:\"EL6\", reference:\"kernel-uek-doc-2.6.39-400.209.2.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-firmware-2.6.39\") && rpm_check(release:\"EL6\", reference:\"kernel-uek-firmware-2.6.39-400.209.2.el6uek\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:00:45", "references": [], "pluginID": "70540", "description": "Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2013-10-22T00:00:00", "title": "Ubuntu 12.04 LTS : linux-lts-quantal vulnerability (USN-1994-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2147"], "modified": "2018-08-15T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-generic", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "id": "UBUNTU_USN-1994-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70540", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1994-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70540);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/08/15 12:24:49\");\n\n script_cve_id(\"CVE-2013-2147\");\n script_xref(name:\"USN\", value:\"1994-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux-lts-quantal vulnerability (USN-1994-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dan Carpenter discovered an information leak in the HP Smart Aray and\nCompaq SMART2 disk-array driver in the Linux kernel. A local user\ncould exploit this flaw to obtain sensitive information from kernel\nmemory.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-3.5-generic package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/10/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/10/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.5.0-42-generic\", pkgver:\"3.5.0-42.65~precise1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.5-generic\");\n}\n", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-12T10:10:48", "references": ["https://www.redhat.com/security/data/cve/CVE-2013-4299.html", "http://rhn.redhat.com/errata/RHSA-2013-1860.html"], "pluginID": "78990", "description": "Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5.9 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\n* An information leak flaw was found in the way the Linux kernel's device mapper subsystem, under certain conditions, interpreted data written to snapshot block devices. An attacker could use this flaw to read data from disk blocks in free space, which are normally inaccessible. (CVE-2013-4299, Moderate)\n\nRed Hat would like to thank Fujitsu for reporting this issue.\n\nThis update also fixes the following bugs :\n\n* A previous fix to the kernel did not contain a memory barrier in the percpu_up_write() function. Consequently, under certain circumstances, a race condition could occur, leading to memory corruption and a subsequent kernel panic. This update introduces a new memory barrier pair, light_mb() and heavy_mb(), for per-CPU basis read and write semaphores (percpu-rw-semaphores) ensuring that the race condition can no longer occur. In addition, the read path performance of 'percpu-rw-semaphores' has been improved. (BZ#884735)\n\n* Due to several related bugs in the be2net driver, the driver did not handle firmware manipulation of the network cards using the Emulex XE201 I/O controller properly. As a consequence, these NICs could not recover from an error successfully. A series of patches has been applied that fix the initialization sequence, and firmware download and activation for the XE201 controller. Error recovery now works as expected for the be2net NICs using the Emulex XE201 I /O controller.\n(BZ#1019892)\n\n* A bug in the be2net driver could cause packet corruption when handling VLAN-tagged packets with no assigned VLAN group. This happened because the be2net driver called a function responsible for VLAN tag reinsertion in a wrong order in the code. The code has been restructured and the be2net driver now calls the __vlan_put_tag() function correctly, thus avoiding the packet corruption. (BZ#1019893)\n\n* A previous patch to the kernel introduced the 'VLAN tag re-insertion' workaround to resolve a problem with incorrectly handled VLAN-tagged packets with no assigned VLAN group while the be2net driver was in promiscuous mode. However, this solution led to packet corruption and a subsequent kernel oops if such a processed packet was a GRO packet. Therefore, a patch has been applied to restrict VLAN tag re-insertion only to non-GRO packets. The be2net driver now processes VLAN-tagged packets with no assigned VLAN group correctly in this situation. (BZ#1023347)\n\nAll kernel users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 7, "reporter": "Tenable", "published": "2014-11-08T00:00:00", "title": "RHEL 5 : kernel (RHSA-2013:1860)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-4299"], "modified": "2018-09-10T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common", "cpe:/o:redhat:enterprise_linux:5.9", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debug", "p-cpe:/a:redhat:enterprise_linux:kernel-headers", "p-cpe:/a:redhat:enterprise_linux:kernel-xen-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:kernel-xen", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE", "p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-doc"], "id": "REDHAT-RHSA-2013-1860.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78990", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:1860. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78990);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/09/10 11:37:06\");\n\n script_cve_id(\"CVE-2013-4299\");\n script_bugtraq_id(63183);\n script_xref(name:\"RHSA\", value:\"2013:1860\");\n\n script_name(english:\"RHEL 5 : kernel (RHSA-2013:1860)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix one security issue and several bugs\nare now available for Red Hat Enterprise Linux 5.9 Extended Update\nSupport.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* An information leak flaw was found in the way the Linux kernel's\ndevice mapper subsystem, under certain conditions, interpreted data\nwritten to snapshot block devices. An attacker could use this flaw to\nread data from disk blocks in free space, which are normally\ninaccessible. (CVE-2013-4299, Moderate)\n\nRed Hat would like to thank Fujitsu for reporting this issue.\n\nThis update also fixes the following bugs :\n\n* A previous fix to the kernel did not contain a memory barrier in the\npercpu_up_write() function. Consequently, under certain circumstances,\na race condition could occur, leading to memory corruption and a\nsubsequent kernel panic. This update introduces a new memory barrier\npair, light_mb() and heavy_mb(), for per-CPU basis read and write\nsemaphores (percpu-rw-semaphores) ensuring that the race condition can\nno longer occur. In addition, the read path performance of\n'percpu-rw-semaphores' has been improved. (BZ#884735)\n\n* Due to several related bugs in the be2net driver, the driver did not\nhandle firmware manipulation of the network cards using the Emulex\nXE201 I/O controller properly. As a consequence, these NICs could not\nrecover from an error successfully. A series of patches has been\napplied that fix the initialization sequence, and firmware download\nand activation for the XE201 controller. Error recovery now works as\nexpected for the be2net NICs using the Emulex XE201 I /O controller.\n(BZ#1019892)\n\n* A bug in the be2net driver could cause packet corruption when\nhandling VLAN-tagged packets with no assigned VLAN group. This\nhappened because the be2net driver called a function responsible for\nVLAN tag reinsertion in a wrong order in the code. The code has been\nrestructured and the be2net driver now calls the __vlan_put_tag()\nfunction correctly, thus avoiding the packet corruption. (BZ#1019893)\n\n* A previous patch to the kernel introduced the 'VLAN tag\nre-insertion' workaround to resolve a problem with incorrectly handled\nVLAN-tagged packets with no assigned VLAN group while the be2net\ndriver was in promiscuous mode. However, this solution led to packet\ncorruption and a subsequent kernel oops if such a processed packet was\na GRO packet. Therefore, a patch has been applied to restrict VLAN tag\nre-insertion only to non-GRO packets. The be2net driver now processes\nVLAN-tagged packets with no assigned VLAN group correctly in this\nsituation. (BZ#1023347)\n\nAll kernel users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. The system\nmust be rebooted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2013-1860.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2013-4299.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5.9\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5\\.9([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.9\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2013:1860\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-PAE-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-PAE-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-PAE-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-debug-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-debug-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-debug-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-debug-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-debug-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-debug-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-debug-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-debug-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-debug-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-debuginfo-common-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-debuginfo-common-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-debuginfo-common-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", reference:\"kernel-doc-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i386\", reference:\"kernel-headers-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-headers-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-headers-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-kdump-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-kdump-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"s390x\", reference:\"kernel-kdump-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-xen-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-xen-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-xen-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-xen-debuginfo-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"i686\", reference:\"kernel-xen-devel-2.6.18-348.21.1.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", sp:\"9\", cpu:\"x86_64\", reference:\"kernel-xen-devel-2.6.18-348.21.1.el5\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-PAE / kernel-PAE-debuginfo / kernel-PAE-devel / etc\");\n }\n}\n", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:37", "references": ["https://oss.oracle.com/pipermail/el-errata/2013-October/003757.html"], "pluginID": "70599", "description": "Description of changes:\n\n[3.8.13-16.1.1.el6uek]\n- dm snapshot: fix data corruption (Mikulas Patocka) [Orabug: 17617582] {CVE-2013-4299}", "edition": 4, "reporter": "Tenable", "published": "2013-10-25T00:00:00", "title": "Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2013-2577)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-4299"], "modified": "2015-12-01T00:00:00", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-16.1.1.el6uek-headers", "p-cpe:/a:oracle:linux:kernel-uek-firmware", "p-cpe:/a:oracle:linux:kernel-uek-doc", "p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-16.1.1.el6uek", "p-cpe:/a:oracle:linux:kernel-uek", "p-cpe:/a:oracle:linux:kernel-uek-debug-devel", "p-cpe:/a:oracle:linux:kernel-uek-devel", "p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-16.1.1.el6uek-provider-headers", "p-cpe:/a:oracle:linux:kernel-uek-headers", "p-cpe:/a:oracle:linux:kernel-uek-debug"], "id": "ORACLELINUX_ELSA-2013-2577.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70599", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisory ELSA-2013-2577.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70599);\n script_version(\"$Revision: 1.6 $\");\n script_cvs_date(\"$Date: 2015/12/01 17:25:13 $\");\n\n script_cve_id(\"CVE-2013-4299\");\n script_bugtraq_id(63183);\n\n script_name(english:\"Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2013-2577)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Description of changes:\n\n[3.8.13-16.1.1.el6uek]\n- dm snapshot: fix data corruption (Mikulas Patocka) [Orabug: 17617582] \n{CVE-2013-4299}\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-October/003757.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected unbreakable enterprise kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-16.1.1.el6uek\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-16.1.1.el6uek-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-16.1.1.el6uek-provider-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-uek-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/10/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/10/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"dtrace-modules-3.8.13-16.1.1.el6uek-0.4.0-3.el6\")) flag++;\nif (rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"dtrace-modules-3.8.13-16.1.1.el6uek-headers-0.4.0-3.el6\")) flag++;\nif (rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"dtrace-modules-3.8.13-16.1.1.el6uek-provider-headers-0.4.0-3.el6\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-3.8.13-16.1.1.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-debug-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-debug-3.8.13-16.1.1.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-debug-devel-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-debug-devel-3.8.13-16.1.1.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-devel-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-devel-3.8.13-16.1.1.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-doc-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-doc-3.8.13-16.1.1.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-firmware-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-firmware-3.8.13-16.1.1.el6uek\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-uek-headers-3.8.13\") && rpm_check(release:\"EL6\", cpu:\"x86_64\", reference:\"kernel-uek-headers-3.8.13-16.1.1.el6uek\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:37:29", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=999890", "https://bugzilla.redhat.com/show_bug.cgi?id=1000373", "https://bugzilla.redhat.com/show_bug.cgi?id=1000137", "http://www.nessus.org/u?cbf797dc", "https://bugzilla.redhat.com/show_bug.cgi?id=999960", "https://bugzilla.redhat.com/show_bug.cgi?id=1000360", "https://bugzilla.redhat.com/show_bug.cgi?id=1000494", "https://bugzilla.redhat.com/show_bug.cgi?id=1000429", "https://bugzilla.redhat.com/show_bug.cgi?id=1000451", "https://bugzilla.redhat.com/show_bug.cgi?id=1000414", "https://bugzilla.redhat.com/show_bug.cgi?id=1000536"], "pluginID": "69910", "description": "The 3.10.11 stable update contains a number of important fixes across the tree.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2013-09-16T00:00:00", "title": "Fedora 18 : kernel-3.10.11-100.fc18 (2013-16336)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2894", "CVE-2013-2896", "CVE-2013-2891", "CVE-2013-2892", "CVE-2013-2897", "CVE-2013-2899", "CVE-2013-2895", "CVE-2013-2888", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:18", "p-cpe:/a:fedoraproject:fedora:kernel"], "id": "FEDORA_2013-16336.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=69910", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2013-16336.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69910);\n script_version(\"$Revision: 1.6 $\");\n script_cvs_date(\"$Date: 2015/10/19 21:12:42 $\");\n\n script_cve_id(\"CVE-2013-2888\", \"CVE-2013-2889\", \"CVE-2013-2891\", \"CVE-2013-2892\", \"CVE-2013-2893\", \"CVE-2013-2894\", \"CVE-2013-2895\", \"CVE-2013-2896\", \"CVE-2013-2897\", \"CVE-2013-2899\");\n script_bugtraq_id(62042, 62043, 62044, 62045, 62046, 62047, 62048, 62049, 62050, 62052);\n script_xref(name:\"FEDORA\", value:\"2013-16336\");\n\n script_name(english:\"Fedora 18 : kernel-3.10.11-100.fc18 (2013-16336)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The 3.10.11 stable update contains a number of important fixes across\nthe tree.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1000137\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1000360\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1000373\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1000414\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1000429\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1000451\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1000494\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1000536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=999890\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=999960\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2013-September/115710.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?cbf797dc\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:18\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/09/11\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^18([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 18.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC18\", reference:\"kernel-3.10.11-100.fc18\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:49", "references": [], "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-2015-1\r\nNovember 08, 2013\r\n\r\nlinux vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 10.04 LTS\r\n\r\nSummary:\r\n\r\nSeveral security issues were fixed in the kernel.\r\n\r\nSoftware Description:\r\n- linux: Linux kernel\r\n\r\nDetails:\r\n\r\nDan Carpenter discovered an information leak in the HP Smart Aray and\r\nCompaq SMART2 disk-array driver in the Linux kernel. A local user could\r\nexploit this flaw to obtain sensitive information from kernel memory.\r\n(CVE-2013-2147)\r\n\r\nKees Cook discovered flaw in the Human Interface Device (HID) subsystem\r\nwhen CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could\r\nleverage this flaw to cause a denial of service via a specially crafted\r\ndevice. (CVE-2013-2889)\r\n\r\nKees Cook discovered another flaw in the Human Interface Device (HID)\r\nsubsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,\r\nCONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially\r\nproximate attacker can leverage this flaw to cause a denial of service vias\r\na specially crafted device. (CVE-2013-2893)\r\n\r\nKees Cook discovered yet another flaw in the Human Interface Device (HID)\r\nsubsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A\r\nphysically proximate attacker could leverage this flaw to cause a denial of\r\nservice (OOPS) via a specially crafted device. (CVE-2013-2897)\r\n\r\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote\r\nauthenticated user could exploit this flaw to obtain sensitive information\r\nor modify/corrupt data. (CVE-2013-4299)\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 10.04 LTS:\r\n linux-image-2.6.32-53-386 2.6.32-53.115\r\n linux-image-2.6.32-53-generic 2.6.32-53.115\r\n linux-image-2.6.32-53-generic-pae 2.6.32-53.115\r\n linux-image-2.6.32-53-ia64 2.6.32-53.115\r\n linux-image-2.6.32-53-lpia 2.6.32-53.115\r\n linux-image-2.6.32-53-powerpc 2.6.32-53.115\r\n linux-image-2.6.32-53-powerpc-smp 2.6.32-53.115\r\n linux-image-2.6.32-53-powerpc64-smp 2.6.32-53.115\r\n linux-image-2.6.32-53-preempt 2.6.32-53.115\r\n linux-image-2.6.32-53-server 2.6.32-53.115\r\n linux-image-2.6.32-53-sparc64 2.6.32-53.115\r\n linux-image-2.6.32-53-sparc64-smp 2.6.32-53.115\r\n linux-image-2.6.32-53-versatile 2.6.32-53.115\r\n linux-image-2.6.32-53-virtual 2.6.32-53.115\r\n\r\nAfter a standard system update you need to reboot your computer to make\r\nall the necessary changes.\r\n\r\nATTENTION: Due to an unavoidable ABI change the kernel updates have\r\nbeen given a new version number, which requires you to recompile and\r\nreinstall all third party kernel modules you might have installed. If\r\nyou use linux-restricted-modules, you have to update that package as\r\nwell to get modules which work with the new kernel version. Unless you\r\nmanually uninstalled the standard kernel metapackages (e.g. linux-generic,\r\nlinux-server, linux-powerpc), a standard system upgrade will automatically\r\nperform this as well.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-2015-1\r\n CVE-2013-2147, CVE-2013-2889, CVE-2013-2893, CVE-2013-2897,\r\n CVE-2013-4299\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/linux/2.6.32-53.115\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2013-11-13T00:00:00", "title": "[USN-2015-1] Linux kernel vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:49", "vector": "NONE", "value": 2.1}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2013-2147", "CVE-2013-2897", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2013-11-13T00:00:00", "id": "SECURITYVULNS:DOC:29993", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:29993", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:53", "references": ["https://vulners.com/securityvulns/securityvulns:doc:30033", "https://vulners.com/securityvulns/securityvulns:doc:29993", "https://vulners.com/securityvulns/securityvulns:doc:30031", "https://vulners.com/securityvulns/securityvulns:doc:29994", "https://vulners.com/securityvulns/securityvulns:doc:30032", "https://vulners.com/securityvulns/securityvulns:doc:29995"], "description": "DoS conditions, information leakage, tuntap interface privilege escalation, bt8xx driver privilege escalation, IPv6 ICTP, UDP offload, ipip memory corruptions.", "edition": 1, "reporter": "BUGTRAQ", "published": "2013-11-26T00:00:00", "title": "Linux kernel security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:53", "vector": "NONE", "value": 2.1}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "kernel", "version": "2.6", "operator": "eq"}, {"name": "kernel", "version": "3.8", "operator": "eq"}], "cvelist": ["CVE-2013-2894", "CVE-2013-2015", "CVE-2013-2897", "CVE-2013-4387", "CVE-2013-4483", "CVE-2013-4350", "CVE-2013-2895", "CVE-2013-4348", "CVE-2013-4470", "CVE-2013-4343", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2013-11-26T00:00:00", "id": "SECURITYVULNS:VULN:13400", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:13400", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:49", "references": [], "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-2049-1\r\nDecember 07, 2013\r\n\r\nlinux vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 13.10\r\n\r\nSummary:\r\n\r\nSeveral security issues were fixed in the kernel.\r\n\r\nSoftware Description:\r\n- linux: Linux kernel\r\n\r\nDetails:\r\n\r\nMiroslav Vadkerti discovered a flaw in how the permissions for network\r\nsysctls are handled in the Linux kernel. An unprivileged local user could\r\nexploit this flaw to have privileged access to files in /proc/sys/net/.\r\n(CVE-2013-4270)\r\n\r\nA flaw was discovered in the Linux kernel's dm snapshot facility. A remote\r\nauthenticated user could exploit this flaw to obtain sensitive information\r\nor modify/corrupt data. (CVE-2013-4299)\r\n\r\nWannes Rombouts reported a vulnerability in the networking tuntap interface\r\nof the Linux kernel. A local user with the CAP_NET_ADMIN capability could\r\nleverage this flaw to gain full admin privileges. (CVE-2013-4343)\r\n\r\nAlan Chester reported a flaw in the IPv6 Stream Control Transmission\r\nProtocol (SCTP) of the Linux kernel. A remote attacker could exploit this\r\nflaw to obtain sensitive information by sniffing network traffic.\r\n(CVE-2013-4350)\r\n\r\nDmitry Vyukov reported a flaw in the Linux kernel's handling of IPv6 UDP\r\nFragmentation Offload (UFO) processing. A remote attacker could leverage\r\nthis flaw to cause a denial of service (system crash). (CVE-2013-4387)\r\n\r\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\r\nFragmenttation Offload (UFO). An unprivileged local user could exploit this\r\nflaw to cause a denial of service (system crash) or possibly gain\r\nadministrative privileges. (CVE-2013-4470)\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 13.10:\r\n linux-image-3.11.0-14-generic 3.11.0-14.21\r\n linux-image-3.11.0-14-generic-lpae 3.11.0-14.21\r\n\r\nAfter a standard system update you need to reboot your computer to make\r\nall the necessary changes.\r\n\r\nATTENTION: Due to an unavoidable ABI change the kernel updates have\r\nbeen given a new version number, which requires you to recompile and\r\nreinstall all third party kernel modules you might have installed. If\r\nyou use linux-restricted-modules, you have to update that package as\r\nwell to get modules which work with the new kernel version. Unless you\r\nmanually uninstalled the standard kernel metapackages (e.g. linux-generic,\r\nlinux-server, linux-powerpc), a standard system upgrade will automatically\r\nperform this as well.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-2049-1\r\n CVE-2013-4270, CVE-2013-4299, CVE-2013-4343, CVE-2013-4350,\r\n CVE-2013-4387, CVE-2013-4470\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/linux/3.11.0-14.21\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2013-12-09T00:00:00", "title": "[USN-2049-1] Linux kernel vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:49", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2013-4270", "CVE-2013-4387", "CVE-2013-4350", "CVE-2013-4470", "CVE-2013-4343", "CVE-2013-4299"], "modified": "2013-12-09T00:00:00", "id": "SECURITYVULNS:DOC:30048", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:30048", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "cve": [{"lastseen": "2018-01-09T15:22:57", "references": ["http://www.ubuntu.com/usn/USN-2041-1", "http://rhn.redhat.com/errata/RHSA-2013-1436.html", "http://www.ubuntu.com/usn/USN-2043-1", "http://rhn.redhat.com/errata/RHSA-2013-1519.html", "http://www.ubuntu.com/usn/USN-2066-1", "http://rhn.redhat.com/errata/RHSA-2013-1460.html", "http://www.ubuntu.com/usn/USN-2016-1", "http://www.ubuntu.com/usn/USN-2042-1", "http://www.ubuntu.com/usn/USN-2044-1", "http://www.ubuntu.com/usn/USN-2040-1", "http://www.ubuntu.com/usn/USN-2049-1", "http://www.ubuntu.com/usn/USN-2050-1", "http://www.ubuntu.com/usn/USN-2067-1", "http://rhn.redhat.com/errata/RHSA-2013-1490.html", "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e9c6a182649f4259db704ae15a91ac820e63b0ca", "http://rhn.redhat.com/errata/RHSA-2013-1860.html", "http://www.ubuntu.com/usn/USN-2046-1", "https://bugzilla.redhat.com/show_bug.cgi?id=1004233", "http://rhn.redhat.com/errata/RHSA-2013-1520.html", "http://www.ubuntu.com/usn/USN-2015-1", "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html", "http://www.ubuntu.com/usn/USN-2045-1", "http://rhn.redhat.com/errata/RHSA-2013-1783.html", "https://github.com/torvalds/linux/commit/e9c6a182649f4259db704ae15a91ac820e63b0ca", "http://rhn.redhat.com/errata/RHSA-2013-1449.html", "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00000.html", "http://rhn.redhat.com/errata/RHSA-2013-1450.html"], "edition": 2, "description": "Interpretation conflict in drivers/md/dm-snap-persistent.c in the Linux kernel through 3.11.6 allows remote authenticated users to obtain sensitive information or modify data via a crafted mapping to a snapshot block device.", "reporter": "NVD", "published": "2013-10-24T06:53:09", "title": "CVE-2013-4299", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 4.3}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2013-4299"], "scanner": [], "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.7", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.11.6", "cpe:/o:linux:linux_kernel:3.9:rc4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.8.9", "cpe:/o:linux:linux_kernel:3.8.4", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.10.4", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.10.7", "cpe:/o:linux:linux_kernel:3.6.10", "cpe:/o:linux:linux_kernel:3.6.5", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.10.9", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.6", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.6.3", "cpe:/o:linux:linux_kernel:3.7.3", "cpe:/o:linux:linux_kernel:3.8.10", "cpe:/o:linux:linux_kernel:3.8.12", "cpe:/o:linux:linux_kernel:3.7.8", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.11.3", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.10.10", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.10.3", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.10.12", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.9:rc1", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.10.6", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.8.3", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.9:rc6", "cpe:/o:linux:linux_kernel:3.8.13", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.8.5", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.9.11", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.11", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.9.5", "cpe:/o:linux:linux_kernel:3.6.1", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.9.1", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.9:rc5", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.7.2", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.7.5", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.7.7", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.9.3", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.11.4", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.6.6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.10.8", "cpe:/o:linux:linux_kernel:3.7.6", "cpe:/o:linux:linux_kernel:3.11.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.9.9", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.8.1", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.6.9", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.8.7", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.10.1", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.7.10", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.9:rc3", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.8.8", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.10.5", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.9.6", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.9.2", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.9.0", "cpe:/o:linux:linux_kernel:3.9.8", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.6.7", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.8.0", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.7.4", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.8.6", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.9:rc7", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.11.5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.7.9", "cpe:/o:linux:linux_kernel:3.9.4", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.6.11", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.9.7", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.10.11", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.7.1", "cpe:/o:linux:linux_kernel:3.6.4", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.9.10", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.6.2", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.6.8", "cpe:/o:linux:linux_kernel:3.8.2", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.10.2", "cpe:/o:linux:linux_kernel:3.9:rc2", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.11.1", "cpe:/o:linux:linux_kernel:3.8.11", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "modified": "2018-01-08T21:29:04", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4299", "id": "CVE-2013-4299", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-01-09T15:22:54", "references": ["http://www.securityfocus.com/bid/62042", "http://marc.info/?l=linux-input&m=137772182014614&w=1", "http://openwall.com/lists/oss-security/2013/08/28/13", "http://www.ubuntu.com/usn/USN-2022-1", "http://www.ubuntu.com/usn/USN-2016-1", "http://www.ubuntu.com/usn/USN-2024-1", "http://www.ubuntu.com/usn/USN-2020-1", "http://www.ubuntu.com/usn/USN-2019-1", "http://www.ubuntu.com/usn/USN-2050-1", "http://www.ubuntu.com/usn/USN-2038-1", "http://www.ubuntu.com/usn/USN-2021-1", "http://www.ubuntu.com/usn/USN-2015-1", "http://rhn.redhat.com/errata/RHSA-2013-1645.html", "http://www.ubuntu.com/usn/USN-2023-1", "http://www.ubuntu.com/usn/USN-2039-1"], "edition": 3, "description": "drivers/hid/hid-zpff.c in the Human Interface Device (HID) subsystem in the Linux kernel through 3.11, when CONFIG_HID_ZEROPLUS is enabled, allows physically proximate attackers to cause a denial of service (heap-based out-of-bounds write) via a crafted device.", "reporter": "NVD", "published": "2013-09-16T09:01:44", "title": "CVE-2013-2889", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2013-2889"], "scanner": [], "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.7", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.9:rc4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.8.9", "cpe:/o:linux:linux_kernel:3.8.4", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.10.4", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.10.7", "cpe:/o:linux:linux_kernel:3.6.10", "cpe:/o:linux:linux_kernel:3.6.5", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.10.9", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.6", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.6.3", "cpe:/o:linux:linux_kernel:3.7.3", "cpe:/o:linux:linux_kernel:3.8.10", "cpe:/o:linux:linux_kernel:3.8.12", "cpe:/o:linux:linux_kernel:3.7.8", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.10.10", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.10.3", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.10.12", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.9:rc1", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.10.6", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.8.3", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.9:rc6", "cpe:/o:linux:linux_kernel:3.8.13", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.8.5", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.9.11", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.11", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.9.5", "cpe:/o:linux:linux_kernel:3.6.1", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.9.1", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.9:rc5", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.7.2", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.7.5", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.7.7", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.9.3", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.6.6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.10.8", "cpe:/o:linux:linux_kernel:3.7.6", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.9.9", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.8.1", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.6.9", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.8.7", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.10.1", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.7.10", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.9:rc3", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.8.8", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.10.5", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.9.6", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.9.2", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.9.0", "cpe:/o:linux:linux_kernel:3.9.8", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.6.7", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.8.0", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.7.4", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.8.6", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.9:rc7", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.7.9", "cpe:/o:linux:linux_kernel:3.9.4", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.6.11", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.9.7", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.10.11", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.7.1", "cpe:/o:linux:linux_kernel:3.6.4", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.9.10", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.6.2", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.6.8", "cpe:/o:linux:linux_kernel:3.8.2", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.10.2", "cpe:/o:linux:linux_kernel:3.9:rc2", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.8.11", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "modified": "2018-01-08T21:29:03", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2889", "id": "CVE-2013-2889", "cvss": {"score": 4.7, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-01-09T15:22:52", "references": ["http://www.ubuntu.com/usn/USN-1999-1", "http://www.ubuntu.com/usn/USN-1994-1", "http://www.ubuntu.com/usn/USN-2016-1", "http://www.ubuntu.com/usn/USN-1997-1", "http://www.ubuntu.com/usn/USN-2020-1", "http://www.ubuntu.com/usn/USN-2050-1", "http://rhn.redhat.com/errata/RHSA-2013-1166.html", "http://www.ubuntu.com/usn/USN-1996-1", "https://bugzilla.redhat.com/show_bug.cgi?id=971242", "http://lkml.org/lkml/2013/6/3/127", "http://www.ubuntu.com/usn/USN-2015-1", "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html", "http://www.ubuntu.com/usn/USN-2023-1", "http://www.openwall.com/lists/oss-security/2013/06/05/25", "http://www.ubuntu.com/usn/USN-2017-1", "http://lkml.org/lkml/2013/6/3/131"], "edition": 2, "description": "The HP Smart Array controller disk-array driver and Compaq SMART2 controller disk-array driver in the Linux kernel through 3.9.4 do not initialize certain data structures, which allows local users to obtain sensitive information from kernel memory via (1) a crafted IDAGETPCIINFO command for a /dev/ida device, related to the ida_locked_ioctl function in drivers/block/cpqarray.c or (2) a crafted CCISS_PASSTHRU32 command for a /dev/cciss device, related to the cciss_ioctl32_passthru function in drivers/block/cciss.c.", "reporter": "NVD", "published": "2013-06-07T10:03:19", "title": "CVE-2013-2147", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2013-2147"], "scanner": [], "cpe": ["cpe:/o:linux:linux_kernel:3.9:rc4", "cpe:/o:suse:linux_enterprise_server:10:sp4", "cpe:/o:linux:linux_kernel:3.9:rc1", "cpe:/o:linux:linux_kernel:3.9:rc6", "cpe:/o:linux:linux_kernel:3.9.1", "cpe:/o:linux:linux_kernel:3.9:rc5", "cpe:/o:linux:linux_kernel:3.9.3", "cpe:/o:linux:linux_kernel:3.9:rc3", "cpe:/o:linux:linux_kernel:3.9.2", "cpe:/o:linux:linux_kernel:3.9.0", "cpe:/o:linux:linux_kernel:3.9:rc7", "cpe:/o:linux:linux_kernel:3.9.4", "cpe:/o:linux:linux_kernel:3.9:rc2"], "modified": "2018-01-08T21:29:02", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2147", "id": "CVE-2013-2147", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-01-09T15:22:54", "references": ["http://openwall.com/lists/oss-security/2013/08/28/13", "http://www.ubuntu.com/usn/USN-2022-1", "http://www.ubuntu.com/usn/USN-2016-1", "http://www.securityfocus.com/bid/62044", "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html", "http://marc.info/?l=linux-input&m=137772190214635&w=1", "http://www.ubuntu.com/usn/USN-2024-1", "http://www.ubuntu.com/usn/USN-2020-1", "http://www.ubuntu.com/usn/USN-2019-1", "http://www.ubuntu.com/usn/USN-2050-1", "http://www.ubuntu.com/usn/USN-2038-1", "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html", "http://www.ubuntu.com/usn/USN-2021-1", "http://www.ubuntu.com/usn/USN-2015-1", "http://www.ubuntu.com/usn/USN-2023-1", "https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.54", "http://www.ubuntu.com/usn/USN-2039-1"], "edition": 3, "description": "Multiple array index errors in drivers/hid/hid-multitouch.c in the Human Interface Device (HID) subsystem in the Linux kernel through 3.11, when CONFIG_HID_MULTITOUCH is enabled, allow physically proximate attackers to cause a denial of service (heap memory corruption, or NULL pointer dereference and OOPS) via a crafted device.", "reporter": "NVD", "published": "2013-09-16T09:01:44", "title": "CVE-2013-2897", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2013-2897"], "scanner": [], "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.7", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.9:rc4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.8.9", "cpe:/o:linux:linux_kernel:3.8.4", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.10.4", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.10.7", "cpe:/o:linux:linux_kernel:3.6.10", "cpe:/o:linux:linux_kernel:3.6.5", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.10.9", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.6", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.6.3", "cpe:/o:linux:linux_kernel:3.7.3", "cpe:/o:linux:linux_kernel:3.8.10", "cpe:/o:linux:linux_kernel:3.8.12", "cpe:/o:linux:linux_kernel:3.7.8", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.10.10", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.10.3", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.10.12", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.9:rc1", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.10.6", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.8.3", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.9:rc6", "cpe:/o:linux:linux_kernel:3.8.13", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.8.5", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.9.11", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.11", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.9.5", "cpe:/o:linux:linux_kernel:3.6.1", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.9.1", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.9:rc5", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.7.2", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.7.5", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.7.7", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.9.3", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.6.6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.10.8", "cpe:/o:linux:linux_kernel:3.7.6", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.9.9", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.8.1", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.6.9", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.8.7", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.10.1", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.7.10", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.9:rc3", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.8.8", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.10.5", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.9.6", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.9.2", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.9.0", "cpe:/o:linux:linux_kernel:3.9.8", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.6.7", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.8.0", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.7.4", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.8.6", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.9:rc7", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.7.9", "cpe:/o:linux:linux_kernel:3.9.4", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.6.11", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.9.7", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.10.11", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.7.1", "cpe:/o:linux:linux_kernel:3.6.4", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.9.10", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.6.2", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.6.8", "cpe:/o:linux:linux_kernel:3.8.2", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.10.2", "cpe:/o:linux:linux_kernel:3.9:rc2", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.8.11", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "modified": "2018-01-08T21:29:03", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2897", "id": "CVE-2013-2897", "cvss": {"score": 4.7, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-01-09T15:22:54", "references": ["http://www.securityfocus.com/bid/62050", "http://openwall.com/lists/oss-security/2013/08/28/13", "http://www.ubuntu.com/usn/USN-2022-1", "http://marc.info/?l=linux-input&m=137772186714627&w=1", "http://www.ubuntu.com/usn/USN-2016-1", "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html", "http://www.ubuntu.com/usn/USN-2024-1", "http://www.ubuntu.com/usn/USN-2020-1", "http://www.ubuntu.com/usn/USN-2019-1", "http://www.ubuntu.com/usn/USN-2050-1", "http://www.ubuntu.com/usn/USN-2038-1", "http://rhn.redhat.com/errata/RHSA-2013-1490.html", "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html", "http://www.ubuntu.com/usn/USN-2021-1", "http://www.ubuntu.com/usn/USN-2015-1", "http://www.ubuntu.com/usn/USN-2023-1", "http://www.ubuntu.com/usn/USN-2039-1"], "edition": 3, "description": "The Human Interface Device (HID) subsystem in the Linux kernel through 3.11, when CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF is enabled, allows physically proximate attackers to cause a denial of service (heap-based out-of-bounds write) via a crafted device, related to (1) drivers/hid/hid-lgff.c, (2) drivers/hid/hid-lg3ff.c, and (3) drivers/hid/hid-lg4ff.c.", "reporter": "NVD", "published": "2013-09-16T09:01:44", "title": "CVE-2013-2893", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2013-2893"], "scanner": [], "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.7", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.9:rc4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.8.9", "cpe:/o:linux:linux_kernel:3.8.4", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.10.4", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.10.7", "cpe:/o:linux:linux_kernel:3.6.10", "cpe:/o:linux:linux_kernel:3.6.5", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.10.9", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.6", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.6.3", "cpe:/o:linux:linux_kernel:3.7.3", "cpe:/o:linux:linux_kernel:3.8.10", "cpe:/o:linux:linux_kernel:3.8.12", "cpe:/o:linux:linux_kernel:3.7.8", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.10.10", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.10.3", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.10.12", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.9:rc1", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.10.6", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.8.3", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.9:rc6", "cpe:/o:linux:linux_kernel:3.8.13", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.8.5", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.9.11", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.11", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.9.5", "cpe:/o:linux:linux_kernel:3.6.1", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.9.1", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.9:rc5", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.7.2", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.7.5", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.7.7", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.9.3", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.6.6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.10.8", "cpe:/o:linux:linux_kernel:3.7.6", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.9.9", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.8.1", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.6.9", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.8.7", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.10.1", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.7.10", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.9:rc3", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.8.8", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.10.5", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.9.6", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.9.2", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.9.0", "cpe:/o:linux:linux_kernel:3.9.8", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.6.7", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.8.0", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.7.4", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.8.6", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.9:rc7", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.7.9", "cpe:/o:linux:linux_kernel:3.9.4", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.6.11", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.9.7", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.10.11", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.7.1", "cpe:/o:linux:linux_kernel:3.6.4", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.9.10", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.6.2", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.6.8", "cpe:/o:linux:linux_kernel:3.8.2", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.10.2", "cpe:/o:linux:linux_kernel:3.9:rc2", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.8.11", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "modified": "2018-01-08T21:29:03", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2893", "id": "CVE-2013-2893", "cvss": {"score": 4.7, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:47:15", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-16.1.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-3.8.13-16.1.1.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-16.1.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-3.8.13-16.1.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "0.4.0-3.el6", "arch": "x86_64", "packageFilename": "dtrace-modules-3.8.13-16.1.1.el6uek-provider-headers-0.4.0-3.el6.x86_64.rpm", "packageName": "dtrace-modules-3.8.13-16.1.1.el6uek-provider-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-16.1.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-3.8.13-16.1.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "0.4.0-3.el6", "arch": "src", "packageFilename": "dtrace-modules-3.8.13-16.1.1.el6uek-0.4.0-3.el6.src.rpm", "packageName": "dtrace-modules-3.8.13-16.1.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-16.1.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-3.8.13-16.1.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-16.1.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-3.8.13-16.1.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-16.1.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-3.8.13-16.1.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-16.1.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-3.8.13-16.1.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "0.4.0-3.el6", "arch": "x86_64", "packageFilename": "dtrace-modules-3.8.13-16.1.1.el6uek-headers-0.4.0-3.el6.x86_64.rpm", "packageName": "dtrace-modules-3.8.13-16.1.1.el6uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-16.1.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-3.8.13-16.1.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "0.4.0-3.el6", "arch": "x86_64", "packageFilename": "dtrace-modules-3.8.13-16.1.1.el6uek-0.4.0-3.el6.x86_64.rpm", "packageName": "dtrace-modules-3.8.13-16.1.1.el6uek", "operator": "lt"}], "description": "kernel-uek\n[3.8.13-16.1.1.el6uek]\n- dm snapshot: fix data corruption (Mikulas Patocka) [Orabug: 17617582] {CVE-2013-4299}", "edition": 3, "reporter": "Oracle", "published": "2013-10-23T00:00:00", "title": "unbreakable enterprise kernel security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4299"], "modified": "2013-10-23T00:00:00", "id": "ELSA-2013-2577", "href": "http://linux.oracle.com/errata/ELSA-2013-2577.html", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:38:53", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.39-400.209.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.39-400.209.2.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.39-400.209.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.39-400.209.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-400.209.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-400.209.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.39-400.209.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.39-400.209.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.39-400.209.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.39-400.209.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-400.209.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-400.209.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.39-400.209.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.39-400.209.2.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.39-400.209.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.39-400.209.2.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.39-400.209.2.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-400.209.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-400.209.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-400.209.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-400.209.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-400.209.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-400.209.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-400.209.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-400.209.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-400.209.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.39-400.209.2.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.39-400.209.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-400.209.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.39-400.209.2.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}], "description": "[2.6.39-400.209.2]\n- dm snapshot: fix data corruption (Mikulas Patocka) [Orabug: 17618492] {CVE-2013-4299}", "edition": 3, "reporter": "Oracle", "published": "2013-10-18T00:00:00", "title": "unbreakable enterprise kernel security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4299"], "modified": "2013-10-18T00:00:00", "id": "ELSA-2013-2576", "href": "http://linux.oracle.com/errata/ELSA-2013-2576.html", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:41:33", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-358.23.2.el6.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageFilename": "perf-2.6.32-358.23.2.el6.x86_64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-358.23.2.el6.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageFilename": "kernel-debug-2.6.32-358.23.2.el6.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-358.23.2.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "src", "packageFilename": "kernel-2.6.32-358.23.2.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "src", "packageFilename": "kernel-2.6.32-358.23.2.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageFilename": "perf-2.6.32-358.23.2.el6.i686.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageFilename": "kernel-2.6.32-358.23.2.el6.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageFilename": "python-perf-2.6.32-358.23.2.el6.i686.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-358.23.2.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-358.23.2.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-358.23.2.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-358.23.2.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageFilename": "kernel-headers-2.6.32-358.23.2.el6.i686.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageFilename": "python-perf-2.6.32-358.23.2.el6.x86_64.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageFilename": "kernel-2.6.32-358.23.2.el6.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-358.23.2.el6.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageFilename": "kernel-devel-2.6.32-358.23.2.el6.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-358.23.2.el6.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}], "description": "[2.6.32-358.23.2]\n- [md] dm-snapshot: fix data corruption (Mikulas Patocka) [1004252 1004233] {CVE-2013-4299}\n[2.6.32-358.23.1]\n- [md] raid1, raid10: use freeze_array in place of raise_barrier in various places (Jes Sorensen) [1003765 997845]\n- [scsi] megaraid_sas: megaraid_sas driver init fails in kdump kernel (Nikola Pajkovsky) [1001963 833299]\n- [char] ipmi: eliminate long delay in ipmi_si on SGI UV2 (Nikola Pajkovsky) [988228 876778]\n- [net] bridge: Add multicast_querier toggle and disable queries by default (Nikola Pajkovsky) [995334 905561]\n- [net] bridge: Fix fatal typo in setup of multicast_querier_expired (Nikola Pajkovsky) [995334 905561]\n- [net] bridge: Restart queries when last querier expires (Nikola Pajkovsky) [995334 905561]\n- [net] bridge: Add br_multicast_start_querier (Flavio Leitner) [995334 905561]\n- [kernel] Prevent RT process stall due to missing upstream scheduler bug fix (Larry Woodman) [1006932 1002765]\n- [fs] nfs: Minor cleanups for nfs4_handle_exception and nfs4_async_handle_error (Dave Wysochanski) [1006956 998752]\n- [firmware] efivars: Use correct efi_pstore_info struct when calling pstore_register (Lenny Szubowicz) [993547 867689]\n- [net] bridge: do not call setup_timer() multiple times (Amerigo Wang) [997746 994430]\n- [fs] lockd: protect nlm_blocked list (David Jeffery) [993544 967095]\n- [net] ipv6: call udp_push_pending_frames when uncorking a socket with AF_INET pending data (Jiri Benc) [987649 987651] {CVE-2013-4162}\n- [fs] fuse: readdirplus sanity checks (Niels de Vos) [988708 981741]\n- [fs] fuse: readdirplus cleanup (Niels de Vos) [988708 981741]\n- [fs] fuse: readdirplus change attributes once (Niels de Vos) [988708 981741]\n- [fs] fuse: readdirplus fix instantiate (Niels de Vos) [988708 981741]\n- [fs] fuse: fix readdirplus dentry leak (Niels de Vos) [988708 981741]\n- [fs] cifs: fix issue mounting of DFS ROOT when redirecting from one domain controller to the next (Sachin Prabhu) [994866 976535]\n- [fs] nfs: Make nfs_readdir revalidate less often (Scott Mayhew) [994867 976879]\n- [fs] nfs: Make nfs_attribute_cache_expired() non-static (Scott Mayhew) [994867 976879]\n- [fs] nfs: set verifier on existing dentries in nfs_prime_dcache (Scott Mayhew) [994867 976879]\n- [fs] nfs: Allow nfs_updatepage to extend a write under additional circumstances (Scott Mayhew) [987262 983288]\n- [fs] nfs: fix a leak at nfs_lookup_revalidate() (Dave Wysochanski) [987261 975211]\n- [acpi] efivars: If pstore_register fails, free unneeded pstore buffer (Lenny Szubowicz) [993547 867689]\n- [acpi] Eliminate console msg if pstore.backend excludes ERST (Lenny Szubowicz) [993547 867689]\n- [acpi] Return unique error if backend registration excluded by kernel param (Lenny Szubowicz) [993547 867689]\n- [net] bridge: fix some kernel warning in multicast timer (Amerigo Wang) [997745 952012]\n- [net] bridge: send query as soon as leave is received (Amerigo Wang) [997745 952012]\n- [net] bridge: only expire the mdb entry when query is received (Amerigo Wang) [997745 952012]\n- [net] bridge: Replace mp->mglist hlist with a bool (Amerigo Wang) [997745 952012]\n- [mm] fadvise: drain all pagevecs if POSIX_FADV_DONTNEED fails to discard all pages (Larry Woodman) [994140 957821]\n- [net] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1003931 955712]\n- [virt] xen-netfront: reduce gso_max_size to account for max TCP header (Andrew Jones) [1004657 957231]\n- [pps] Fix a use-after free bug when unregistering a source (Jiri Benc) [997916 920155]\n- [scsi] fnic: Fix SGEs limit (Chris Leech) [991346 829506]\n[2.6.32-358.22.1]\n- [x86] Round the calculated scale factor in set_cyc2ns_scale() (Prarit Bhargava) [1001954 975507]\n- [x86] sched: Fix overflow in cyc2ns_offset (Prarit Bhargava) [1001954 975507]\n[2.6.32-358.21.1]\n- [fs] autofs: remove autofs dentry mount check (Ian Kent) [1000314 947275]\n- [net] sctp: Fix list corruption resulting from freeing an association on a list (Jiri Pirko) [1002184 887868]\n[2.6.32-358.20.1]\n- [fs] nfs: Add functionality to allow waiting on all outstanding reads to complete (Dave Wysochanski) [996424 976915]\n- [fs] nfs: Ensure that NFS file unlock waits for readahead to complete (Dave Wysochanski) [996424 976915]\n- [fs] nfs: Convert nfs_get_lock_context to return an ERR_PTR on failure (Dave Wysochanski) [996424 976915]\n- [x86] thermal: Disable power limit notification interrupt (Shyam Iyer) [999328 908990]\n- [x86] thermal: Delete power-limit-notification console messages (Shyam Iyer) [999328 908990]\n[2.6.32-358.19.1]\n- [fs] gfs2: Reserve journal space for quota change in do_grow (Robert S Peterson) [988384 976823]\n- [netdrv] bonding: properly unset current_arp_slave on slave link up (Veaceslav Falico) [995458 988460]\n- [fs] nfs4: Fix infinite loop in nfs4_lookup_root (Scott Mayhew) [996014 987426]", "edition": 3, "reporter": "Oracle", "published": "2013-10-16T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4162", "CVE-2013-4299"], "modified": "2013-10-16T00:00:00", "id": "ELSA-2013-1436", "href": "http://linux.oracle.com/errata/ELSA-2013-1436.html", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:42:30", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-400.33.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.33.2.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.33.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.33.2.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.33.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.33.2.el5uekdebug-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-400.33.2.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.33.2.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.33.2.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.33.2.el6uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.33.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.33.2.el6uek-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-400.33.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.33.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.33.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-400.33.2.el6uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.33.2.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.33.2.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.33.2.el5uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.33.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.33.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.33.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-400.33.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-400.33.2.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-400.33.2.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.33.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.33.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.33.2.el6uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.33.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-400.33.2.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.33.2.el5uekdebug-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.33.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.33.2.el6uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.33.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.33.2.el6uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.33.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.33.2.el6uek-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.33.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.33.2.el5uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.33.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-400.33.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.33.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.33.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.33.2.el6uekdebug-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.33.2.el5uek-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-400.33.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.33.2.el5uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.33.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.33.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.33.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.33.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.33.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-400.33.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-400.33.2.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-400.33.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.33.2.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.33.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.33.2.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.33.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-400.33.2.el5uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.33.2.el5uek-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-400.33.2.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.33.2.el5uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.33.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.33.2.el6uekdebug-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-400.33.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-400.33.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.33.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.33.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}], "description": "kernel-uek\n[2.6.32-400.33.2]\n- dm snapshot: fix data corruption (Mikulas Patocka) [Orabug: 17618900] {CVE-2013-4299}\n- ipv6: call udp_push_pending_frames when uncorking a socket with AF_INET pending data (Hannes Frederic Sowa) [Orabug: 17618897] {CVE-2013-4162}", "edition": 3, "reporter": "Oracle", "published": "2013-10-18T00:00:00", "title": "unbreakable enterprise kernel security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4162", "CVE-2013-4299"], "modified": "2013-10-18T00:00:00", "id": "ELSA-2013-2575", "href": "http://linux.oracle.com/errata/ELSA-2013-2575.html", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:47:21", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.3.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-371.3.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-371.3.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.3.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-371.3.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-371.3.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.3.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-371.3.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-371.3.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.3.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.3.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-371.3.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.3.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-371.3.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-371.3.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-371.3.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.3.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.3.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.3.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.3.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.3.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-371.3.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.3.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.3.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.3.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.3.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.3.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.3.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.3.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.3.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-371.3.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.3.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.3.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.3.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-371.3.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.3.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-371.3.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.3.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-371.3.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-371.3.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-371.3.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.3.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.3.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-371.3.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-371.3.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-371.3.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-371.3.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.3.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.3.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.3.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.3.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-371.3.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.3.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.3.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.3.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.3.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.3.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-371.3.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}], "description": "kernel\n[2.6.18-371.3.1]\n- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691]\n- [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331]\n- [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997]\n- [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}\n[2.6.18-371.2.1]\n- [scsi] mpt2sas: bump version (Tomas Henzl) [1018458 956330]\n- [scsi] mpt2sas: fix the incorrect scsi_dma_map error checking (Tomas Henzl) [1018458 956330]\n- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368}\n- [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}", "edition": 3, "reporter": "Oracle", "published": "2013-12-05T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4368", "CVE-2013-4299", "CVE-2013-4355"], "modified": "2013-12-05T00:00:00", "id": "ELSA-2013-1790", "href": "http://linux.oracle.com/errata/ELSA-2013-1790.html", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:47:37", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "0.4.2-3.el6", "arch": "x86_64", "packageFilename": "dtrace-modules-provider-headers-0.4.2-3.el6.x86_64.rpm", "packageName": "dtrace-modules-provider-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-26.el6uek", "arch": "src", "packageFilename": "kernel-uek-3.8.13-26.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-26.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-3.8.13-26.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "0.4.2-3.el6", "arch": "x86_64", "packageFilename": "dtrace-modules-headers-0.4.2-3.el6.x86_64.rpm", "packageName": "dtrace-modules-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-26.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-3.8.13-26.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-26.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-3.8.13-26.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "0.4.2-3.el6", "arch": "src", "packageFilename": "dtrace-modules-3.8.13-26.el6uek-0.4.2-3.el6.src.rpm", "packageName": "dtrace-modules-3.8.13-26.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-26.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-3.8.13-26.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-26.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-3.8.13-26.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "0.4.2-3.el6", "arch": "x86_64", "packageFilename": "dtrace-modules-3.8.13-26.el6uek-0.4.2-3.el6.x86_64.rpm", "packageName": "dtrace-modules-3.8.13-26.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-26.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-3.8.13-26.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "3.8.13-26.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-3.8.13-26.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}], "description": "[3.8.13-26.el6uek]\r\n- spec: Don't remove crashkernel=auto setting (Jerry Snitselaar) [Orabug: 18137993]\r\n \n[3.8.13-25.el6uek]\r\n- ocfs2: fix i_mutex deadlock between aio_write and sync_file (Darrick J. Wong) [Orabug: 18068931]\r\n- Revert 'x86, mm: Revert back good_end setting for 64bit' (Jerry Snitselaar) [Orabug: 18128986]\r\n \n[3.8.13-24.el6uek]\r\n- tg3: remove spin_lock_bh() in tg3_get_stats64() to fix dead lock (Ethan Zhao) [Orabug: 18070676]\r\n- net/core: use GFP_NOWAIT allocation flag in rtmsg_ifinfo() to fix lockup warning (Ethan Zhao) [Orabug: 18070676]\r\n- mptsas: do not call __mptsas_probe in kthread (Jerry Snitselaar) [Orabug: 18120337]\r\n- config: enable CONFIG_KEXEC_AUTO_RESERVE (Jerry Snitselaar) [Orabug: 17616874]\r\n- Btrfs: allow compressed extents to be merged during defragment (Liu Bo) [Orabug: 18098511]\r\n- Btrfs: reset ret in record_one_backref (Josef Bacik) [Orabug: 18098511]\r\n- Btrfs: fix a crash when running balance and defrag concurrently (Liu Bo) [Orabug: 18098511]\r\n- Btrfs: fix a bug of snapshot-aware defrag to make it work on partial extents (Liu Bo) [Orabug: 18098511]\r\n- Btrfs: get better concurrency for snapshot-aware defrag work (Liu Bo) [Orabug: 18098511]\r\n- Btrfs: snapshot-aware defrag (Liu Bo) [Orabug: 18098511]\r\n- btrfs: add cancellation points to defrag (David Sterba) [Orabug: 18098511]\r\n- qla4xxx: Updated driver version to 5.04.00.02.06.02-uek3 (Vikas Chaudhary) [Orabug: 18103905]\r\n- qla4xxx: Fix memory leak in qla4xxx_destroy_ddb (Vikas Chaudhary) [Orabug: 18103905]\r\n- x86: add support for crashkernel=auto (Brian Maly)\r\n- x86, mm: Revert back good_end setting for 64bit (Yinghai Lu) [Orabug: 17648536]\r\n \n[3.8.13-23.el6uek]\r\n- [SCSI] storvsc: avoid usage of WRITE_SAME (Olaf Hering) [Orabug: 18037923]\r\n- Fix balloon driver to work properly with balloon_hugepages but no superpage flag (Dave McCracken)\r\n- config: disable BUILD_DOCSRC (Jerry Snitselaar) [Orabug: 17504426]\r\n- ext4: Fix non-O_SYNC AIO DIO unwritten extent conversion after dio finishes (Darrick J. Wong) [Orabug: 18069802]\r\n- memcg: don't initialize kmem-cache destroying work for root caches (Andrey Vagin) [Orabug: 17791895]\r\n- ocfs2: ocfs2 punch hole retrun EINVAL if the length argument in ioctl is negative (Tariq Saeed) [Orabug: 14789508]\r\n- writeback: fix data corruption on NFS (Jan Kara) [Orabug: 16677609]\r\n- Btrfs: handle a bogus chunk tree nicely (Josef Bacik) [Orabug: 17334825]\r\n- Drivers: hv: Execute shutdown in a thread context (K. Y. Srinivasan) [Orabug: 18053264]\r\n- Increase scsi_mod parameter max_report_luns to 1023. (Zhigang Wang) [Orabug: 17445498]\r\n- NFSv4.1 Fix gdia_maxcount calculation to fit in ca_maxresponsesize (Andy Adamson) [Orabug: 17419831]\r\n- config: disable fragile PSTORE options (Ethan Zhao) [Orabug: 17928723]\r\n- ocfs2/o2net: o2net_listen_data_ready should do nothing if socket state is not TCP_LISTEN (Tariq Saeed) [Orabug: 17330860]\r\n- qla4xxx: Updated driver version to 5.04.00.01.06.02-uek3 (Tej Parkash) [Orabug: 18050491]\r\n- qla4xxx: Fix sparse warnings (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Handle IPv6 AEN notifications (Nilesh Javali) [Orabug: 18050491]\r\n- qla4xxx: Update print statements in func qla4xxx_do_dpc() (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Update print statements in func qla4xxx_eh_abort() (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Update print statements in qla4xxx_mailbox_command() (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Updated print for device login, logout path (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Remove unused code from qla4xxx_set_ifcb() (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Fix failure of mbox 0x31 (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Reduce rom-lock contention during reset recovery. (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Fix pending IO completion in reset path before initiating chip reset (Tej Parkash) [Orabug: 18050491]\r\n- qla4xxx: Fix processing response queue during probe (Tej Parkash) [Orabug: 18050491]\r\n- qla4xxx: Fix failure of IDC Time Extend mailbox command (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Clear DDB index map upon connection close failure (Nilesh Javali) [Orabug: 18050491]\r\n- qla4xxx: Return correct error status from func qla4xxx_request_irqs() (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Fixed AER reset sequence for ISP83xx/ISP84xx (Tej Parkash) [Orabug: 18050491]\r\n- qla4xxx: Correctly handle msleep_interruptible (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Rename ACB_STATE macros with IP_ADDRSTATE macros (Nilesh Javali) [Orabug: 18050491]\r\n- qla4xxx: Improve loopback failure messages (Nilesh Javali) [Orabug: 18050491]\r\n- qla4xxx: Use IDC_CTRL bit1 directly instead of AF_83XX_NO_FWDUMP flag. (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Fix comments in code (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: Print WARN_ONCE() if iSCSI function presence bit removed (Vikas Chaudhary) [Orabug: 18050491]\r\n- qla4xxx: ISP8xxx: Correct retry of adapter initialization (Nilesh Javali) [Orabug: 18050491]\r\n- qla4xxx: Recreate chap data list during get chap operation (Adheer Chandravanshi) [Orabug: 18050491]\r\n- qla4xxx: Add support for ISCSI_PARAM_LOCAL_IPADDR sysfs attr (Adheer Chandravanshi) [Orabug: 18050491]\r\n- libiscsi: Add local_ipaddr parameter in iscsi_conn struct (Adheer Chandravanshi) [Orabug: 18050491]\r\n- IB/iser: Add Discovery support (Or Gerlitz) [Orabug: 18050491]\r\n- scsi_transport_iscsi: Export ISCSI_PARAM_LOCAL_IPADDR attr for iscsi_connection (Adheer Chandravanshi) [Orabug: 18050491]\r\n- qla4xxx: Add host statistics support (Lalit Chandivade) [Orabug: 18050491]\r\n- scsi_transport_iscsi: Add host statistics support (Lalit Chandivade) [Orabug: 18050491]\r\n- qla4xxx: Added support for Diagnostics MBOX command (Vikas Chaudhary) [Orabug: 18050491]\r\n- ocfs2: update inode size after zeroed the hole (Junxiao Bi) [Orabug: 18043432]\r\n \n[3.8.13-22.el6uek]\r\n- Revert 'sparc64: Fix __copy_{to,from}_user_inatomic defines.' (Dave Kleikamp) [Orabug: 18038851]\r\n- sparc64: prevent solaris control domain warnings about Domain Service handles (chris hyser) [Orabug: 18038829]\r\n- libfcoe: Make fcoe_sysfs optional / fix fnic NULL exception (ethan.zhao) [Orabug: 17960129]\r\n- scsi/fnic: update to version 1.6.0.8 from 1.5.0.45 (ethan.zhao) [Orabug: 17960129] \r\n- sctp: sctp_close: fix release of bindings for deferred call_rcu's (Daniel Borkmann) [Orabug: 17886746]\r\n- dtrace: vtimestamp implementation (Kris Van Hees) [Orabug: 17741477] \r\n- dtrace: implement SDT in kernel modules (Kris Van Hees) [Orabug: 17851716] \r\n- qla4xxx: Driver not able to collect minidump in ISP84xx (Tej Parkash) [Orabug: 17960365]\r\n- Modify UEFI anti-bricking code (Matthew Garrett) [Orabug: 17792954] \r\n- ocfs2: make 'buffered' as the default coherency option (Wengang Wang) [Orabug: 17988729] \r\n- Fixing kABI breakages in struct sock (Thomas Tanaka) [Orabug: 17901058] \r\n- tcp: TSQ can use a dynamic limit (Eric Dumazet) [Orabug: 17901058] \r\n- tcp: TSO packets automatic sizing (Eric Dumazet) [Orabug: 17901058] \r\n- bonding: fix two race conditions in bond_store_updelay/downdelay (Nikolay Aleksandrov) [Orabug: 17931850]\r\n- Update lpfc version for 8.3.7.34.4p driver release (Gairy Grannum) \r\n- Fixed unassigned variable in ELS timeout message (James Smart) \r\n- Fixed incorrect allocation of iDiags directories/files in debugfs (James Smart) \r\n- Fix Crash in lpfc_els_timeout_handler (James Smart) \r\n- Fix kernel panics from corrupted ndlp list. (James Smart) \r\n- Fix Crash in lpfc_els_timeout_handler (James Smart) \r\n- Fix Crash in lpfc_els_timeout_handler (James Smart) \r\n- [SCSI] lpfc: Fix typo on NULL assignment (Felipe Pena) \r\n- Fixed stopped FCF discovery on failed FCF record read. (James Smart) \r\n- Fixed IO hang when in msi mode. (James Smart) \r\n- tg3: update to broadcom version v3.134f (Jerry Snitselaar) [Orabug: 18037870] \r\n- bnx2x: update to broadcom version 1.78.80 (Jerry Snitselaar) [Orabug: 18037860] \r\n- PCI: Use pci_wait_for_pending_transaction() instead of for loop (Casey Leedom) [Orabug: 18037860]\r\n- PCI: Add pci_wait_for_pending_transaction() (Casey Leedom) [Orabug: 18037860] \r\n- bnx2i: update to broadcom version 2.7.8.2b (Jerry Snitselaar) [Orabug: 18037845]\r\n- bnx2fc: update to broadcom verison 2.4.1e (Jerry Snitselaar) [Orabug: 18037838] \r\n- cnic: update to broadcom version 2.5.18c (Jerry Snitselaar) [Orabug: ]\r\n- bnx2: update to broadcom version 2.2.4g (Jerry Snitselaar) [Orabug: ]\r\n- qla2xxx: update from mainline 8.05.00.03.39.0-k to qlogic version 8.06.00.14.39.0-k (Guangyu Sun) [Orabug: 17952066]\r\n \n[3.8.13-21.el6uek]\r\n- be2iscsi: Bump driver version (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix SGL posting for unaligned ICD values (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix AER handling in driver (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Invalidate WRB in Abort/Reset Path (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix Insufficient Buffer Error returned in MBX Completion (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix log level for protocol specific logs (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix MSIx creation for SKH-R adapter (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Display Port Identifier for each iSCSI function (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Dispaly CID available for connection offload (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix chute cleanup during drivers unload. (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix connection offload to support Dual Chute. (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix CID allocation/freeing to support Dual chute mode (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix WRB_Q posting to support Dual Chute mode (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix SGL Initilization and posting Pages for Dual Chute (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix Template HDR support for Dual Chute mode (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix changes in ASYNC Path for SKH-R adapter (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Config parameters update for Dual Chute Support (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix soft lock up issue during UE or if FW taking time to respond (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix locking mechanism in Unsol Path (Brian Maly) [Orabug: 17799766]\r\n- Subject: [PATCH 04/23] be2iscsi: Fix negotiated parameters upload to FW (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix repeated issue of MAC ADDR get IOCTL (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix the MCCQ count leakage (Brian Maly) [Orabug: 17799766]\r\n- be2iscsi: Fix Template HDR IOCTL (Brian Maly) [Orabug: 17799766]\r\n- cifs: enable SMB2 support (Jerry Snitselaar) [Orabug: 17486287]\r\n- [SCSI] Derive the FLUSH_TIMEOUT from the basic I/O timeout (James Bottomley) [Orabug: 17853273]\r\n- hyperv: Fix RNDIS send_completion code path (Haiyang Zhang) [Orabug: 17784576]\r\n- [SCSI] fix kabi break (Jerry Snitselaar) [Orabug: 17940334]\r\n- [SCSI] Disable WRITE SAME for RAID and virtual host adapter drivers (Martin K. Petersen) [Orabug: 17940334]\r\n- qlcnic: update to qlogic version 5.3.52.3 (Sucheta Chakraborty) [Orabug: 17937392]\r\n- netxen: update to qlogic version 4.0.82 (Sucheta Chakraborty) [Orabug: 17937454]\r\n- be2net: Warn users of possible broken functionality on BE2 cards with very old FW versions with latest driver (Somnath Kotur) [Orabug: 17937784] \r\n- net: be2net: remove unnecessary pci_set_drvdata() (Jingoo Han) [Orabug: 17937784]\r\n- be2net: Rework PCIe error report log messaging (Ajit Khaparde) [Orabug: 17937784]\r\n- be2net: change the driver version number to 4.9.224.0 (Ajit Khaparde) [Orabug: 17937784]\r\n- be2net: Display RoCE specific counters in ethtool -S (Ajit Khaparde) [Orabug: 17937784]\r\n- be2net: Call version 2 of GET_STATS ioctl for Skyhawk-R (Ajit Khaparde) [Orabug: 17937784]\r\n- be2net: add a counter for pkts dropped in xmit path (Sathya Perla) [Orabug: 17937784]\r\n- be2net: fix adaptive interrupt coalescing (Sathya Perla) [Orabug: 17937784] \r\n- be2net: call ENABLE_VF cmd for Skyhawk-R too (Vasundhara Volam) [Orabug: 17937784]\r\n- be2net: Create single TXQ on BE3-R 1G ports (Vasundhara Volam) [Orabug: 179 3 7 7 8 4 ] \r b r > - b e 2 n e t : C a l l b e _ v f _ s e t u p ( ) e v e n w h e n V F s a r e e n b a l e d f r o m p r e v i o u s l o a d ( V a s u n d h a r a V o l a m ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x t o d i s p l a y t h e V L A N p r i o r i t y f o r a V F ( A j i t K h a p a r d e ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x t o c o n f i g u r e V L A N p r i o r i t y f o r a V F i n t e r f a c e . ( A j i t K h a p a r d e ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x t o a l l o w V L A N c o n f i g u r a t i o n o n V F i n t e r f a c e s . ( A j i t K h a p a r d e ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x n u m b e r o f V L A N s s u p p o r t e d i n U M C m o d e f o r B E 3 - R . ( A j i t K h a p a r d e ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x V L A N p r o m i s c u o u s m o d e p r o g r a m m i n g ( A j i t K h a p a r d e ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x t h e s i z e o f b e _ n i c _ r e s _ d e s c s t r u c t u r e ( A j i t K h a p a r d e ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x t o p r e v e n t T x s t a l l o n S H - R w h e n p a c k e t s i z e 3 2 ( A j i t K h a p a r d e ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - e m u l e x : R e m o v e e x t e r n f r o m f u n c t i o n p r o t o t y p e s ( J o e P e r c h e s ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : m i s s i n g v a r i a b l e i n i t i a l i z a t i o n ( A n t o n i o A l e c r i m J r ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : s e t a n d q u e r y V E B / V E P A m o d e o f t h e P F i n t e r f a c e ( A j i t K h a p a r d e ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - d r i v e r s : n e t : C o n v e r t d m a _ a l l o c _ c o h e r e n t ( . . . _ _ G F P _ Z E R O ) t o d m a _ z a l l o c _ c o h e r e n t ( J o e P e r c h e s ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : i m p l e m e n t e t h t o o l s e t / g e t _ c h a n n e l h o o k s ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : r e f a c t o r b e _ s e t u p ( ) t o c o n s o l i d a t e q u e u e c r e a t i o n r o u t i n e s ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x b e _ c m d _ i f _ c r e a t e ( ) t o u s e M B O X i f M C C Q i s n o t c r e a t e d ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : r e f a c t o r b e _ g e t _ r e s o u r c e s ( ) c o d e ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x u p p r o f i l e m a n a g e m e n t r o u t i n e s ( V a s u n d h a r a V o l a m ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : u s e E Q _ C R E A T E v 2 f o r S H - R ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : C h e c k f o r P O S T s t a t e i n s u s p e n d - r e s u m e s e q u e n c e ( S a r v e s h w a r B a n d i ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : f i x d i s a b l i n g T X i n b e _ c l o s e ( ) ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : C l e a r a n y c a p a b i l i t y f l a g s t h a t d r i v e r i s n o t i n t e r e s t e d i n . ( S a r v e s h w a r B a n d i ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : I n i t i a l i z e ' s t a t u s ' i n b e _ c m d _ g e t _ d i e _ t e m p e r a t u r e ( ) ( V a s u n d h a r a V o l a m ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : f i x u p l o g m s g s f o r a s y n c e v e n t s ( V a s u n d h a r a V o l a m ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : M i s s i n g c h a n g e s f r o m ' f i x a T x s t a l l b u g c a u s e d b y a s p e c i f i c i p v 6 p a c k e t ' ( R a v i k u m a r N e l a v e l l i ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : F i x d i s p l a y i n g s u p p o r t e d s p e e d s f o r B E 2 ( V a s u n d h a r a V o l a m ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : d o n ' t l i m i t m a x M A C a n d V L A N c o u n t s ( V a s u n d h a r a V o l a m ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : D o n o t c a l l g e t _ d i e _ t e m p e r a t u r e c m d f o r V F ( V a s u n d h a r a V o l a m ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : A d d i n g m o r e s p e e d s r e p o r t e d b y g e t _ s e t t i n g s ( V a s u n d h a r a V o l a m ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : S t a t i c i z e l o c a l f u n c t i o n s ( J i n g o o H a n ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : d o n ' t u s e d e v _ e r r w h e n A E R e n a b l i n g f a i l s ( I v a n V e c e r a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : d e l e t e p r i m a r y M A C a d d r e s s w h i l e u n l o a d i n g ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : u s e S E T / G E T _ M A C _ L I S T f o r S H - R ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : r e f a c t o r M A C - a d d r s e t u p c o d e ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : f i x p m a c _ i d f o r B E 3 V F s ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : a l l o w V F s t o p r o g r a m M A C a n d V L A N f i l t e r s ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - b e 2 n e t : f i x M A C a d d r e s s m o d i f i c a t i o n f o r V F ( S a t h y a P e r l a ) [ O r a b u g : 1 7 9 3 7 7 8 4 ] \r b r > - [ S C S I ] s d : R e d u c e b u f f e r s i z e f o r v p d r e q u e s t ( B e r n d S c h u b e r t ) [ O r a b u g : 1 7 9 4 0 3 3 4 ] \r b r > - [ S C S I ] s d : f i x a r r a y c a c h e f l u s h i n g b u g c a u s i n g p e r f o r m a n c e p r o b l e m s ( J a m e s B o t t o m l e y ) [ O r a b u g : 1 7 9 4 0 3 3 4 ] \r b r > - [ S C S I ] F i x r a c e b e t w e e n s t a r v e d l i s t a n d d e v i c e r e m o v a l ( J a m e s B o t t o m l e y ) [ O r a b u g : 1 7 9 4 0 3 3 4 ] \r b r > - [ S C S I ] e n a b l e d e s t r u c t i o n o f b l o c k e d d e v i c e s w h i c h f a i l L U N s c a n n i n g ( B a r t V a n A s s c h e ) [ O r a b u g : 1 7 9 4 0 3 3 4 ] \r b r > - i x g b e v f : u p g r a d e f r o m 2 . 8 . 7 t o 2 . 1 1 . 3 ( e t h a n . z h a o ) [ O r a b u g : 1 7 7 1 8 2 5 4 ] \r b r > - i g b : s e t d e f a u l t R S S t o 0 f o r p e r f o r m a n c e t u n i n g ( e t h a n . z h a o ) [ O r a b u g : 1 7 5 9 3 4 1 9 0 ] \r b r > - i g b : u p g r a d e f r o m 4 . 3 . 0 t o 5 . 0 . 6 ( e t h a n . z h a o ) [ O r a b u g : 1 7 7 1 1 6 4 5 ] \r b r > - e 1 0 0 0 e : A v o i d k e r n e l c r a s h d u r i n g s h u t d o w n ( L i Z h a n g ) [ O r a b u g : 1 7 8 5 4 0 7 1 ] \r b r > - e 1 0 0 0 e : u p g r a d e f r o m 2 . 4 . 1 4 t o 2 . 5 . 4 ( e t h a n . z h a o ) [ O r a b u g : 1 7 7 1 8 2 1 6 ] \r b r > - B t r f s : s k i p s u b v o l e n t r i e s w h e n c h e c k i n g i f w e ' v e c r e a t e d a d i r a l r e a d y ( J o s e f B a c i k ) [ O r a b u g : 1 7 6 6 1 8 4 5 ] \r b r > - B t r f s : f i x i n c o r r e c t i n o d e a c l r e s e t ( F i l i p e D a v i d B o r b a M a n a n a ) [ O r a b u g : 1 7 6 6 9 3 4 1 ] \r b r > - B t r f s : a l l o w r u n n i n g d e f r a g i n p a r a l l e l t o a d m i n i s t r a t i v e t a s k s ( S t e f a n B e h r e n s ) [ O r a b u g : 1 7 8 8 6 0 2 2 ] \r b r > - z r a m : a l l o w r e q u e s t e n d t o c o i n c i d e w i t h d i s k s i z e ( S e r g e y S e n o z h a t s k y ) [ O r a b u g : 1 7 8 7 9 1 8 3 ] \r b r > - c o n f i g f s : f i x r a c e b e t w e e n d e n t r y p u t a n d l o o k u p ( J u n x i a o B i ) [ O r a b u g : 1 7 9 3 1 3 4 2 ] \r b r > - x f s : f i x s g i d i n h e r i t a n c e f o r s u b d i r e c t o r i e s i n h e r i t i n g d e f a u l t a c l s [ V 3 ] ( C a r l o s M a i o l i n o ) [ O r a b u g : 1 7 3 5 4 2 3 4 ] \r b r > - R e v e r t ' s g : u s e r w s e m t o s o l v e r a c e d u r i n g e x c l u s i v e o p e n ' ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 5 7 9 1 3 1 ] \r b r > - R e v e r t ' s g : n o n e e d s g _ o p e n _ e x c l u s i v e _ l o c k ' ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 5 7 9 1 3 1 ] \r b r > - R e v e r t ' s g : c h e c k i n g s d p - > d e t a c h e d i s n ' t p r o t e c t e d w h e n o p e n ' ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 5 7 9 1 3 1 ] \r b r > - R e v e r t ' s g : p u s h f i l e d e s c r i p t o r l i s t l o c k i n g d o w n t o p e r - d e v i c e l o c k i n g ' ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 5 7 9 1 3 1 ] \r b r > - N V M e : M e r g e i s s u e o n c h a r a c t e r d e v i c e b r i n g - u p ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : H a n d l e i o r e m a p f a i l u r e ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : A d d p c i s u s p e n d / r e s u m e d r i v e r c a l l b a c k s ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : U s e n o r m a l s h u t d o w n ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : S e p a r a t e c o n t r o l l e r i n i t f r o m d i s k d i s c o v e r y ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : S e p a r a t e q u e u e a l l o c / f r e e f r o m c r e a t e / d e l e t e ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : G r o u p p c i r e l a t e d a c t i o n s i n f u n c t i o n s ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : D i s k s t a t s f o r r e a d / w r i t e c o m m a n d s o n l y ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : B r i n g u p c d e v o n s e t f e a t u r e f a i l u r e ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : F i x c h e c k p a t c h i s s u e s ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : N a m e s p a c e I D s a r e u n s i g n e d ( M a t t h e w W i l c o x ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : C a l l n v m e _ p r o c e s s _ c q f r o m s u b m i s s i o n p a t h ( M a t t h e w W i l c o x ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : R e m o v e ' p r o c e s s _ c q d i d s o m e t h i n g ' m e s s a g e ( M a t t h e w W i l c o x ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : R e t u r n c o r r e c t v a l u e f r o m i n t e r r u p t h a n d l e r ( M a t t h e w W i l c o x ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : D i s k I O s t a t i s t i c s ( K e i t h B u s c h ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : R e s t r u c t u r e M S I / M S I - X s e t u p ( M a t t h e w W i l c o x ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - N V M e : U s e k z a l l o c i n s t e a d o f k m a l l o c + m e m s e t ( T u s h a r B e h e r a ) [ O r a b u g : 1 7 9 4 0 2 9 6 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : F i x s y n c h r o n i z a t i o n p r o b l e m b e t w e e n s y s P D I O p a t h a n d A E N p a t h ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : f i x e s f o r f e w e n d i a n e s s i s s u e s ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : a d d d e d s u p p o r t f o r b i g e n d i a n a r c h i t e c t u r e ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : V e r s i o n a n d C h a n g e l o g u p d a t e ( A d a m R a d f o r d ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : A d d H i g h A v a i l a b i l i t y c l u s t e r i n g s u p p o r t u s i n g s h a r e d L o g i c a l D i s k s ( A d a m R a d f o r d ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - s c s i / m e g a r a i d f i x e d s e v e r a l t y p o s i n c o m m e n t s ( M a t t h i a s S c h i d ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : m e g a r a i d _ s a s d r i v e r i n i t f a i l s i n k d u m p k e r n e l ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : f i x a b u g f o r 6 4 b i t a r c h e s ( D a n C a r p e n t e r ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : f i x m e m o r y l e a k i f S G L h a s z e r o l e n g t h e n t r i e s ( B j ? r n M o r k ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d : m i n o r c u t a n d p a s t e e r r o r f i x e d . ( J a m e s G e o r g a s ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : C h a n g e l o g a n d d r i v e r v e r s i o n u p d a t e ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : A d d s u p p o r t t o d i f f e r e n t i a t e b e t w e e n i M R v s M R F i r m w a r e ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : A d d s u p p o r t f o r U n e v e n S p a n P R L 1 1 ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : A d d s u p p o r t f o r E x t e n d e d M S I - x v e c t o r s f o r 1 2 G b / s c o n t r o l l e r ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : S e t I o F l a g s t o e n a b l e F a s t P a t h f o r J B O D s f o r 1 2 G b / s c o n t r o l l e r s ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : A d d s u p p o r t t o d i s p l a y C u s t o m e r b r a n d i n g d e t a i l s i n s y s l o g ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : A d d s u p p o r t f o r M e g a R A I D F u r y ( d e v i c e I D - 0 x 0 0 5 f ) 1 2 G b / s c o n t r o l l e r s ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : S e t I O r e q u e s t t i m e o u t v a l u e p r o v i d e d b y O S t i m e o u t f o r T a p e d e v i c e s ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : F r e e e v e n t d e t a i l m e m o r y w i t h o u t d e v i c e I D c h e c k ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : U p d a t e b a l a n c e c o u n t i n d r i v e r t o b e i n s y n c o f f i r m w a r e ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : F i x t h e i n t e r r u p t m a s k f o r G e n 2 c o n t r o l l e r ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : R e t u r n D I D _ E R R O R f o r S C S I I O , w h e n c o n t r o l l e r i s i n c r i t i c a l h / w e r r o r ( S u m i t . S a x e n a @ l s i . c o m ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : r e l e a s e l o c k o n e r r o r p a t h ( D a n C a r p e n t e r ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : U s e c o r r e c t # d e f i n e f o r M S I - X c a p a b i l i t y ( B j o r n H e l g a a s ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : V e r s i o n a n d C h a n g e l o g u p d a t e ( A d a m R a d f o r d ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : D o n t l o a d D e v H a n d l e u n l e s s F a s t P a t h e n a b l e d ( A d a m R a d f o r d ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - [ S C S I ] m e g a r a i d _ s a s : A d d 4 k F a s t P a t h D I F s u p p o r t ( A d a m R a d f o r d ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - m e g a r a i d : R e v e r t d r i v e r u p d a t e ( M a r t i n K . P e t e r s e n ) [ O r a b u g : 1 7 9 4 0 3 7 8 ] \r b r > - c c i s s : f i x b r o k e n m u t e x u s a g e i n i o c t l ( S t e p h e n M . C a m e r o n ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - c c i s s : a d d c c i s s _ m u t e x ( A r n d B e r g m a n n ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - c c i s s : r e m o v e c c i s s _ k e r n e l _ c o m p a t . h ( V a u g h a n C a o ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - b l o c k : a d d a n d u s e s c s i _ b l k _ c m d _ i o c t l ( P a o l o B o n z i n i ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - c c i s s : a d d s m a l l d e l a y w h e n u s i n g P C I P o w e r M a n a g e m e n t t o r e s e t f o r k u m p ( M i k e M i l l e r ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - c c i s s : s e t m a x s c a t t e r g a t h e r e n t r i e s t o 3 2 o n P 6 0 0 ( M i k e M i l l e r ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - c c i s s : b u g f i x t o p r e v e n t c c i s s f r o m l o a d i n g i n k d u m p c r a s h k e r n e l ( M i k e M i l l e r ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - c c i s s : c h a n g e l o w e r c a s e t o u p p e r c a s e f o r P 7 0 0 M d e f i n p r o d u c t s ( V a u g h a n C a o ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - c c i s s : r e m o v e _ _ d e v * m a r k i n g s ( V a u g h a n C a o ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - c c i s s : u p g r a d e t o 4 . 6 . 2 8 ( V a u g h a n C a o ) [ O r a b u g : 1 7 7 6 3 6 2 0 ] \r b r > - R e v e r t ' S P E C : F i x x e n m u l t i b o o t s u p p o r t ' ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 7 9 2 3 0 3 ] \r b r > - k b u i l d : S e t o b j e c t s . b u i l t i n d e p e n d e n c y t o b z I m a g e f o r C O N F I G _ C T F ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 5 1 0 9 1 5 ] \r b r > - u b i f s : w a i t f o r p a g e w r i t e b a c k t o p r o v i d e s t a b l e p a g e s ( J a n K a r a ) [ O r a b u g : 1 7 9 3 9 8 7 8 ] \r b r > - o c f s 2 : w a i t f o r p a g e w r i t e b a c k t o p r o v i d e s t a b l e p a g e s ( J a n K a r a ) [ O r a b u g : 1 7 9 3 9 8 7 8 ] \r b r > - b l o c k : o p t i o n a l l y s n a p s h o t p a g e c o n t e n t s t o p r o v i d e s t a b l e p a g e s d u r i n g w r i t e ( D a r r i c k J . W o n g ) [ O r a b u g : 1 7 9 3 9 8 7 8 ] \r b r > - m m : o n l y e n f o r c e s t a b l e p a g e w r i t e s i f t h e b a c k i n g d e v i c e r e q u i r e s i t ( D a r r i c k J . W o n g ) [ O r a b u g : 1 7 9 3 9 8 7 8 ] \r b r > - b d i : a l l o w b l o c k d e v i c e s t o s a y t h a t t h e y r e q u i r e s t a b l e p a g e w r i t e s ( D a r r i c k J . W o n g ) [ O r a b u g : 1 7 9 3 9 8 7 8 ] \r b r > - n e t f i l t e r : e n a b l e l o g t a r g e t ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 8 8 5 3 4 8 ] \r b r > - q l a 4 x x x : U p d a t e d d r i v e r v e r s i o n t o 5 . 0 4 . 0 0 . 0 0 . 0 6 . 0 2 - u e k 3 ( T e j P a r k a s h ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : o v e r f l o w i n q l a 4 x x x _ s e t _ c h a p _ e n t r y ( ) ( D a n C a r p e n t e r ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : A d d s u p p o r t f o r a d d i t i o n a l n e t w o r k p a r a m e t e r s s e t t i n g s ( H a r i s h Z u n j a r r a o ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - i s c s i _ t r a n s p o r t : A d d i t i o n a l p a r a m e t e r s f o r n e t w o r k s e t t i n g s ( H a r i s h Z u n j a r r a o ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - i s c s i _ t r a n s p o r t : R e m o v e n e t p a r a m e n u m v a l u e s ( H a r i s h Z u n j a r r a o ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : A d d s u p p o r t t o g e t C H A P d e t a i l s f o r f l a s h t a r g e t s e s s i o n ( A d h e e r C h a n d r a v a n s h i ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : A d d s u p p o r t t o s e t C H A P e n t r i e s ( A d h e e r C h a n d r a v a n s h i ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - s c s i _ t r a n s p o r t _ i s c s i : A d d s u p p o r t t o s e t C H A P e n t r i e s ( A d h e e r C h a n d r a v a n s h i ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : U s e o f f s e t b a s e d o n a d a p t e r t y p e t o s e t C H A P e n t r y i n f l a s h ( A d h e e r C h a n d r a v a n s h i ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : P o p u l a t e l o c a l C H A P c r e d e n t i a l s f o r f l a s h t a r g e t s e s s i o n s ( A d h e e r C h a n d r a v a n s h i ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : S u p p o r t s e t t i n g o f l o c a l C H A P i n d e x f o r f l a s h t a r g e t e n t r y ( A d h e e r C h a n d r a v a n s h i ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : C o r r e c t t h e c h e c k f o r l o c a l C H A P e n t r y t y p e ( A d h e e r C h a n d r a v a n s h i ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : c o r r e c t l y u p d a t e s e s s i o n d i s c o v e r y _ p a r e n t _ i d x . ( M a n i s h R a n g a n k a r ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : R e t u r n e r r o r i f m i n i d u m p d a t a c o l l e c t i o n f a i l s ( V i k a s C h a u d h a r y ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : F i x t h e m i n i d u m p d a t a c o l l e c t i o n c h e c k i n f o r l o o p ( S a n t o s h V e r n e k a r ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : A d d p e x - d m a s u p p o r t f o r c a p t u r i n g m i n i d u m p ( S a n t o s h V e r n e k a r ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : U p d a t e C o p y r i g h t h e a d e r ( V i k a s C h a u d h a r y ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : I m p l e m e n t a t i o n o f A C B c o n f i g u r a t i o n d u r i n g L o o p b a c k f o r I S P 8 0 4 2 ( N i l e s h J a v a l i ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - q l a 4 x x x : A d d e d s u p p o r t f o r I S P 8 0 4 2 ( V i k a s C h a u d h a r y ) [ O r a b u g : 1 7 9 6 0 4 2 7 ] \r b r > - i p _ o u t p u t : d o s k b u f o i n i t f o r p e e k e d n o n u f o s k b a s w e l l ( J i r i P i r k o ) [ O r a b u g : 1 7 9 5 1 0 7 8 ] { C V E - 2 0 1 3 - 4 4 7 0 } \r b r > - i p 6 _ o u t p u t : d o s k b u f o i n i t f o r p e e k e d n o n u f o s k b a s w e l l ( J i r i P i r k o ) [ O r a b u g : 1 7 9 5 1 0 8 0 ] { C V E - 2 0 1 3 - 4 4 7 0 } \r b r > - K V M : x 8 6 : f i x g u e s t - i n i t i a t e d c r a s h w i t h x 2 a p i c ( C V E - 2 0 1 3 - 6 3 7 6 ) ( G l e b N a t a p o v ) [ O r a b u g : 1 7 9 5 1 0 6 7 ] { C V E - 2 0 1 3 - 6 3 7 6 } \r b r > - K V M : x 8 6 : C o n v e r t v a p i c s y n c h r o n i z a t i o n t o _ c a c h e d f u n c t i o n s ( C V E - 2 0 1 3 - 6 3 6 8 ) ( A n d y H o n i g ) [ O r a b u g : 1 7 9 5 1 0 7 1 ] { C V E - 2 0 1 3 - 6 3 6 8 } \r b r > - K V M : x 8 6 : F i x p o t e n t i a l d i v i d e b y 0 i n l a p i c ( C V E - 2 0 1 3 - 6 3 6 7 ) ( A n d y H o n i g ) [ O r a b u g : 1 7 9 5 1 0 7 3 ] { C V E - 2 0 1 3 - 6 3 6 7 } \r b r > - S U N R P C : d o n ' t m a p E K E Y E X P I R E D t o E A C C E S i n c a l l _ r e f r e s h r e s u l t ( A n d y A d a m s o n ) [ O r a b u g : 1 7 9 3 1 7 3 8 ] \r b r > - N F S v 4 : F i x s t a t e r e f e r e n c e c o u n t i n g i n _ n f s 4 _ o p e n d a t a _ r e c l a i m _ t o _ n f s 4 _ s t a t e ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 9 3 1 2 9 3 ] \r b r > - N F S v 4 : d o n ' t r e p r o c e s s c a c h e d o p e n C L A I M _ P R E V I O U S ( W e s t o n A n d r o s A d a m s o n ) [ O r a b u g : 1 7 9 3 1 2 9 2 ] \r b r > - N F S v 4 : d o n ' t f a i l o n m i s s i n g f a t t r i n o p e n r e c o v e r ( W e s t o n A n d r o s A d a m s o n ) [ O r a b u g : 1 7 9 3 1 2 9 0 ] \r b r > - N F S v 4 : f i x N U L L d e r e f e r e n c e i n o p e n r e c o v e r ( W e s t o n A n d r o s A d a m s o n ) [ O r a b u g : 1 7 9 3 1 2 8 1 ] \r b r > - N F S v 4 : F i x a u s e - a f t e r - f r e e s i t u a t i o n i n _ n f s 4 _ p r o c _ g e t l k ( ) ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 9 3 1 2 7 2 ] \r b r > - x e n / b l k b a c k : f i x r e f e r e n c e c o u n t i n g ( V e g a r d N o s s u m ) [ O r a b u g : 1 7 9 3 1 2 0 9 ] \r b r > - b l k - c o r e : F i x m e m o r y c o r r u p t i o n i f b l k c g _ i n i t _ q u e u e f a i l s ( M i k u l a s P a t o c k a ) [ O r a b u g : 1 7 9 3 1 2 0 5 ] \r b r > - x f s : a d d c a p a b i l i t y c h e c k t o f r e e e o f b l o c k s i o c t l ( D w i g h t E n g e n ) [ O r a b u g : 1 7 9 3 1 0 9 6 ] \r b r > - c o m p i l e r - g c c . h : A d d g c c - r e c o m m e n d e d G C C _ V E R S I O N m a c r o ( D a n i e l S a n t o s ) [ O r a b u g : 1 7 8 8 2 8 7 7 ] \r b r > - f i x k a b i b r e a k a g e ( D a r r i c k J . W o n g ) [ O r a b u g : 1 4 5 4 8 7 7 5 ] \r b r > - d i r e c t - i o : H a n d l e O _ ( D ) S Y N C A I O ( D a r r i c k J . W o n g ) [ O r a b u g : 1 4 5 4 8 7 7 5 ] \r b r > - d i r e c t - i o : I m p l e m e n t g e n e r i c d e f e r r e d A I O c o m p l e t i o n s f o r e x t 4 ( D a r r i c k J . W o n g ) [ O r a b u g : 1 4 5 4 8 7 7 5 ] \r b r > - d i r e c t - i o : I m p l e m e n t g e n e r i c d e f e r r e d A I O c o m p l e t i o n s ( D a r r i c k J . W o n g ) [ O r a b u g : 1 4 5 4 8 7 7 5 ] \r b r > \r b r > [ 3 . 8 . 1 3 - 2 0 . e l 6 u e k ] \r b r > - K V M : F i x i o m m u m a p / u n m a p t o h a n d l e m e m o r y s l o t m o v e s ( A l e x W i l l i a m s o n ) [ O r a b u g : 1 7 8 4 1 9 6 0 ] { C V E - 2 0 1 3 - 4 5 9 2 } \r b r > - a n s i _ c p r n g : F i x o f f b y o n e e r r o r i n n o n - b l o c k s i z e r e q u e s t ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 8 3 7 9 9 7 ] { C V E - 2 0 1 3 - 4 3 4 5 } \r b r > - i x g b e : u p d a t e f r o m 3 . 1 5 . 1 t o 3 . 1 8 . 7 ( e t h a n . z h a o ) [ O r a b u g : 1 7 7 1 8 0 7 3 ] \r b r > - x 8 6 , m t r r : F i x o r i g i n a l m t r r r a n g e g e t f o r m t r r _ c l e a n u p ( Y i n g h a i L u ) [ O r a b u g : 1 7 8 1 2 7 5 9 ] \r b r > - S U N R P C : F i x a d a t a c o r r u p t i o n i s s u e w h e n r e t r a n s m i t t i n g R P C c a l l s ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 8 2 1 8 8 4 ] \r b r > - [ S C S I ] h p s a : r e m o v e u n n e e d e d v a r i a b l e ( T o m a s H e n z l ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > - [ S C S I ] h p s a : h o u s e k e e p i n g p a t c h f o r d e v i c e _ i d a n d p r o d u c t a r r a y s ( M i k e M i l l e r ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > - h p s a : a d d H P S m a r t A r r a y G e n 8 n a m e P 8 2 2 s e ( V a u g h a n C a o ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > - [ S C S I ] h p s a : a d d H P S m a r t A r r a y G e n 9 P C I I D ' s ( M i k e M i l l e r ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > - h p s a : C o n v e r t r e t r u n t y p o s t o r e t u r n ( J o e P e r c h e s ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > - [ S C S I ] h p s a : f i x w a r n i n g w i t h s m p _ p r o c e s s o r _ i d ( ) i n p r e e m p t i b l e ( J o h n K a c u r ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > - [ S C S I ] h p s a : f i x a r a c e i n c m d _ f r e e / s c s i _ d o n e ( T o m a s H e n z l ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > - h p s a : f i x c o m p i l a t i o n e r r o r o f _ _ d e v * m a r k i n g s ( V a u g h a n C a o ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > - h p s a : u p g r a d e t o 3 . 4 . 2 - 5 ( V a u g h a n C a o ) [ O r a b u g : 1 7 7 1 9 4 0 4 ] \r b r > \r b r > [ 3 . 8 . 1 3 - 1 9 . e l 6 u e k ] \r b r > - n e t : f i x c i p s o p a c k e t v a l i d a t i o n w h e n ! N E T L A B E L ( S e i f M a z a r e e b ) [ O r a b u g : 1 7 8 0 6 5 1 8 ] \r b r > - c a n : d e v : f i x n l m s g s i z e c a l c u l a t i o n i n c a n _ g e t _ s i z e ( ) ( M a r c K l e i n e - B u d d e ) [ O r a b u g : 1 7 8 0 6 5 1 7 ] \r b r > - i p v 4 : f i x i n e f f e c t i v e s o u r c e a d d r e s s s e l e c t i o n ( J i r i B e n c ) [ O r a b u g : 1 7 8 0 6 5 1 6 ] \r b r > - e c r y p t f s : F i x m e m o r y l e a k a g e i n k e y s t o r e . c ( G e y s l a n G . B e m ) [ O r a b u g : 1 7 8 0 6 5 1 3 ] \r b r > - c o n n e c t o r : u s e n l m s g _ l e n ( ) t o c h e c k m e s s a g e l e n g t h ( M a t h i a s K r a u s e ) [ O r a b u g : 1 7 8 0 6 5 1 2 ] \r b r > - n e t : v l a n : f i x n l m s g s i z e c a l c u l a t i o n i n v l a n _ g e t _ s i z e ( ) ( M a r c K l e i n e - B u d d e ) [ O r a b u g : 1 7 8 0 6 5 1 0 ] \r b r > - S P E C : F i x x e n m u l t i b o o t s u p p o r t ( Z h i g a n g W a n g ) [ O r a b u g : 1 7 7 9 2 3 0 3 ] \r b r > - c o n f i g : e n a b l e C O N F I G _ P A N I C _ O N _ O O P S o n s p a r c ( J e r r y S n i t s e l a a r ) [ O r a b u g : 1 7 7 6 2 4 6 1 ] \r b r > - N F S v 4 . 1 : D o n ' t l o s e l o c k s w h e n a s e r v e r r e b o o t s d u r i n g d e l e g a t i o n r e t u r n ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 . 1 e n d b a c k c h a n n e l s e s s i o n d r a i n i n g ( A n d y A d a m s o n ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 . 1 F i x a p N F S s e s s i o n d r a i n i n g d e a d l o c k ( A n d y A d a m s o n ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 . 1 : E n s u r e t h a t w e f r e e t h e l o c k s t a t e i d o n t h e s e r v e r ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 : C o n v e r t n f s 4 1 _ f r e e _ s t a t e i d t o u s e a n a s y n c h r o n o u s R P C c a l l ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 : D o n ' t r e c h e c k p e r m i s s i o n s o n o p e n i n c a s e o f r e c o v e r y c a c h e d o p e n ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 : R e c o r d t h e O P E N c r e a t e m o d e u s e d i n t h e n f s 4 _ o p e n d a t a s t r u c t u r e ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 : F i x a n o t h e r o p e n / o p e n _ r e c o v e r y d e a d l o c k ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N L M : E n s u r e t h a t w e r e s e n d a l l p e n d i n g b l o c k i n g l o c k s a f t e r a r e c l a i m ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 : F i x a r e b o o t r e c o v e r y r a c e w h e n o p e n i n g a f i l e ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 : E n s u r e d e l e g a t i o n r e c a l l a n d b y t e r a n g e l o c k r e m o v a l d o n ' t c o n f l i c t ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 : F i x u p t h e r e t u r n v a l u e s o f n f s 4 _ o p e n _ d e l e g a t i o n _ r e c a l l ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 . 1 : D o n ' t l o s e l o c k s w h e n a s e r v e r r e b o o t s d u r i n g d e l e g a t i o n r e t u r n ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 . 1 : P r e v e n t d e a d l o c k s b e t w e e n s t a t e r e c o v e r y a n d f i l e l o c k i n g ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - N F S v 4 : A l l o w t h e s t a t e m a n a g e r t o m a r k a n o p e n _ o w n e r a s b e i n g r e c o v e r e d ( T r o n d M y k l e b u s t ) [ O r a b u g : 1 7 4 1 9 8 3 1 ] \r b r > - d r i v e r s / b a s e / c o r e . c : A l w a y s o u t p u t d e v i c e r e n a m i n g m e s s a g e s . ( e t h a n . z h a o ) [ O r a b u g : 1 7 4 7 7 7 8 3 ] \r b r > - i x g b e v f : D o n ' t o u t p u t N I C n a m e b e f o r e r e g i s t e r e d . ( e t h a n . z h a o ) [ O r a b u g : 1 7 4 7 7 7 8 3 ] \r b r > - x e n / s m p : i n i t i a l i z e I P I v e c t o r s b e f o r e m a r k i n g C P U o n l i n e ( C h u c k A n d e r s o n ) [ O r a b u g : 1 7 8 0 0 0 0 9 ] \r b r > - c p u : m a k e s u r e t h a t c p u / o n l i n e f i l e c r e a t e d b e f o r e K O B J _ A D D i s e m i t t e d ( I g o r M a m m e d o v ) [ O r a b u g : 1 7 8 0 0 0 0 9 ] \r b r > - c p u : f i x ' c r a s h _ n o t e s ' a n d ' c r a s h _ n o t e s _ s i z e ' l e a k s i n r e g i s t e r _ c p u ( ) ( I g o r M a m m e d o v ) [ O r a b u g : 1 7 8 0 0 0 0 9 ] \r b r > \r b r > d t r a c e - m o d u l e s - 3 . 8 . 1 3 - 2 6 . e l 6 u e k \r b r > [ 0 . 4 . 2 - 3 ] \r b r > - O b s o l e t e t h e o l d p r o v i d e r h e a d e r s p a c k a g e . [ O r a b u g : 1 8 0 6 1 5 9 5 ] \r b r > \r b r > [ 0 . 4 . 2 - 2 ] \r b r > - C h a n g e n a m e o f p r o v i d e r h e a d e r s p a c k a g e , t o a v o i d c o n f l i c t s o n y u m u p d a t e . \r b r > [ O r a b u g : 1 8 0 6 1 5 9 5 ] \r b r > \r b r > [ 0 . 4 . 2 - 1 ] \r b r > - F i x ' v t i m e s t a m p ' i m p l e m e n t a t i o n . \r b r > [ O r a b u g : 1 7 7 4 1 4 7 7 ] \r b r > - S u p p o r t S D T p r o b e s p o i n t s i n k e r n e l m o d u l e s . \r b r > [ O r a b u g : 1 7 8 5 1 7 1 6 ] \r b r > / p > \n \n \n b r > h 2 > R e l a t e d C V E s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 1 4 7 . h t m l \" > C V E - 2 0 1 3 - 2 1 4 7 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 1 4 8 . h t m l \" > C V E - 2 0 1 3 - 2 1 4 8 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 5 0 . h t m l \" > C V E - 2 0 1 3 - 2 8 5 0 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 9 3 . h t m l \" > C V E - 2 0 1 3 - 2 8 9 3 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 9 5 . h t m l \" > C V E - 2 0 1 3 - 2 8 9 5 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 9 6 . h t m l \" > C V E - 2 0 1 3 - 2 8 9 6 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 9 7 . h t m l \" > C V E - 2 0 1 3 - 2 8 9 7 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 9 8 . h t m l \" > C V E - 2 0 1 3 - 2 8 9 8 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 9 9 . h t m l \" > C V E - 2 0 1 3 - 2 8 9 9 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 3 5 0 . h t m l \" > C V E - 2 0 1 3 - 4 3 5 0 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 2 0 5 . h t m l \" > C V E - 2 0 1 3 - 4 2 0 5 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 2 4 7 . h t m l \" > C V E - 2 0 1 3 - 4 2 4 7 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 2 7 0 . h t m l \" > C V E - 2 0 1 3 - 4 2 7 0 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 3 0 0 . h t m l \" > C V E - 2 0 1 3 - 4 3 0 0 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 6 4 3 1 . h t m l \" > C V E - 2 0 1 3 - 6 4 3 1 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n b r > h 2 > U p d a t e d P a c k a g e s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r s t y l e = \" c o l o r : # F F 0 0 0 0 ; \" > t d > b > R e l e a s e / A r c h i t e c t u r e / b > t d > b > F i l e n a m e / b > / t d > t d > b > M D 5 s u m / b > / t d > t d > b > S u p e r s e d e d B y A d v i s o r y / b > / t d > / t r > \n t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( x 8 6 _ 6 4 ) / t d > t d > d t r a c e - m o d u l e s - 3 . 8 . 1 3 - 2 6 . e l 6 u e k - 0 . 4 . 2 - 3 . e l 6 . s r c . r p m / t d > t d > c 4 0 c b d 0 e 9 c 9 2 4 5 2 e 7 0 a 8 b 8 4 5 6 9 7 b d a 9 8 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - 3 . 8 . 1 3 - 2 6 . e l 6 u e k . s r c . r p m / t d > t d > a 4 9 0 d 2 7 f 2 1 f 2 1 4 d b c c f b 2 4 4 1 5 1 2 0 6 3 8 a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > d t r a c e - m o d u l e s - 3 . 8 . 1 3 - 2 6 . e l 6 u e k - 0 . 4 . 2 - 3 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 3 e 0 b e 1 f c 4 e a 2 f 6 1 3 b f f 7 c 4 b a 0 a 5 c b 2 c 0 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > d t r a c e - m o d u l e s - h e a d e r s - 0 . 4 . 2 - 3 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 8 3 3 9 8 a 0 5 b 7 a 2 8 5 0 7 1 8 5 3 a 4 2 2 9 9 7 6 1 9 6 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 4 - 3 0 3 7 . h t m l \" > E L S A - 2 0 1 4 - 3 0 3 7 / a > / t d > / t r > t r > t d > / t d > t d > d t r a c e - m o d u l e s - p r o v i d e r - h e a d e r s - 0 . 4 . 2 - 3 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > b 8 9 b 4 0 3 2 5 0 3 5 e 1 e 3 8 0 f 1 d a f 5 7 f 3 6 2 8 6 4 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L B A - 2 0 1 7 - 3 5 4 3 . h t m l \" > E L B A - 2 0 1 7 - 3 5 4 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - 3 . 8 . 1 3 - 2 6 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > e b a 7 8 a d 6 0 1 8 8 f 8 9 c 6 9 3 5 1 0 b d c 5 3 d e d 3 6 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - 3 . 8 . 1 3 - 2 6 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > 7 e 3 6 4 a c 3 1 e b b 3 8 f 7 c 7 8 1 2 9 a e 7 c b 4 5 d 7 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - d e v e l - 3 . 8 . 1 3 - 2 6 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > 0 3 e 0 a a 0 f 7 4 d 0 3 7 f 3 d f 9 8 d f d 2 1 4 8 6 a e 3 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e v e l - 3 . 8 . 1 3 - 2 6 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > 4 2 d 9 d 8 8 8 c e 4 b 2 5 e 6 4 f 6 d 2 7 f c 2 2 b 3 6 f b 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d o c - 3 . 8 . 1 3 - 2 6 . e l 6 u e k . n o a r c h . r p m / t d > t d > 5 5 b 2 2 f 8 a d 4 7 d b 2 4 c f 1 8 5 2 5 6 9 2 a 6 8 4 d 3 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - f i r m w a r e - 3 . 8 . 1 3 - 2 6 . e l 6 u e k . n o a r c h . r p m / t d > t d > 1 b 9 8 2 5 8 c 3 4 b 4 8 d 7 6 0 f 8 9 2 1 b 3 1 8 b 9 f d f a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - h e a d e r s - 3 . 8 . 1 3 - 2 6 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > c 9 7 c 5 3 c f e d 4 a 0 7 1 3 7 b e e 9 4 0 e b c e 8 0 2 9 c / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L B A - 2 0 1 4 - 3 1 0 1 . h t m l \" > E L B A - 2 0 1 4 - 3 1 0 1 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n \n b r > b r > \n b r > p > \n T h i s p a g e i s g e n e r a t e d a u t o m a t i c a l l y a n d h a s n o t b e e n c h e c k e d f o r e r r o r s o r o m i s s i o n s . F o r c l a r i f i c a t i o n \n o r c o r r e c t i o n s p l e a s e c o n t a c t t h e a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / \" > O r a c l e L i n u x U L N t e a m / a > / p > \n \n \n \n / d i v > \n ! - - \n / d i v > \n - - > \n / d i v > \n / d i v > \n \n \n d i v i d = \" m c 1 6 \" c l a s s = \" m c 1 6 v 0 \" > \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > T e c h n i c a l i n f o r m a t i o n / h 2 > \n u l > \n l i > a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / h a r d w a r e - c e r t i f i c a t i o n s \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x C e r t i f i e d H a r d w a r e / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / l i b r a r y / e l s p - l i f e t i m e - 0 6 9 3 3 8 . p d f \" > O r a c l e L i n u x S u p p o r t e d R e l e a s e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > O r a c l e L i n u x S u p p o r t / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / t e c h n o l o g i e s / l i n u x / O r a c l e L i n u x S u p p o r t / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x S u p p o r t / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / p r e m i e r / s e r v e r s - s t o r a g e / o v e r v i e w / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e P r e m i e r S u p p o r t f o r S y s t e m s / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / a d v a n c e d - c u s t o m e r - s e r v i c e s / o v e r v i e w / \" > A d v a n c e d C u s t o m e r S e r v i c e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 2 \" > \n h 2 > C o n n e c t / h 2 > \n u l > \n l i c l a s s = \" f b i c o n \" > a h r e f = \" h t t p : / / w w w . f a c e b o o k . c o m / o r a c l e l i n u x \" t i t l e = \" F a c e b o o k \" n a m e = \" F a c e b o o k \" t a r g e t = \" _ b l a n k \" i d = \" F a c e b o o k \" > F a c e b o o k / a > / l i > \n l i c l a s s = \" t w i c o n \" > a h r e f = \" h t t p : / / w w w . t w i t t e r . c o m / O r a c l e L i n u x \" t i t l e = \" T w i t t e r \" n a m e = \" T w i t t e r \" t a r g e t = \" _ b l a n k \" i d = \" T w i t t e r \" > T w i t t e r / a > / l i > \n l i c l a s s = \" i n i c o n \" > a h r e f = \" h t t p : / / w w w . l i n k e d i n . c o m / g r o u p s ? g i d = 1 2 0 2 3 8 \" t i t l e = \" L i n k e d I n \" n a m e = \" L i n k e d I n \" t a r g e t = \" _ b l a n k \" i d = \" L i n k e d I n \" > L i n k e d I n / a > / l i > \n l i c l a s s = \" y t i c o n \" > a h r e f = \" h t t p : / / w w w . y o u t u b e . c o m / o r a c l e l i n u x c h a n n e l \" t i t l e = \" Y o u T u b e \" n a m e = \" Y o u T u b e \" t a r g e t = \" _ b l a n k \" i d = \" Y o u T u b e \" > Y o u T u b e / a > / l i > \n l i c l a s s = \" b l o g i c o n \" > a h r e f = \" h t t p : / / b l o g s . o r a c l e . c o m / l i n u x \" t i t l e = \" B l o g \" n a m e = \" B l o g \" > B l o g / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 3 \" > \n h 2 > C o n t a c t U s / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / c o r p o r a t e / c o n t a c t / g l o b a l - 0 7 0 5 1 1 . h t m l \" > G l o b a l c o n t a c t s / a > / l i > \n l i > O r a c l e 1 - 8 0 0 - 6 3 3 - 0 6 9 1 / l i > \n / u l > \n / d i v > \n / d i v > \n / d i v > \n \n d i v i d = \" m c 0 4 \" c l a s s = \" m c 0 4 v 1 \" > \n d i v c l a s s = \" m c 0 4 w 1 \" > \n a h r e f = \" h t t p : / / o r a c l e . c o m \" > i m g s r c = \" / / w w w . o r a c l e i m g . c o m / a s s e t s / m c 0 4 - f o o t e r - l o g o . p n g \" b o r d e r = \" 0 \" a l t = \" s o f t w a r e . h a r d w a r e . c o m p l e t e \" / > / a > \n / d i v > \n \n d i v c l a s s = \" m c 0 4 w 2 \" > \n a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / s u b s c r i b e / i n d e x . h t m l \" > S u b s c r i b e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / e m p l o y m e n t / i n d e x . h t m l \" > C a r e e r s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / c o n t a c t / i n d e x . h t m l \" > C o n t a c t U s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / c o p y r i g h t . h t m l \" > L e g a l N o t i c e s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / t e r m s . h t m l \" > T e r m s o f U s e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / p r i v a c y . h t m l \" > Y o u r P r i v a c y R i g h t s / a > \n / d i v > \n / d i v > \n / d i v > \n / b o d y > \n / h t m l > \n ", "edition": 4, "reporter": "Oracle", "published": "2014-02-11T00:00:00", "title": "Unbreakable Enterprise kernel security and bug fix update (Unbreakable Enterprise Kernel Release 3 QU1)", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4345", "CVE-2013-2896", "CVE-2013-2898", "CVE-2013-6431", "CVE-2013-4592", "CVE-2013-4270", "CVE-2013-2147", "CVE-2013-4300", "CVE-2013-2897", "CVE-2013-2148", "CVE-2013-6368", "CVE-2013-2850", "CVE-2013-2899", "CVE-2013-6367", "CVE-2013-6376", "CVE-2013-4247", "CVE-2013-4205", "CVE-2013-4350", "CVE-2013-2895", "CVE-2013-4470", "CVE-2013-2893"], "modified": "2014-02-11T00:00:00", "id": "ELSA-2014-3002", "href": "http://linux.oracle.com/errata/ELSA-2014-3002.html", "cvss": {"score": 7.9, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:44:51", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.1.2.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.1.2.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.1.2.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.1.2.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.1.2.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.1.2.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.1.2.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.1.2.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.1.2.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.1.2.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.1.2.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.1.2.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.1.2.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.1.2.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.1.2.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.1.2.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.1.2.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.1.2.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.1.2.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.1.2.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.1.2.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.1.2.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.1.2.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.1.2.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.1.2.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.1.2.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.1.2.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.1.2.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.1.2.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.1.2.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.1.2.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.1.2.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}], "description": "kernel\n[2.6.18-371.1.2]\n- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368}\n- [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}\n[2.6.18-371.1.1]\n- [crypto] ansi_cprng fix off by one err in non-block size request (Neil Horman) [1007692 1007693] {CVE-2013-4345}\n- [fs] gfs2: yield() in shrinker to allow glock_workqueues to run (Abhijith Das) [1014714 928518]\n- [net] ipv6: ipv6_create_tempaddr cleanup (Petr Holasek) [999361 999362] {CVE-2013-0343}\n- [net] ipv6: remove max_addresses check from ipv6_create_tempaddr (Petr Holasek) [999361 999362] {CVE-2013-0343}", "edition": 3, "reporter": "Oracle", "published": "2013-10-22T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4345", "CVE-2013-4368", "CVE-2013-0343", "CVE-2013-4299"], "modified": "2013-10-22T00:00:00", "id": "ELSA-2013-1449", "href": "http://linux.oracle.com/errata/ELSA-2013-1449.html", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:38:54", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-371.1.2.0.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-371.1.2.0.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-371.1.2.0.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-371.1.2.0.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-371.1.2.0.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.1.2.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.1.2.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.1.2.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-371.1.2.0.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-371.1.2.0.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-371.1.2.0.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-371.1.2.0.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.0.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-371.1.2.0.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.0.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.0.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.0.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.0.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-371.1.2.0.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-371.1.2.0.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-371.1.2.0.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-371.1.2.0.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.0.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-371.1.2.0.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.1.2.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.1.2.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.1.2.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-371.1.2.0.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.0.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-371.1.2.0.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.1.2.0.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.1.2.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.1.2.0.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.1.2.0.1.el5", "operator": "lt"}], "description": "kernel\n[2.6.18-371.1.2.0.1]\n- i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649]\n- [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030]\n- [oprofile] export __get_user_pages_fast() function [orabug 14277030]\n- [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030]\n- [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030]\n- [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030]\n- [kernel] Initialize the local uninitialized variable stats. [orabug 14051367]\n- [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763]\n- [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272]\n- [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075]\n- fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan)\n- [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan)\n- [x86] Fix lvt0 reset when hvm boot up with noapic param\n- [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason)\n [orabug 12342275]\n- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346]\n- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566]\n- [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042]\n- [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646]\n- fix filp_close() race (Joe Jin) [orabug 10335998]\n- make xenkbd.abs_pointer=1 by default [orabug 67188919]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki)\n [orabug 10315433]\n- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]\n- [mm] Patch shrink_zone to yield during severe mempressure events, avoiding\n hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839]\n- [mm] Enhance shrink_zone patch allow full swap utilization, and also be\n NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)\n [orabug 9107465]\n- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)\n [orabug 9764220]\n- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]\n- fix overcommit memory to use percpu_counter for (KOSAKI Motohiro,\n Guru Anbalagane) [orabug 6124033]\n- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]\n- [ib] fix memory corruption (Andy Grover) [orabug 9972346]\n- [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203]\n- [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203]\n- [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203]", "edition": 4, "reporter": "Oracle", "published": "2013-10-22T00:00:00", "title": "1 ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4345", "CVE-2013-4368", "CVE-2013-0343", "CVE-2013-4299"], "modified": "2013-10-22T00:00:00", "id": "ELSA-2013-1449-1", "href": "http://linux.oracle.com/errata/ELSA-2013-1449-1.html", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:40:11", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.16.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.16.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.16.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-348.16.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-348.16.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.16.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.16.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.16.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-348.16.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.16.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.16.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-348.16.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-348.16.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-348.16.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-348.16.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.16.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.16.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.16.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-348.16.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-348.16.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.16.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.16.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-348.16.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.16.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.16.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.16.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.16.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-348.16.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-348.16.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.16.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.16.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.16.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-348.16.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.16.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.16.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.16.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-348.16.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-348.16.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.16.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-348.16.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-348.16.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.16.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.16.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-348.16.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.16.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-348.16.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-348.16.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-348.16.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-348.16.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.16.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-348.16.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.16.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.16.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.16.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.16.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.16.1.el5PAE", "operator": "lt"}], "description": "kernel\n[2.6.18-348.16.1]\n- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244]\n- [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053]\n- [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783]\n- [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531]\n- [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531]\n- [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]\n[2.6.18-348.15.1]\n- [fs] nfs: flush cached dir information slightly more readily (Scott Mayhew) [976441 853145]\n- [fs] nfs: Fix resolution prob with cache_change_attribute (Scott Mayhew) [976441 853145]\n- [fs] nfs: define function to update nfsi->cache_change_attribute (Scott Mayhew) [976441 853145]\n- [net] af_key: fix info leaks in notify messages (Jiri Benc) [980999 981000] {CVE-2013-2234}\n- [net] af_key: initialize satype in key_notify_policy_flush() (Jiri Benc) [981222 981224] {CVE-2013-2237}\n- [net] ipv6: ip6_sk_dst_check() must not assume ipv6 dst (Jiri Pirko) [981556 981557] {CVE-2013-2232}\n- [net] fix invalid free in ip_cmsg_send() callers (Petr Matousek) [980141 980142] {CVE-2013-2224}\n- [x86_64] Early segment setup for VT (Paolo Bonzini) [979920 978305]\n- [block] cpqarray: info leak in ida_locked_ioctl() (Tomas Henzl) [971245 971246] {CVE-2013-2147}\n- [block] cdrom: use kzalloc() for failing hardware (Frantisek Hrbata) [973103 973104] {CVE-2013-2164}\n- [mm] Break out when there is nothing more to write for the fs. (Larry Woodman) [972583 965359]\n[2.6.18-348.14.1]\n- [net] Fix panic for vlan over gre via tun (Thomas Graf) [983452 981337]\n- [x86] mm: introduce proper mem barriers smp_invalidate_interrupt (Rafael Aquini) [983628 865095]\n[2.6.18-348.13.1]\n- [net] sctp: Disallow new connection on a closing socket (Daniel Borkmann) [976569 974936] {CVE-2013-2206}\n- [net] sctp: Use correct sideffect command in dup cookie handling (Daniel Borkmann) [976569 974936] {CVE-2013-2206}\n- [net] sctp: deal with multiple COOKIE_ECHO chunks (Daniel Borkmann) [976569 974936] {CVE-2013-2206}\n- [net] tcp: bind() use stronger condition for bind_conflict (Flavio Leitner) [980811 957604]", "edition": 3, "reporter": "Oracle", "published": "2013-08-21T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2234", "CVE-2013-2206", "CVE-2013-2147", "CVE-2013-2232", "CVE-2013-2237", "CVE-2013-2224", "CVE-2013-2164"], "modified": "2013-08-21T00:00:00", "id": "ELSA-2013-1166", "href": "http://linux.oracle.com/errata/ELSA-2013-1166.html", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:38:51", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "perf-2.6.32-431.el6.x86_64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-debug-2.6.32-431.el6.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-headers-2.6.32-431.el6.i686.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "src", "packageFilename": "kernel-2.6.32-431.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "src", "packageFilename": "kernel-2.6.32-431.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-devel-2.6.32-431.el6.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "python-perf-2.6.32-431.el6.x86_64.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-2.6.32-431.el6.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-abi-whitelists-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-abi-whitelists", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-abi-whitelists-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-abi-whitelists", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "python-perf-2.6.32-431.el6.i686.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "perf-2.6.32-431.el6.i686.rpm", "packageName": "perf", "operator": "lt"}], "description": "[2.6.32-431] \r\n- [md] Disabling of TRIM on RAID5 for RHEL6.5 was too aggressive (Jes Sorensen) [1028426] \r\n \n[2.6.32-430] \r\n- [x86] Revert 'efi: be more paranoid about available space when creating variables' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efivars: firmware bug workarounds should be in platform code' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Export efi_query_variable_store() for efivars.ko' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Check max_size only if it is non-zero' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Distinguish between 'remaining space' and actually used space' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Implement efi_no_storage_paranoia parameter' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'Modify UEFI anti-bricking code' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Fix dummy variable buffer allocation' (Rafael Aquini) [1012370 1023173] \r\n \n[2.6.32-429] \r\n- [fs] revert xfs: prevent deadlock trying to cover an active log (Eric Sandeen) [1014867] \r\n \n[2.6.32-428] \r\n- [fs] Revert 'vfs: allow umount to handle mountpoints without revalidating them' (Rafael Aquini) [1024607] \r\n- [fs] Revert 'vfs: massage umount_lookup_last() a bit to reduce nesting' (Rafael Aquini) [1024607] \r\n- [fs] Revert 'vfs: rename user_path_umountat() to user_path_mountpoint_at()' (Rafael Aquini) [1024607] \r\n- [fs] Revert 'vfs: introduce kern_path_mountpoint()' (Rafael Aquini) [1024607] \r\n- [fs] Revert 'autofs4: fix device ioctl mount lookup' (Rafael Aquini) [1024607] \r\n \n[2.6.32-427] \r\n- [tools] perf: Add ref-cycles into array of tested events (Jiri Olsa) [968806] \r\n- [pci] Revert 'make SRIOV resources optional' (Myron Stowe) [1022270] \r\n- [pci] Revert 'ability to relocate assigned pci-resources' (Myron Stowe) [1022270] \r\n- [pci] Revert 'honor child buses add_size in hot plug configuration' (Myron Stowe) [1022270] \r\n- [pci] Revert 'make cardbus-bridge resources optional' (Myron Stowe) [1022270] \r\n- [pci] Revert 'code and comments cleanup' (Myron Stowe) [1022270] \r\n- [pci] Revert 'make re-allocation try harder by reassigning ranges higher in the heirarchy' (Myron Stowe) [1022270] \r\n- [pci] Revert 'Calculate right add_size' (Myron Stowe) [1022270] \r\n \n[2.6.32-426] \r\n- [block] loop: unplug_fn only when backing file is attached (Lukas Czerner) [1022997] \r\n- [fs] ext4: Remove warning from ext4_da_update_reserve_space() (Lukas Czerner) [1011876] \r\n- [kernel] async: Revert MAX_THREADS to 256 (Neil Horman) [1021705] \r\n- [net] ipv6: restrict neighbor entry creation to output flow (Jiri Pirko) [997103] \r\n- [net] ipv6: udp packets following an UFO enqueued packet need also be handled by UFO (Jiri Pirko) [1011930] {CVE-2013-4387} \r\n- [net] ipv4: blackhole route should always be recalculated (Herbert Xu) [1010347] \r\n- [net] unix: revert/fix race in stream sockets with SOCK_PASS* flags (Daniel Borkmann) [1019343] \r\n- [net] Loosen constraints for recalculating checksum in skb_segment() (Vlad Yasevich) [1020298] \r\n- [drm] nouveau: fix vblank deadlock (Rob Clark) [1013388] \r\n- [usb] xhci: refactor EHCI/xHCI port switching (Don Zickus) [970715] \r\n- [fs] compat_ioctl: VIDEO_SET_SPU_PALETTE missing error check (Phillip Lougher) [949573] {CVE-2013-1928} \r\n- [fs] vfs: fix d_mountpoint() (Ian Kent) [1011337] \r\n- [fs] autofs4: fix device ioctl mount lookup (Ian Kent) [999708] \r\n- [fs] vfs: introduce kern_path_mountpoint() (Ian Kent) [999708] \r\n- [fs] vfs: rename user_path_umountat() to user_path_mountpoint_at() (Ian Kent) [999708] \r\n- [fs] vfs: massage umount_lookup_last() a bit to reduce nesting (Ian Kent) [999708] \r\n- [fs] vfs: allow umount to handle mountpoints without revalidating them (Ian Kent) [999708] \r\n- [fs] nfs: Remove the 'FIFO' behaviour for nfs41_setup_sequence (Steve Dickson) [1022257] \r\n- [fs] nfs: Record the OPEN create mode used in the nfs4_opendata structure (Steve Dickson) [1019439] \r\n- [fs] nfs: Simulate the change attribute (Steve Dickson) [1018653] \r\n- [scsi] megaraid_sas: Fix synchronization problem between sysPD IO path and AEN path (Tomas Henzl) [1019811] \r\n \n[2.6.32-425] \r\n- [md] dm-snapshot: fix data corruption (Mikulas Patocka) [974481] {CVE-2013-4299} \r\n- [watchdog] iTCO_wdt: add platform driver module alias (Neil Horman) [1019497] \r\n- [hda] alsa: disable 44.1kHz rate for Haswell HDMI/DP audio (Jaroslav Kysela) [831970] \r\n- [x86] Update UV3 hub revision ID (George Beshers) [1018962] \r\n- [fs] xfs: Don't reference the EFI after it is freed (Eric Sandeen) [1018469] \r\n- [security] keys: Fix a race between negating a key and reading the error set (Dave Wysochanski) [890231] \r\n- [fs] nfsv4: Ensure memory ordering between nfs4_ds_connect and nfs4_fl_prepare_ds (Jeff Layton) [1012439] \r\n- [fs] nfsv4: nfs4_fl_prepare_ds - fix bugs when the connect attempt fails (Jeff Layton) [1012439] \r\n- [md] Disable TRIM on RAID5 for RHEL 6.5 (Jes Sorensen) [837097] \r\n- [md] raid5: BIO_RW_SYNCIO is a bit number, not a bitmask (Jes Sorensen) [837097] \r\n- [virt] hyperv: framebuffer pci stub (Gerd Hoffmann) [1013335] \r\n- [netdrv] bnx2x: add missing enum channel_tlvs definitions (Michal Schmidt) [1015137] \r\n- [netdrv] bnx2x: KR2 disablement fix (Michal Schmidt) [1015137] \r\n- [netdrv] bnx2x: Specific Active-DAC is not detected on 57810 (Michal Schmidt) [1015137] \r\n- [netdrv] bnx2x: Generalize KR work-around (Michal Schmidt) [1015137] \r\n- [usb] usbnet: use ethd name for known ethernet devices (Don Zickus) [1014224] \r\n- [usb] cdc_ether: use ethd name for known ethernet devices (Don Zickus) [1014224] \r\n- [mm] Revert 'Find_early_table_space based on ranges that are actually being mapped' (Rafael Aquini) \r\n- [mm] Revert 'Exclude E820_RESERVED regions and memory holes above 4 GB from direct mapping' (Rafael Aquini) \r\n- [mm] Revert 'Group e820 entries together and add map_individual_e820 boot option' (Rafael Aquini) \r\n- [net] bridge: update mdb expiration timer upon reports (Vlad Yasevich) [1013816] \r\n- [net] veth: Remove NETIF_F_HW_VLAN_RX capability (Thomas Graf) [1018158] \r\n- [net] gre/vxlan: handle 802.1Q inner header properly (Thomas Graf) [997632] \r\n- [net] disable the new NAPI weight error message for RHEL 6.5 (Michal Schmidt) [1012090] \r\n- [scsi] sd: Fix parsing of 'temporary ' cache mode prefix (Ewan Milne) [955441] \r\n- [scsi] sd: fix array cache flushing bug causing performance problems (Ewan Milne) [955441] \r\n- [scsi] bfa: firmware update to 3.2.1.1 (Rob Evers) [1002770] \r\n- [netdrv] bna: firmware update to 3.2.1.1 (Ivan Vecera) [1002771] \r\n \n[2.6.32-424] \r\n- [block] loop: fix crash when using unassigned loop device (Mike Snitzer) [989795] \r\n- [fs] xfs: prevent deadlock trying to cover an active log (Dave Chinner) [1014867] \r\n- [x86] microcode: Fix patch level reporting for AMD family 15h (Prarit Bhargava) [1014401] \r\n- [hda] alsa: enable switcheroo code in the snd-hda-intel driver (Jaroslav Kysela) [1013993] \r\n- [x86] reboot: Fix a warning message triggered by stop_other_cpus() (Jerome Marchand) [840710] \r\n- [kernel] async: Bump up the MAX_THREADS count for the async subsystem (Neil Horman) [1010666] \r\n- [pci] Calculate right add_size (Myron Stowe) [997672] \r\n- [netdrv] iwlwifi: pcie: add SKUs for 6000, 6005 and 6235 series (Stanislaw Gruszka) [1013951] \r\n- [netdrv] iwlwifi: pcie: add new SKUs for 7000 & 3160 NIC series (Stanislaw Gruszka) [1013951] \r\n- [netdrv] iwlwifi: enable shadow registers for 7000 (Stanislaw Gruszka) [1013951] \r\n- [netdrv] iwlwifi: add new 7260 and 3160 series device IDs (Stanislaw Gruszka) [1013951] \r\n- [netdrv] be2net: pass if_id for v1 and V2 versions of TX_CREATE cmd (Ivan Vecera) [1014360] \r\n- [netdrv] be2net: call ENABLE_VF cmd for Skyhawk-R too (Ivan Vecera) [1014360] \r\n- [netdrv] be2net: Fix to prevent Tx stall on SH-R when packet size < 32 (Ivan Vecera) [1014360] \r\n- [scsi] pm8001: Queue rotation logic for inbound and outbound queues (Rich Bono) [1013771] \r\n- [scsi] lpfc: Update lpfc version for 8.3.7.21.4p driver release (Rob Evers) [1004841] \r\n- [scsi] lpfc: Fixed spinlock hang (Rob Evers) [1004841] \r\n- [scsi] lpfc: Fixed spinlock inversion problem (Rob Evers) [1004841] \r\n- [scsi] lpfc: Fixed inconsistent spin lock useage (Rob Evers) [1004841] \r\n- [scsi] qla2xxx: Update version number to 8.05.00.03.06.5-k2 (Chad Dupuis) [912652] \r\n- [scsi] qla2xxx: Fix request queue null dereference (Chad Dupuis) [912652] \r\n- [net] tcp: TSQ can use a dynamic limit (Jiri Pirko) [996802] \r\n- [net] tcp: TSO packets automatic sizing (Jiri Pirko) [996802] \r\n- [net] tcp: Apply device TSO segment limit earlier (Jiri Pirko) [996802] \r\n- [net] Allow driver to limit number of GSO segments per skb (Jiri Pirko) [996802] \r\n- [net] cleanups in RX queue allocation (Ivan Vecera) [1012388] \r\n- [net] Update kernel-doc for netif_set_real_num_rx_queues() (Ivan Vecera) [1012388] \r\n- [net] netif_set_real_num_rx_queues may cap num_rx_queues at init time (Ivan Vecera) [1012388] \r\n \n[2.6.32-423] \r\n- [kvm] pmu: add proper support for fixed counter 2 (Gleb Natapov) [1000956] \r\n- [kvm] vmx: do not check bit 12 of EPT violation exit qualification when undefined (Gleb Natapov) [1006139] \r\n- [kvm] vmx: set 'blocked by NMI' flag if EPT violation happens during IRET from NMI (Gleb Natapov) [1006139] \r\n- [edac] Fix workqueue-related crashes (Aristeu Rozanski) [831127] \r\n- [edac] amd64_edac: Fix driver module removal (Aristeu Rozanski) [831127] \r\n- [md] raid5: BIO flags adjust (Jes Sorensen) [837097] \r\n- [md] Fix skipping recovery for read-only arrays (Jes Sorensen) [1014102] \r\n- [kernel] audit: fix mq_open and mq_unlink to add the MQ root as a hidden parent audit_names record (Richard Guy Briggs) [1009386] \r\n- [kernel] audit: log the audit_names record type (Richard Guy Briggs) [1009386] \r\n- [kernel] audit: add child record before the create to handle case where create fails (Richard Guy Briggs) [1009386] \r\n- [kernel] audit: format user messages to size of MAX_AUDIT_MESSAGE_LENGTH (Richard Guy Briggs) [1007069] \r\n- [netdrv] tg3: Expand led off fix to include 5720 (Ivan Vecera) [991498] \r\n- [netdrv] tg3: Don't turn off led on 5719 serdes port 0 (Ivan Vecera) [991498] \r\n- [netdrv] tg3: Don't turn off led on 5719 serdes port 0 (Ivan Vecera) [991498] \r\n- [netdrv] tg3: Fix UDP fragments treated as RMCP (Ivan Vecera) [991498] \r\n- [netdrv] tg3: Remove incorrect switch to aux power (Ivan Vecera) [991498] \r\n- [i2c] ismt: initialize DMA buffer (Neil Horman) [1014753] \r\n- [scsi] libfcoe: Make fcoe_sysfs optional / fix fnic NULL exception (Neil Horman) [1014864] \r\n- [fs] gfs2: Fix race in iteration of glocks for unfreeze/umount (Abhijith Das) [999909] \r\n- [fs] gfs2: dirty inode correctly in gfs2_write_end (Benjamin Marzinski) [991596] \r\n- [x86] Mark Intel Atom Avoton processor as supported (Prarit Bhargava) [914842] \r\n- [mm] vmscan: fix zone shrinking exit when scan work is done (David Gibson) [985155] \r\n- [block] free bios when failing blk_execute_rq_nowait calls (Jeff Moyer) [1009312] \r\n- [netdrv] be2net: fix disabling TX in be_close() (Ivan Vecera) [951271] \r\n- [crypto] Fix race condition in larval lookup (Herbert Xu) [916361] \r\n \n[2.6.32-422] \r\n- [fs] fuse: drop dentry on failed revalidate (Brian Foster) [924014] \r\n- [fs] fuse: clean up return in fuse_dentry_revalidate() (Brian Foster) [924014] \r\n- [fs] fuse: use d_materialise_unique() (Brian Foster) [924014] \r\n- [mm] Group e820 entries together and add map_individual_e820 boot option (Larry Woodman) [876275] \r\n- [mm] Exclude E820_RESERVED regions and memory holes above 4 GB from direct mapping (Larry Woodman) [876275] \r\n- [mm] Find_early_table_space based on ranges that are actually being mapped (Larry Woodman) [876275] \r\n- [hid] pantherlord: heap overflow flaw (Radomir Vrbovsky) [1000435] {CVE-2013-2892} \r\n- [virt] hv: Correctly support ws2008R2 and earlier (Jason Wang) [1007341] \r\n- [powerpc] iommu: Use GFP_KERNEL instead of GFP_ATOMIC in iommu_init_table() (Steve Best) [1012666] \r\n- [powerpc] Add isync to copy_and_flush (Steve Best) [1014475] \r\n- [block] rsxx: Kernel Panic caused by mapping Discards (Steve Best) [1013728] \r\n- [kernel] audit: avoid soft lockup due to audit_log_start() incorrect loop termination (Richard Guy Briggs) [990806] \r\n- [fs] nfsv4: R e m o v e t h e B U G _ O N ( ) f r o m n f s 4 _ g e t _ l e a s e _ t i m e _ p r e p a r e ( ) ( S t e v e D i c k s o n ) [ 1 0 1 2 6 8 8 ] \r b r > - [ n e t d r v ] b n x 2 x : f i x l o s s o f V L A N p r i o r i t y i n f o r m a t i o n i n r e c e i v e d T P A - a g g r e g a t e d p a c k e t s ( M i c h a l S c h m i d t ) [ 1 0 1 4 6 9 4 ] \r b r > - [ f s ] g f s 2 : g a r b a g e q u o t a u s a g e r e p o r t e d d u e t o u n i n i t i a l i z e d i n o d e d u r i n g c r e a t i o n ( A b h i j i t h D a s ) [ 1 0 0 8 9 4 7 ] \r b r > - [ f s ] n f s : f i x f i l e l a y o u t _ c o m m i t _ c a l l _ o p s ( S c o t t M a y h e w ) [ 1 0 1 2 4 7 9 ] \r b r > - [ n e t d r v ] i g b : f i x d r i v e r r e l o a d w i t h V F a s s i g n e d t o g u e s t ( S t e f a n A s s m a n n ) [ 9 8 5 7 3 3 ] \r b r > - [ m d ] F i x b i o f l a g s f o r m d r a i d 5 ( J e s S o r e n s e n ) [ 8 3 7 0 9 7 ] \r b r > - [ m d ] F i x b i o f l a g s f o r m d r a i d 1 0 ( J e s S o r e n s e n ) [ 8 3 7 0 9 7 ] \r b r > - [ s c s i ] q l a 4 x x x : 5 . 0 3 . 0 0 . 0 0 . 0 6 . 0 5 - k 3 ( C h a d D u p u i s ) [ 1 0 1 1 4 7 6 ] \r b r > - [ s c s i ] q l a 4 x x x : S u p p o r t s e t t i n g o f l o c a l C H A P i n d e x f o r f l a s h t a r g e t e n t r y ( C h a d D u p u i s ) [ 1 0 1 1 4 7 6 ] \r b r > - [ s c s i ] q l a 4 x x x : C o r r e c t t h e c h e c k f o r l o c a l C H A P e n t r y t y p e ( C h a d D u p u i s ) [ 1 0 1 1 4 7 6 ] \r b r > - [ s c s i ] l p f c : U p d a t e l p f c v e r s i o n f o r 8 . 3 . 7 . 2 1 . 3 p d r i v e r r e l e a s e ( R o b E v e r s ) [ 1 0 1 2 9 6 1 ] \r b r > - [ s c s i ] l p f c : F i x e d f u n c t i o n m o d e f i e l d d e f i n e d t o o s m a l l f o r n o t r e c o g n i z i n g d u a l - c h u t e m o d e ( R o b E v e r s ) [ 1 0 1 2 9 6 1 ] \r b r > - [ n e t ] R e v e r t ' n e t : m o r e a c c u r a t e s k b t r u e s i z e ' ( F r a n c e s c o F u s c o ) [ 8 8 9 1 8 1 ] \r b r > - [ n e t ] f i x m u l t i q u e u e s e l e c t i o n ( M i c h a l S c h m i d t ) [ 1 0 1 1 9 3 9 ] \r b r > \r b r > [ 2 . 6 . 3 2 - 4 2 1 ] \r b r > - [ s c s i ] b n x 2 f c : B u m p v e r s i o n f r o m 1 . 0 . 1 4 t o 2 . 4 . 1 ( T o m a s H e n z l ) [ 1 0 0 8 7 3 3 ] \r b r > - [ s c s i ] b n x 2 f c : h u n g t a s k t i m e o u t w a r n i n g o b s e r v e d w h e n r m m o d b n x 2 x w i t h a c t i v e F C o E t a r g e t s ( T o m a s H e n z l ) [ 1 0 0 8 7 3 3 ] \r b r > - [ s c s i ] b n x 2 f c : F i x e d a S C S I C M D c m p l r a c e c o n d i t i o n b e t w e e n A B T S a n d C L E A N U P ( T o m a s H e n z l ) [ 1 0 0 8 7 3 3 ] \r b r > - [ s c s i ] c n i c : F i x c r a s h i n , c n i c _ b n x 2 x _ s e r v i c e _ k c q ( ) ( T o m a s H e n z l ) [ 1 0 0 4 5 5 4 ] \r b r > - [ h i d ] z e r o p l u s : v a l i d a t e o u t p u t r e p o r t d e t a i l s ( F r a n t i s e k H r b a t a ) [ 9 9 9 9 0 6 ] { C V E - 2 0 1 3 - 2 8 8 9 } \r b r > - [ h i d ] p r o v i d e a h e l p e r f o r v a l i d a t i n g h i d r e p o r t s ( F r a n t i s e k H r b a t a ) [ 9 9 9 9 0 6 ] { C V E - 2 0 1 3 - 2 8 8 9 } \r b r > - [ n e t d r v ] s f c : A d d S I O C E F X : E F X _ M C D I _ R E Q U E S T i o c t l t o w o r k a r o u n d M T D l i m i t s ( N i k o l a y A l e k s a n d r o v ) [ 1 0 0 8 7 0 5 ] \r b r > - [ n e t d r v ] s f c : d e n y c h a n g i n g o f u n s u p p o r t e d f l a g s ( N i k o l a y A l e k s a n d r o v ) [ 1 0 1 0 8 4 0 ] \r b r > - [ k e r n e l ] _ _ p t r a c e _ m a y _ a c c e s s ( ) s h o u l d n o t d e n y s u b - t h r e a d s ( O l e g N e s t e r o v ) [ 9 2 7 3 6 0 ] \r b r > - [ t o o l s ] p e r f : M a k e k m e m w o r k f o r n o n n u m a m a c h i n e s ( J i r i O l s a ) [ 9 8 4 7 8 8 ] \r b r > - [ p o w e r p c ] B r i n g a l l t h r e a d s o n l i n e p r i o r t o m i g r a t i o n / h i b e r n a t i o n ( S t e v e B e s t ) [ 1 0 1 0 5 2 8 ] \r b r > - [ k v m ] i n t r o d u c e g u e s t c o u n t u e v e n t ( P a o l o B o n z i n i ) [ 1 0 0 4 8 0 2 ] \r b r > - [ s c s i ] i s c s i _ t c p : c o n s i d e r s e s s i o n s t a t e i n i s c s i _ s w _ s k _ s t a t e _ c h e c k ( C h r i s L e e c h ) [ 8 4 0 6 3 8 ] \r b r > - [ c r y p t o ] a n s i _ c p r n g : F i x o f f b y o n e e r r o r i n n o n - b l o c k s i z e r e q u e s t ( N e i l H o r m a n ) [ 1 0 0 7 6 9 4 ] { C V E - 2 0 1 3 - 4 3 4 5 } \r b r > - [ i n f i n i b a n d ] c a c h e : d o n ' t f i l l t h e c a c h e w i t h j u n k ( D o u g L e d f o r d ) [ 9 2 0 3 0 6 ] \r b r > - [ u s b ] c o r e : d o n ' t t r y t o r e s e t _ d e v i c e ( ) a p o r t t h a t g o t j u s t d i s c o n n e c t e d ( D o n Z i c k u s ) [ 1 0 0 0 9 4 4 ] \r b r > - [ u s b ] F i x c o n n e c t e d d e v i c e s w i t c h t o I n a c t i v e s t a t e ( D o n Z i c k u s ) [ 1 0 0 0 9 4 4 ] \r b r > - [ u s b ] D o n ' t u s e E H C I p o r t s e m p a h o r e f o r U S B 3 . 0 h u b s ( D o n Z i c k u s ) [ 1 0 0 0 9 4 4 ] \r b r > - [ n e t d r v ] m a c v t a p : I g n o r e t a p f e a t u r e s w h e n V N E T _ H D R i s o f f ( V l a d Y a s e v i c h ) [ 9 8 7 2 0 1 ] \r b r > - [ n e t d r v ] m a c v t a p : C o r r e c t l y s e t t a p f e a t u r e s w h e n I F F _ V N E T _ H D R i s d i s a b l e d ( V l a d Y a s e v i c h ) [ 9 8 7 2 0 1 ] \r b r > - [ n e t d r v ] m a c v t a p : s i m p l i f y u s a g e o f t a p _ f e a t u r e s ( V l a d Y a s e v i c h ) [ 9 8 7 2 0 1 ] \r b r > - [ i n f i n i b a n d ] m l x 4 : U s e d e f a u l t p k e y w h e n c r e a t i n g t u n n e l Q P s ( D o u g L e d f o r d ) [ 9 9 3 5 8 7 ] \r b r > - [ i n f i n i b a n d ] c o r e : C r e a t e Q P 1 u s i n g t h e p k e y i n d e x w h i c h c o n t a i n s t h e d e f a u l t p k e y ( D o u g L e d f o r d ) [ 9 9 3 5 8 7 ] \r b r > - [ i n f i n i b a n d ] i p o i b : M a k e s u r e c h i l d d e v i c e s u s e v a l i d / p r o p e r p k e y s ( D o u g L e d f o r d ) [ 9 9 3 5 8 7 ] \r b r > - [ i n f i n i b a n d ] i p o i b : F i x p k e y c h a n g e f l o w f o r v i r t u a l i z a t i o n e n v i r o n m e n t s ( D o u g L e d f o r d ) [ 9 9 3 5 8 7 ] \r b r > - [ n e t d r v ] i g b : d o n ' t d e p r e c a t e t h e m a x _ v f s p a r a m e t e r ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e a d f l o w c o n t r o l f o r i 3 5 0 f r o m c o r r e c t E E P R O M s e c t i o n ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : A d d a d d i t i o n a l g e t _ p h y _ i d c a l l f o r i 3 5 4 d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : U p d a t e v e r s i o n n u m b e r ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : I m p l e m e n t a t i o n t o r e p o r t a d v e r t i s e d / s u p p o r t e d l i n k o n i 3 5 4 d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : G e t s p e e d a n d d u p l e x f o r 1 G n o n _ c o p p e r d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : S u p p o r t t o g e t 2 _ 5 G l i n k s t a t u s f o r a p p r o p r i a t e m e d i a t y p e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : N o P H P M s u p p o r t i n i 3 5 4 d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : M 8 8 E 1 5 4 3 P H Y d o w n s h i f t i m p l e m e n t a t i o n ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : N e w P H Y _ I D f o r i 3 5 4 d e v i c e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : I m p l e m e n t a t i o n o f 1 - s e c d e l a y f o r i 2 1 0 d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : D o n ' t l o o k f o r a P B A i n t h e i N V M w h e n f l a s h l e s s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : E x p o s e R S S i n d i r e c t i o n t a b l e f o r e t h t o o l ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : A d d m a c r o f o r s i z e o f R E T A i n d i r e c t i o n t a b l e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : F i x g e t _ f w _ v e r s i o n f u n c t i o n f o r a l l p a r t s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : A d d d e v i c e s u p p o r t f o r f l a s h l e s s S K U o f i 2 1 0 d e v i c e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e f a c t o r N V M r e a d f u n c t i o n s t o a c c o m m o d a t e d e v i c e s w i t h n o f l a s h ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e f a c t o r o f i n i t _ n v m _ p a r a m s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : U p d a t e M T U s o t h a t i t i s a l w a y s a t l e a s t a s t a n d a r d f r a m e s i z e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : d o n ' t a l l o w S R - I O V w i t h o u t M S I - X ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : A d d e d r c u _ l o c k t o a v o i d r a c e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e a d r e g i s t e r f o r l a t c h _ o n w i t h o u t r e t u r n v a l u e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e s e t t h e l i n k w h e n E E E s e t t i n g c h a n g e d ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] t r e e w i d e : r e l a s e - > r e l e a s e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ s c s i ] i t e r a t e o v e r d e v i c e s i n d i v i d u a l l y f o r / p r o c / s c s i / s c s i ( D a v i d M i l b u r n ) [ 9 6 6 1 7 0 ] \r b r > - [ s c s i ] z f c p : f i x l o c k i m b a l a n c e b y r e w o r k i n g r e q u e s t q u e u e l o c k i n g ( M i k u l a s P a t o c k a ) [ 8 0 3 5 9 2 ] \r b r > - [ k e r n e l ] p i d n s : f i x t w o i n v a l i d t a s k _ a c t i v e _ p i d _ n s ( ) u s a g e s ( A r i s t e u R o z a n s k i ) [ 9 8 4 5 9 7 ] \r b r > - [ n e t d r v ] b e 2 n e t : i m p l e m e n t e t h t o o l s e t / g e t _ c h a n n e l h o o k s ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : r e f a c t o r b e _ s e t u p ( ) t o c o n s o l i d a t e q u e u e c r e a t i o n r o u t i n e s ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : F i x b e _ c m d _ i f _ c r e a t e ( ) t o u s e M B O X i f M C C Q i s n o t c r e a t e d ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : r e f a c t o r b e _ g e t _ r e s o u r c e s ( ) c o d e ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : d o n ' t l i m i t m a x M A C a n d V L A N c o u n t s ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : F i x u p p r o f i l e m a n a g e m e n t r o u t i n e s ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : u s e E Q _ C R E A T E v 2 f o r S H - R ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : d e l e t e p r i m a r y M A C a d d r e s s w h i l e u n l o a d i n g ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : u s e S E T / G E T _ M A C _ L I S T f o r S H - R ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : r e f a c t o r M A C - a d d r s e t u p c o d e ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : f i x p m a c _ i d f o r B E 3 V F s ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : a l l o w V F s t o p r o g r a m M A C a n d V L A N f i l t e r s ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : f i x M A C a d d r e s s m o d i f i c a t i o n f o r V F ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : d o n ' t u s e d e v _ e r r w h e n A E R e n a b l i n g f a i l s ( I v a n V e c e r a ) [ 9 8 6 5 1 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : C l e a r a n y c a p a b i l i t y f l a g s t h a t d r i v e r i s n o t i n t e r e s t e d i n ( I v a n V e c e r a ) [ 9 9 8 8 5 6 ] \r b r > - [ n e t ] e t h t o o l : f i x R H E L b a c k p o r t o f E T H T O O L _ R E S E T ( J i r i B e n c ) [ 1 0 0 8 6 7 8 ] \r b r > - [ n e t ] g a c t : F i x p o t e n t i a l p a n i c i n t c f _ g a c t ( ) ( J i r i B e n c ) [ 1 0 0 3 7 8 1 ] \r b r > - [ n e t ] t c p : f i x F I O N R E A D / S I O C I N Q ( F r a n c e s c o F u s c o ) [ 1 0 0 1 4 7 9 ] \r b r > - [ n e t ] v x l a n : A v o i d c r e a t i n g f d b e n t r y w i t h N U L L d e s t i n a t i o n ( A m e r i g o W a n g ) [ 9 2 3 9 1 5 ] \r b r > - [ n e t ] b r i d g e : s y n c t h e d e f i n i t i o n o f s t r u c t b r _ m d b _ e n t r y w i t h u p s t r e a m ( A m e r i g o W a n g ) [ 1 0 1 0 2 5 1 ] \r b r > - [ f s ] p r o c / n s : F i x A B I o f p r o c _ i n o d e ( T h o m a s G r a f ) [ 1 0 0 5 2 2 4 ] \r b r > - [ f s ] n f s : F i x w r i t e b a c k p e r f o r m a n c e i s s u e o n c a c h e i n v a l i d a t i o n ( S c o t t M a y h e w ) [ 1 0 1 0 0 3 8 ] \r b r > - [ f s ] x f s : s w i t c h s t a c k s f o r b m a p b t r e e m o d i f i c a t i o n s ( D a v e C h i n n e r ) [ 9 1 8 3 5 9 ] \r b r > - [ f s ] G F S 2 : D o n t f l a g c o n s i s t e n c y e r r o r i f f i r s t m o u n t e r i s a s p e c t a t o r ( R o b e r t S P e t e r s o n ) [ 9 9 7 9 2 9 ] \r b r > - [ x 8 6 ] M a r k I n t e l H a s w e l l - E P a s s u p p o r t e d ( P r a r i t B h a r g a v a ) [ 9 4 8 3 3 9 ] \r b r > - [ s 3 9 0 ] t x : a l l o w p r o g r a m i n t e r r u p t i o n f i l t e r i n g i n u s e r s p a c e ( H e n d r i k B r u e c k n e r ) [ 1 0 0 6 5 2 3 ] \r b r > - [ t t y ] h v c _ i u c v : D i s c o n n e c t I U C V c o n n e c t i o n w h e n l o w e r i n g D T R ( H e n d r i k B r u e c k n e r ) [ 1 0 0 7 5 7 0 ] \r b r > - [ t t y ] h v c _ c o n s o l e : A d d D T R / R T S c a l l b a c k t o h a n d l e H U P C L c o n t r o l ( H e n d r i k B r u e c k n e r ) [ 1 0 0 7 5 7 0 ] \r b r > - [ n e t d r v ] b o n d i n g : f i x b o n d _ a r p _ r c v s e t t i n g a n d a r p v a l i d a t e d e s y n c s t a t e ( N i k o l a y A l e k s a n d r o v ) [ 1 0 0 3 6 9 7 ] \r b r > - [ n e t d r v ] b o n d i n g : f i x s t o r e _ a r p _ v a l i d a t e r a c e w i t h m o d e c h a n g e ( N i k o l a y A l e k s a n d r o v ) [ 1 0 0 3 6 9 7 ] \r b r > - [ n e t d r v ] b o n d i n g : f i x s e t m o d e r a c e c o n d i t i o n s ( N i k o l a y A l e k s a n d r o v ) [ 1 0 0 3 6 9 7 ] \r b r > - [ b l u e t o o t h ] r f c o m m : F i x i n f o l e a k i n R F C O M M G E T D E V L I S T i o c t l ( ) ( R a d o m i r V r b o v s k y ) [ 9 2 2 4 0 9 ] { C V E - 2 0 1 2 - 6 5 4 5 } \r b r > - [ b l u e t o o t h ] r f c o m m : F i x i n f o l e a k v i a g e t s o c k n a m e ( ) ( R a d o m i r V r b o v s k y ) [ 9 2 2 4 0 9 ] { C V E - 2 0 1 2 - 6 5 4 5 } \r b r > - [ m m ] m l o c k : o p e r a t e o n a n y r e g i o n s w i t h p r o t e c t i o n ! = P R O T _ N O N E ( L a r r y W o o d m a n ) [ 9 8 2 4 6 0 ] \r b r > - [ m m ] m l o c k : a v o i d d i r t y i n g p a g e s a n d t r i g g e r i n g w r i t e b a c k ( L a r r y W o o d m a n ) [ 9 8 2 4 6 0 ] / p > \n \n \n b r > h 2 > R e l a t e d C V E s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 2 - 6 5 4 2 . h t m l \" > C V E - 2 0 1 2 - 6 5 4 2 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 1 9 2 9 . h t m l \" > C V E - 2 0 1 3 - 1 9 2 9 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 2 - 6 5 4 5 . h t m l \" > C V E - 2 0 1 2 - 6 5 4 5 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 3 2 3 1 . h t m l \" > C V E - 2 0 1 3 - 3 2 3 1 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 1 6 4 . h t m l \" > C V E - 2 0 1 3 - 2 1 6 4 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 2 3 4 . h t m l \" > C V E - 2 0 1 3 - 2 2 3 4 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 5 1 . h t m l \" > C V E - 2 0 1 3 - 2 8 5 1 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 3 4 3 . h t m l \" > C V E - 2 0 1 3 - 0 3 4 3 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 3 4 5 . h t m l \" > C V E - 2 0 1 3 - 4 3 4 5 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 1 9 2 8 . h t m l \" > C V E - 2 0 1 3 - 1 9 2 8 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 8 8 . h t m l \" > C V E - 2 0 1 3 - 2 8 8 8 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 8 9 . h t m l \" > C V E - 2 0 1 3 - 2 8 8 9 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 9 2 . h t m l \" > C V E - 2 0 1 3 - 2 8 9 2 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 3 8 7 . h t m l \" > C V E - 2 0 1 3 - 4 3 8 7 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 5 9 1 . h t m l \" > C V E - 2 0 1 3 - 4 5 9 1 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 5 9 2 . h t m l \" > C V E - 2 0 1 3 - 4 5 9 2 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n b r > h 2 > U p d a t e d P a c k a g e s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r s t y l e = \" c o l o r : # F F 0 0 0 0 ; \" > t d > b > R e l e a s e / A r c h i t e c t u r e / b > t d > b > F i l e n a m e / b > / t d > t d > b > M D 5 s u m / b > / t d > t d > b > S u p e r s e d e d B y A d v i s o r y / b > / t d > / t r > \n t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( i 3 8 6 ) / t d > t d > k e r n e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . s r c . r p m / t d > t d > b 0 8 1 7 0 5 3 e 2 2 0 b 2 9 9 9 a e 5 b 5 4 0 0 4 3 7 3 1 1 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > 2 3 3 6 c 2 b 3 8 4 a 1 1 c f f 9 8 e 3 d c 1 1 6 4 8 c 0 0 2 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - a b i - w h i t e l i s t s - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > 3 a 4 7 a 1 9 d d e 3 d d 2 1 b c 3 8 5 c b 5 0 c c 9 5 3 3 1 8 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > e a c f e a d 2 9 0 d d 7 7 4 f f 7 4 5 2 4 c d 1 8 b 9 3 b 1 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > a 5 2 0 6 f e 8 9 5 4 7 9 d 9 e 8 5 7 f e 6 c 0 0 5 7 a 7 7 6 a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > d a 0 a 9 0 a 6 7 4 f 8 0 0 7 f 0 0 b 6 6 a 9 f a 1 c a 7 6 8 8 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > c c b 0 1 5 d 4 5 e 5 1 0 b c 9 0 b c 9 8 e e c 1 d 9 1 0 0 3 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - f i r m w a r e - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > 2 b 3 d d 8 e b 7 b 3 5 0 4 3 8 5 1 e 9 c 6 0 4 5 f 1 c b 7 6 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > 7 c 0 a 1 2 2 b 0 5 9 a 3 9 9 d 8 1 a f 6 a f d 0 5 e 3 9 0 3 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p e r f - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > a 5 0 4 4 b e 0 1 6 d 6 f 3 1 e 0 2 1 a d 3 3 a 4 0 3 b 8 7 f f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p y t h o n - p e r f - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > d 2 3 1 4 7 b 8 9 6 5 a d 4 3 1 8 f a 9 0 4 3 f c 5 4 b c 9 6 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( x 8 6 _ 6 4 ) / t d > t d > k e r n e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . s r c . r p m / t d > t d > b 0 8 1 7 0 5 3 e 2 2 0 b 2 9 9 9 a e 5 b 5 4 0 0 4 3 7 3 1 1 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > f 2 3 c 5 b 5 6 3 e 7 4 3 9 f d b 1 6 2 f e 2 9 9 0 9 7 a c f e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - a b i - w h i t e l i s t s - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > 3 a 4 7 a 1 9 d d e 3 d d 2 1 b c 3 8 5 c b 5 0 c c 9 5 3 3 1 8 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > b b d 8 c e f 1 f 3 f 7 5 1 c 6 a 7 1 b 6 a 7 c 9 b 2 3 1 6 5 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 6 1 3 b d 8 a 3 0 1 3 7 e 9 f a d 1 0 d c 3 b d 6 6 d c 5 f a e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 9 5 b a 5 a e c 4 5 8 c 4 f c d e f f b d 3 5 7 d f a e 3 0 d 5 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > c c b 0 1 5 d 4 5 e 5 1 0 b c 9 0 b c 9 8 e e c 1 d 9 1 0 0 3 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - f i r m w a r e - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > 2 b 3 d d 8 e b 7 b 3 5 0 4 3 8 5 1 e 9 c 6 0 4 5 f 1 c b 7 6 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > d a a 8 1 b b a a d f 3 1 a 2 4 b e 7 4 3 a 2 f 5 7 4 7 8 0 1 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p e r f - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 9 e 4 1 8 7 a d 4 a a 8 3 3 b 6 2 f 4 0 5 4 4 f d c 9 a b 5 9 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p y t h o n - p e r f - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 5 d f 1 6 e 0 f 2 c 1 b a a 4 6 a d 0 4 1 3 8 f 7 0 2 8 1 e 2 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n \n b r > b r > \n b r > p > \n T h i s p a g e i s g e n e r a t e d a u t o m a t i c a l l y a n d h a s n o t b e e n c h e c k e d f o r e r r o r s o r o m i s s i o n s . F o r c l a r i f i c a t i o n \n o r c o r r e c t i o n s p l e a s e c o n t a c t t h e a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / \" > O r a c l e L i n u x U L N t e a m / a > / p > \n \n \n \n / d i v > \n ! - - \n / d i v > \n - - > \n / d i v > \n / d i v > \n \n \n d i v i d = \" m c 1 6 \" c l a s s = \" m c 1 6 v 0 \" > \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > T e c h n i c a l i n f o r m a t i o n / h 2 > \n u l > \n l i > a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / h a r d w a r e - c e r t i f i c a t i o n s \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x C e r t i f i e d H a r d w a r e / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / l i b r a r y / e l s p - l i f e t i m e - 0 6 9 3 3 8 . p d f \" > O r a c l e L i n u x S u p p o r t e d R e l e a s e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > O r a c l e L i n u x S u p p o r t / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / t e c h n o l o g i e s / l i n u x / O r a c l e L i n u x S u p p o r t / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x S u p p o r t / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / p r e m i e r / s e r v e r s - s t o r a g e / o v e r v i e w / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e P r e m i e r S u p p o r t f o r S y s t e m s / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / a d v a n c e d - c u s t o m e r - s e r v i c e s / o v e r v i e w / \" > A d v a n c e d C u s t o m e r S e r v i c e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 2 \" > \n h 2 > C o n n e c t / h 2 > \n u l > \n l i c l a s s = \" f b i c o n \" > a h r e f = \" h t t p : / / w w w . f a c e b o o k . c o m / o r a c l e l i n u x \" t i t l e = \" F a c e b o o k \" n a m e = \" F a c e b o o k \" t a r g e t = \" _ b l a n k \" i d = \" F a c e b o o k \" > F a c e b o o k / a > / l i > \n l i c l a s s = \" t w i c o n \" > a h r e f = \" h t t p : / / w w w . t w i t t e r . c o m / O r a c l e L i n u x \" t i t l e = \" T w i t t e r \" n a m e = \" T w i t t e r \" t a r g e t = \" _ b l a n k \" i d = \" T w i t t e r \" > T w i t t e r / a > / l i > \n l i c l a s s = \" i n i c o n \" > a h r e f = \" h t t p : / / w w w . l i n k e d i n . c o m / g r o u p s ? g i d = 1 2 0 2 3 8 \" t i t l e = \" L i n k e d I n \" n a m e = \" L i n k e d I n \" t a r g e t = \" _ b l a n k \" i d = \" L i n k e d I n \" > L i n k e d I n / a > / l i > \n l i c l a s s = \" y t i c o n \" > a h r e f = \" h t t p : / / w w w . y o u t u b e . c o m / o r a c l e l i n u x c h a n n e l \" t i t l e = \" Y o u T u b e \" n a m e = \" Y o u T u b e \" t a r g e t = \" _ b l a n k \" i d = \" Y o u T u b e \" > Y o u T u b e / a > / l i > \n l i c l a s s = \" b l o g i c o n \" > a h r e f = \" h t t p : / / b l o g s . o r a c l e . c o m / l i n u x \" t i t l e = \" B l o g \" n a m e = \" B l o g \" > B l o g / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 3 \" > \n h 2 > C o n t a c t U s / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / c o r p o r a t e / c o n t a c t / g l o b a l - 0 7 0 5 1 1 . h t m l \" > G l o b a l c o n t a c t s / a > / l i > \n l i > O r a c l e 1 - 8 0 0 - 6 3 3 - 0 6 9 1 / l i > \n / u l > \n / d i v > \n / d i v > \n / d i v > \n \n d i v i d = \" m c 0 4 \" c l a s s = \" m c 0 4 v 1 \" > \n d i v c l a s s = \" m c 0 4 w 1 \" > \n a h r e f = \" h t t p : / / o r a c l e . c o m \" > i m g s r c = \" / / w w w . o r a c l e i m g . c o m / a s s e t s / m c 0 4 - f o o t e r - l o g o . p n g \" b o r d e r = \" 0 \" a l t = \" s o f t w a r e . h a r d w a r e . c o m p l e t e \" / > / a > \n / d i v > \n \n d i v c l a s s = \" m c 0 4 w 2 \" > \n a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / s u b s c r i b e / i n d e x . h t m l \" > S u b s c r i b e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / e m p l o y m e n t / i n d e x . h t m l \" > C a r e e r s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / c o n t a c t / i n d e x . h t m l \" > C o n t a c t U s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / c o p y r i g h t . h t m l \" > L e g a l N o t i c e s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / t e r m s . h t m l \" > T e r m s o f U s e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / p r i v a c y . h t m l \" > Y o u r P r i v a c y R i g h t s / a > \n / d i v > \n / d i v > \n / d i v > \n / b o d y > \n / h t m l > \n ", "edition": 4, "reporter": "Oracle", "published": "2013-11-25T00:00:00", "title": "Oracle Linux 6 kernel update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2234", "CVE-2013-4345", "CVE-2013-3231", "CVE-2013-2892", "CVE-2013-4592", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-1929", "CVE-2013-2851", "CVE-2013-4387", "CVE-2013-0343", "CVE-2013-1928", "CVE-2013-2888", "CVE-2013-4299", "CVE-2013-2164", "CVE-2013-2889", "CVE-2013-4591"], "modified": "2013-11-25T00:00:00", "id": "ELSA-2013-1645", "href": "http://linux.oracle.com/errata/ELSA-2013-1645.html", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2017-09-09T07:19:18", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.21.1.el5.src.rpm", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-348.21.1.el5.noarch.rpm", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.21.1.el5.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.18-348.21.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.18-348.21.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-PAE-debuginfo", "packageFilename": "kernel-PAE-debuginfo-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.21.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.21.1.el5.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.21.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.21.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.21.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* An information leak flaw was found in the way the Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\nRed Hat would like to thank Fujitsu for reporting this issue.\n\nThis update also fixes the following bugs:\n\n* A previous fix to the kernel did not contain a memory barrier in the\npercpu_up_write() function. Consequently, under certain circumstances, a race\ncondition could occur, leading to memory corruption and a subsequent kernel\npanic. This update introduces a new memory barrier pair, light_mb() and\nheavy_mb(), for per-CPU basis read and write semaphores (percpu-rw-semaphores)\nensuring that the race condition can no longer occur. In addition, the read path\nperformance of \"percpu-rw-semaphores\" has been improved. (BZ#884735)\n\n* Due to several related bugs in the be2net driver, the driver did not handle\nfirmware manipulation of the network cards using the Emulex XE201 I/O controller\nproperly. As a consequence, these NICs could not recover from an error\nsuccessfully. A series of patches has been applied that fix the initialization\nsequence, and firmware download and activation for the XE201 controller. Error\nrecovery now works as expected for the be2net NICs using the Emulex XE201 I/O\ncontroller. (BZ#1019892)\n\n* A bug in the be2net driver could cause packet corruption when handling\nVLAN-tagged packets with no assigned VLAN group. This happened because the\nbe2net driver called a function responsible for VLAN tag reinsertion in a wrong\norder in the code. The code has been restructured and the be2net driver now\ncalls the __vlan_put_tag() function correctly, thus avoiding the packet\ncorruption. (BZ#1019893)\n\n* A previous patch to the kernel introduced the \"VLAN tag re-insertion\"\nworkaround to resolve a problem with incorrectly handled VLAN-tagged packets\nwith no assigned VLAN group while the be2net driver was in promiscuous mode.\nHowever, this solution led to packet corruption and a subsequent kernel oops if\nsuch a processed packet was a GRO packet. Therefore, a patch has been applied to\nrestrict VLAN tag re-insertion only to non-GRO packets. The be2net driver now\nprocesses VLAN-tagged packets with no assigned VLAN group correctly in this\nsituation. (BZ#1023347)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2013-12-19T05:00:00", "type": "redhat", "title": "(RHSA-2013:1860) Moderate: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4299"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:09:45", "id": "RHSA-2013:1860", "href": "https://access.redhat.com/errata/RHSA-2013:1860", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-06-12T21:09:37", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-debuginfo-common-i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "src", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.23.2.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-debuginfo-common-x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "perf", "packageFilename": "perf-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-358.23.2.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-358.23.2.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel-debuginfo-common-ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel-bootwrapper", "packageFilename": "kernel-bootwrapper-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "ppc64", "packageName": "perf", "packageFilename": "perf-2.6.32-358.23.2.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-debuginfo-common-s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "perf", "packageFilename": "perf-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "s390x", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.32-358.23.2.el6.s390x.rpm", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A flaw was found in the way the Linux kernel's TCP/IP protocol suite\nimplementation handled IPv6 sockets that used the UDP_CORK option. A local,\nunprivileged user could use this flaw to cause a denial of\nservice. (CVE-2013-4162, Moderate)\n\n* An information leak flaw was found in the way Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\nRed Hat would like to thank Hannes Frederic Sowa for reporting\nCVE-2013-4162; and Fujitsu for reporting CVE-2013-4299.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2013-10-16T04:00:00", "type": "redhat", "title": "(RHSA-2013:1436) Moderate: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4162", "CVE-2013-4299"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:23", "id": "RHSA-2013:1436", "href": "https://access.redhat.com/errata/RHSA-2013:1436", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-06-13T00:00:26", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "kernel-debuginfo-common-x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "src", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.123.4.openstack.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-358.123.4.openstack.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-358.123.4.openstack.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.123.4.openstack.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.123.4.openstack.el6.x86_64.rpm", "operator": "lt"}], "description": "Red Hat OpenStack 3.0 includes a custom Red Hat Enterprise Linux 6.4\nkernel. These custom kernel packages include support for network\nnamespaces; this support is required to facilitate advanced OpenStack\nNetworking deployments.\n\n* A flaw was found in the way the Linux kernel's TCP/IP protocol suite\nimplementation handled IPv6 sockets that used the UDP_CORK option. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2013-4162, Moderate)\n\n* An information leak flaw was found in the way the Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\nRed Hat would like to thank Hannes Frederic Sowa for reporting\nCVE-2013-4162; and Fujitsu for reporting CVE-2013-4299.\n\nThis update also fixes the following bug:\n\n* Prior to this update, while performing Generic Routing Encapsulation\n(GRE), the possibility of having a 802.1Q inner header was not considered\nduring the Generic Segmentation Offloading (GSO). With this update, a check\nhas been added to detect the use of 802.1Q and handle the packet\naccordingly. (BZ#1005804)\n\nIn addition, this update adds the following enhancements:\n\n* This update adds support for Distributed Overlay Virtual Ethernet (DOVE).\n(BZ#1009025)\n\n* This update adds support for Virtual Extensible LAN (VXLAN) as an Open\nvSwitch (OVS) tunneling type. (BZ#1009006)\n\nMore information on the Red Hat Enterprise Linux 6.4 kernel packages upon\nwhich these custom kernel packages are based is available in\nRHSA-2013:1436:\n\nhttps://rhn.redhat.com/errata/RHSA-2013-1436.html\n\nAll Red Hat OpenStack 3.0 users deploying the OpenStack Networking service\nare advised to install these updated packages.\n", "reporter": "RedHat", "published": "2013-11-14T05:00:00", "type": "redhat", "title": "(RHSA-2013:1520) Moderate: kernel security, bug fix, and enhancement update", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4162", "CVE-2013-4299"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-13T01:27:36", "id": "RHSA-2013:1520", "href": "https://access.redhat.com/errata/RHSA-2013:1520", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-04T11:17:57", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "perf-debuginfo-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "perf-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-kdump-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-kdump", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "python-perf-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "python-perf", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-debug-devel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "perf-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "perf", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-220.45.1.el6.i686.rpm", "packageName": "kernel-debuginfo-common-i686", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "perf-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "perf", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-kdump-devel-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-kdump-devel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "python-perf-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "python-perf", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-220.45.1.el6.i686.rpm", "packageName": "kernel-debug-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "python-perf-debuginfo-2.6.32-220.45.1.el6.i686.rpm", "packageName": "python-perf-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-headers-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-headers", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel-debug", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel-debuginfo-common-ppc64", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-firmware-2.6.32-220.45.1.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debuginfo-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-headers-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "perf-debuginfo-2.6.32-220.45.1.el6.i686.rpm", "packageName": "perf-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-220.45.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-2.6.32-220.45.1.el6.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "python-perf-debuginfo-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "python-perf-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-devel-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-devel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-2.6.32-220.45.1.el6.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-debug", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-devel-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel-devel", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debuginfo-2.6.32-220.45.1.el6.i686.rpm", "packageName": "kernel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "python-perf-2.6.32-220.45.1.el6.i686.rpm", "packageName": "python-perf", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "perf-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "perf", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel-debug-devel", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-headers-2.6.32-220.45.1.el6.i686.rpm", "packageName": "kernel-headers", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-debug-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-headers-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel-headers", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debuginfo-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "python-perf-debuginfo-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "python-perf-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-kdump-debuginfo-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-kdump-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-devel-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-2.6.32-220.45.1.el6.src.rpm", "packageName": "kernel", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "python-perf-debuginfo-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "python-perf-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debuginfo-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "kernel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "perf-2.6.32-220.45.1.el6.i686.rpm", "packageName": "perf", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-devel-2.6.32-220.45.1.el6.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "perf-debuginfo-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "perf-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel-debug-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "perf-debuginfo-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "perf-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "python-perf-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "python-perf", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-doc-2.6.32-220.45.1.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-220.45.1.el6.x86_64.rpm", "packageName": "kernel-debuginfo-common-x86_64", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-220.45.1.el6.s390x.rpm", "packageName": "kernel-debuginfo-common-s390x", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.45.1.el6", "packageFilename": "kernel-bootwrapper-2.6.32-220.45.1.el6.ppc64.rpm", "packageName": "kernel-bootwrapper", "arch": "ppc64", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* An information leak flaw was found in the way Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\nFujitsu for reporting CVE-2013-4299. Upstream acknowledges Dmitry Monakhov\nas the original reporter of CVE-2012-4508.\n\nThis update also fixes the following bugs:\n\n* When the Audit subsystem was under heavy load, it could loop infinitely\nin the audit_log_start() function instead of failing over to the error\nrecovery code. This would cause soft lockups in the kernel. With this\nupdate, the timeout condition in the audit_log_start() function has been\nmodified to properly fail over when necessary. (BZ#1017898)\n\n* When handling Memory Type Range Registers (MTRRs), the\nstop_one_cpu_nowait() function could potentially be executed in parallel\nwith the stop_machine() function, which resulted in a deadlock. The MTRR\nhandling logic now uses the stop_machine() function and makes use of mutual\nexclusion to avoid the aforementioned deadlock. (BZ#1017902)\n\n* Power-limit notification interrupts were enabled by default. This could\nlead to degradation of system performance or even render the system\nunusable on certain platforms, such as Dell PowerEdge servers. Power-limit\nnotification interrupts have been disabled by default and a new kernel\ncommand line parameter \"int_pln_enable\" has been added to allow users to\nobserve these events using the existing system counters. Power-limit\nnotification messages are also no longer displayed on the console.\nThe affected platforms no longer suffer from degraded system performance\ndue to this problem. (BZ#1020519)\n\n* Package level thermal and power limit events are not defined as MCE\nerrors for the x86 architecture. However, the mcelog utility erroneously\nreported these events as MCE errors with the following message:\n\n kernel: [Hardware Error]: Machine check events logged\n\nPackage level thermal and power limit events are no longer reported as MCE\nerrors by mcelog. When these events are triggered, they are now reported\nonly in the respective counters in sysfs (specifically,\n/sys/devices/system/cpu/cpu<number>/thermal_throttle/). (BZ#1021950)\n\n* An insufficiently designed calculation in the CPU accelerator could cause\nan arithmetic overflow in the set_cyc2ns_scale() function if the system\nuptime exceeded 208 days prior to using kexec to boot into a new kernel.\nThis overflow led to a kernel panic on systems using the Time Stamp Counter\n(TSC) clock source, primarily systems using Intel Xeon E5 processors that\ndo not reset TSC on soft power cycles. A patch has been applied to modify\nthe calculation so that this arithmetic overflow and kernel panic can no\nlonger occur under these circumstances. (BZ#1024453)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2013-11-13T05:00:00", "type": "redhat", "title": "(RHSA-2013:1519) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-4508", "CVE-2013-4299"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2015-04-24T14:20:13", "id": "RHSA-2013:1519", "href": "https://access.redhat.com/errata/RHSA-2013:1519", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-04T11:17:52", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-bootwrapper", "packageFilename": "kernel-bootwrapper-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-279.39.1.el6.noarch.rpm", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "perf", "packageFilename": "perf-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debuginfo-common-s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "perf", "packageFilename": "perf-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debuginfo-common-i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-279.39.1.el6.noarch.rpm", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debuginfo-common-x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "perf", "packageFilename": "perf-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.39.1.el6.src.rpm", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.39.1.el6.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.39.1.el6.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debuginfo-common-ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.39.1.el6.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.39.1.el6", "packageName": "perf", "packageFilename": "perf-2.6.32-279.39.1.el6.s390x.rpm", "arch": "s390x", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* An information leak flaw was found in the way the Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\n* A format string flaw was found in the Linux kernel's block layer.\nA privileged, local user could potentially use this flaw to escalate their\nprivileges to kernel level (ring0). (CVE-2013-2851, Low)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508,\nFujitsu for reporting CVE-2013-4299, and Kees Cook for reporting\nCVE-2013-2851. Upstream acknowledges Dmitry Monakhov as the original\nreporter of CVE-2012-4508.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2013-12-05T05:00:00", "type": "redhat", "title": "(RHSA-2013:1783) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-4508", "CVE-2013-2851", "CVE-2013-4299"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2015-04-24T14:21:32", "id": "RHSA-2013:1783", "href": "https://access.redhat.com/errata/RHSA-2013:1783", "cvss": {"score": 6.0, "vector": "AV:LOCAL/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-12T23:59:28", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug-debuginfo", "packageFilename": "kernel-rt-debug-debuginfo-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debuginfo", "packageFilename": "kernel-rt-debuginfo-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debuginfo-common-x86_64", "packageFilename": "kernel-rt-debuginfo-common-x86_64-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace-debuginfo", "packageFilename": "kernel-rt-trace-debuginfo-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla-debuginfo", "packageFilename": "kernel-rt-vanilla-debuginfo-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "src", "packageName": "kernel-rt", "packageFilename": "kernel-rt-3.8.13-rt14.25.el6rt.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "noarch", "packageName": "kernel-rt-doc", "packageFilename": "kernel-rt-doc-3.8.13-rt14.25.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug", "packageFilename": "kernel-rt-debug-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug-devel", "packageFilename": "kernel-rt-debug-devel-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace-devel", "packageFilename": "kernel-rt-trace-devel-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla", "packageFilename": "kernel-rt-vanilla-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla-devel", "packageFilename": "kernel-rt-vanilla-devel-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "noarch", "packageName": "kernel-rt-firmware", "packageFilename": "kernel-rt-firmware-3.8.13-rt14.25.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "noarch", "packageName": "mrg-rt-release", "packageFilename": "mrg-rt-release-3.8.13-rt14.25.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt", "packageFilename": "kernel-rt-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-devel", "packageFilename": "kernel-rt-devel-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.8.13-rt14.25.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace", "packageFilename": "kernel-rt-trace-3.8.13-rt14.25.el6rt.x86_64.rpm", "operator": "lt"}], "description": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A flaw was found in the way IP packets with an Internet Header Length\n(ihl) of zero were processed in the skb_flow_dissect() function in the\nLinux kernel. A remote attacker could use this flaw to trigger an infinite\nloop in the kernel, leading to a denial of service. (CVE-2013-4348,\nImportant)\n\n* A flaw was found in the way the Linux kernel's IPv6 implementation\nhandled certain UDP packets when the UDP Fragmentation Offload (UFO)\nfeature was enabled. A remote attacker could use this flaw to crash the\nsystem or, potentially, escalate their privileges on the system.\n(CVE-2013-4387, Important)\n\n* A flaw was found in the way the Linux kernel handled the creation of\ntemporary IPv6 addresses. If the IPv6 privacy extension was enabled\n(/proc/sys/net/ipv6/conf/eth0/use_tempaddr set to '2'), an attacker on\nthe local network could disable IPv6 temporary address generation, leading\nto a potential information disclosure. (CVE-2013-0343, Moderate)\n\n* A flaw was found in the way the Linux kernel handled HID (Human Interface\nDevice) reports with an out-of-bounds Report ID. An attacker with physical\naccess to the system could use this flaw to crash the system or,\npotentially, escalate their privileges on the system. (CVE-2013-2888,\nModerate)\n\n* Heap-based buffer overflow flaws were found in the way the\nPantherlord/GreenAsia game controller driver, the Logitech force feedback\ndrivers, and the Logitech Unifying receivers driver handled HID reports.\nAn attacker with physical access to the system could use these flaws to\ncrash the system or, potentially, escalate their privileges on the system.\n(CVE-2013-2892, CVE-2013-2893, CVE-2013-2895, Moderate)\n\n* A NULL pointer dereference flaw was found in the way the N-Trig touch\nscreen driver handled HID reports. An attacker with physical access to the\nsystem could use this flaw to crash the system, resulting in a denial of\nservice. (CVE-2013-2896, Moderate)\n\n* An information leak flaw was found in the way the Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\n* A use-after-free flaw was found in the tun_set_iff() function in the\nUniversal TUN/TAP device driver implementation in the Linux kernel.\nA privileged user could use this flaw to crash the system or, potentially,\nfurther escalate their privileges on the system. (CVE-2013-4343, Moderate)\n\n* An off-by-one flaw was found in the way the ANSI CPRNG implementation in\nthe Linux kernel processed non-block size aligned requests. This could lead\nto random numbers being generated with less bits of entropy than expected\nwhen ANSI CPRNG was used. (CVE-2013-4345, Moderate)\n\n* A flaw was found in the way the Linux kernel's IPv6 SCTP implementation\ninteracted with the IPsec subsystem. This resulted in unencrypted SCTP\npackets being sent over the network even though IPsec encryption was\nenabled. An attacker able to inspect these SCTP packets could use this flaw\nto obtain potentially sensitive information. (CVE-2013-4350, Moderate)\n\nRed Hat would like to thank Fujitsu for reporting CVE-2013-4299 and Stephan\nMueller for reporting CVE-2013-4345. The CVE-2013-4348 issue was discovered\nby Jason Wang of Red Hat.\n\nBug fix:\n\n* RoCE appeared to be supported in the MRG Realtime kernel even when the\nrequired user space packages from the HPN channel were not installed.\nThe Realtime kernel now checks for the HPN channel packages before exposing\nthe RoCE interfaces. RoCE devices appear as plain 10GigE devices if the\nneeded HPN channel user space packages are not installed. (BZ#1012993)\n\nUsers should upgrade to these updated packages, which upgrade the kernel-rt\nkernel to version kernel-rt-3.8.13-rt14, and correct these issues.\nThe system must be rebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2013-10-31T04:00:00", "type": "redhat", "title": "(RHSA-2013:1490) Important: kernel-rt security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-0343", "CVE-2013-2888", "CVE-2013-2892", "CVE-2013-2893", "CVE-2013-2895", "CVE-2013-2896", "CVE-2013-4299", "CVE-2013-4343", "CVE-2013-4345", "CVE-2013-4348", "CVE-2013-4350", "CVE-2013-4387"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-07T08:58:25", "id": "RHSA-2013:1490", "href": "https://access.redhat.com/errata/RHSA-2013:1490", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-09-08T13:21:10", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-PAE-debuginfo-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-PAE-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-debuginfo-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-debuginfo-common-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-debug-debuginfo-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-xen-debuginfo-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.1.2.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-debuginfo-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-debuginfo-common-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-xen-debuginfo-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.1.2.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-debuginfo-common-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-debug-debuginfo-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-debuginfo-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-debuginfo-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-debuginfo-common-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-kdump-debuginfo-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-debug-debuginfo-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-debuginfo-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.ppc.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-devel-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-2.6.18-371.1.2.el5.ppc64.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-kdump-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-kdump-devel-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "s390x", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.s390x.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-debug-debuginfo-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-debuginfo-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-debuginfo-common-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-xen-debuginfo-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A flaw was found in the way the Linux kernel handled the creation of\ntemporary IPv6 addresses. If the IPv6 privacy extension was enabled\n(/proc/sys/net/ipv6/conf/eth0/use_tempaddr is set to '2'), an attacker on\nthe local network could disable IPv6 temporary address generation, leading\nto a potential information disclosure. (CVE-2013-0343, Moderate)\n\n* An information leak flaw was found in the way Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\n* An off-by-one flaw was found in the way the ANSI CPRNG implementation in\nthe Linux kernel processed non-block size aligned requests. This could lead\nto random numbers being generated with less bits of entropy than expected\nwhen ANSI CPRNG was used. (CVE-2013-4345, Moderate)\n\n* An information leak flaw was found in the way Xen hypervisor emulated the\nOUTS instruction for 64-bit paravirtualized guests. A privileged guest user\ncould use this flaw to leak hypervisor stack memory to the guest.\n(CVE-2013-4368, Moderate)\n\nRed Hat would like to thank Fujitsu for reporting CVE-2013-4299, Stephan\nMueller for reporting CVE-2013-4345, and the Xen project for reporting\nCVE-2013-4368.\n\nThis update also fixes the following bug:\n\n* A bug in the GFS2 code prevented glock work queues from freeing\nglock-related memory while the glock memory shrinker repeatedly queued a\nlarge number of demote requests, for example when performing a simultaneous\nbackup of several live GFS2 volumes with a large file count. As a\nconsequence, the glock work queues became overloaded which resulted in a\nhigh CPU usage and the GFS2 file systems being unresponsive for a\nsignificant amount of time. A patch has been applied to alleviate this\nproblem by calling the yield() function after scheduling a certain amount\nof tasks on the glock work queues. The problem can now occur only with\nextremely high work loads. (BZ#1014714)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2013-10-22T04:00:00", "type": "redhat", "title": "(RHSA-2013:1449) Moderate: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-0343", "CVE-2013-4299", "CVE-2013-4345", "CVE-2013-4368"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:49:13", "id": "RHSA-2013:1449", "href": "https://access.redhat.com/errata/RHSA-2013:1449", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-11-25T14:52:22", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debuginfo-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "kernel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "perf-debuginfo-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "perf-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-firmware-2.6.32-279.37.2.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-headers-2.6.32-279.37.2.el6.i686.rpm", "packageName": "kernel-headers", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "python-perf-2.6.32-279.37.2.el6.i686.rpm", "packageName": "python-perf", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debuginfo-2.6.32-279.37.2.el6.i686.rpm", "packageName": "kernel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-2.6.32-279.37.2.el6.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-2.6.32-279.37.2.el6.src.rpm", "packageName": "kernel", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "perf-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "perf", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-doc-2.6.32-279.37.2.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "perf-debuginfo-2.6.32-279.37.2.el6.i686.rpm", "packageName": "perf-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "perf-debuginfo-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "perf-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debuginfo-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel-debug-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debuginfo-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "perf-2.6.32-279.37.2.el6.i686.rpm", "packageName": "perf", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "python-perf-debuginfo-2.6.32-279.37.2.el6.i686.rpm", "packageName": "python-perf-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-kdump-devel-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-kdump-devel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-kdump-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-kdump", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel-debug-devel", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "python-perf-debuginfo-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "python-perf-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-debuginfo-common-s390x", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-headers-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel-headers", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-devel-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel-devel", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "python-perf-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "python-perf", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-debug", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.37.2.el6.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-headers-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel-debuginfo-common-ppc64", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-279.37.2.el6.i686.rpm", "packageName": "kernel-debuginfo-common-i686", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-devel-2.6.32-279.37.2.el6.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel-debug", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.37.2.el6.i686.rpm", "packageName": "kernel-debug-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-devel-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "perf-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "perf", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-devel-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-devel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "python-perf-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "python-perf", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "python-perf-debuginfo-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "python-perf-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-kdump-debuginfo-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-kdump-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "perf-debuginfo-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "perf-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "python-perf-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "python-perf", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "perf-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "perf", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-headers-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-headers", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "python-perf-debuginfo-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "python-perf-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-bootwrapper-2.6.32-279.37.2.el6.ppc64.rpm", "packageName": "kernel-bootwrapper", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-2.6.32-279.37.2.el6.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-debug-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.37.2.el6.s390x.rpm", "packageName": "kernel-debug-devel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.37.2.el6", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-279.37.2.el6.x86_64.rpm", "packageName": "kernel-debuginfo-common-x86_64", "arch": "x86_64", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* It was found that the fix for CVE-2012-3552 released via RHSA-2012:1540\nintroduced an invalid free flaw in the Linux kernel's TCP/IP protocol suite\nimplementation. A local, unprivileged user could use this flaw to corrupt\nkernel memory via crafted sendmsg() calls, allowing them to cause a denial\nof service or, potentially, escalate their privileges on the\nsystem. (CVE-2013-2224, Important)\n\n* An information leak flaw was found in the way Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\n* A format string flaw was found in the b43_do_request_fw() function in the\nLinux kernel's b43 driver implementation. A local user who is able to\nspecify the \"fwpostfix\" b43 module parameter could use this flaw to cause a\ndenial of service or, potentially, escalate their privileges.\n(CVE-2013-2852, Low)\n\nRed Hat would like to thank Fujitsu for reporting CVE-2013-4299, and Kees\nCook for reporting CVE-2013-2852.\n\nThis update also fixes the following bugs:\n\n* An insufficiently designed calculation in the CPU accelerator could cause\nan arithmetic overflow in the set_cyc2ns_scale() function if the system\nuptime exceeded 208 days prior to using kexec to boot into a new\nkernel. This overflow led to a kernel panic on the systems using the Time\nStamp Counter (TSC) clock source, primarily the systems using Intel Xeon E5\nprocessors that do not reset TSC on soft power cycles. A patch has been\napplied to modify the calculation so that this arithmetic overflow and\nkernel panic can no longer occur under these circumstances. (BZ#1004185)\n\n* A race condition in the abort task and SPP device task management path of\nthe isci driver could, under certain circumstances, cause the driver to\nfail cleaning up timed-out I/O requests that were pending on an SAS disk\ndevice. As a consequence, the kernel removed such a device from the\nsystem. A patch applied to the isci driver fixes this problem by sending\nthe task management function request to the SAS drive anytime the abort\nfunction is entered and the task has not completed. The driver now cleans\nup timed-out I/O requests as expected in this situation. (BZ#1007467)\n\n* A kernel panic could occur during path failover on systems using multiple\niSCSI, FC or SRP paths to connect an iSCSI initiator and an iSCSI\ntarget. This happened because a race condition in the SCSI driver allowed\nremoving a SCSI device from the system before processing its run queue,\nwhich led to a NULL pointer dereference. The SCSI driver has been modified\nand the race is now avoided by holding a reference to a SCSI device run\nqueue while it is active. (BZ#1008507)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2013-10-22T04:00:00", "type": "redhat", "title": "(RHSA-2013:1450) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2852", "CVE-2012-3552", "CVE-2013-2224", "CVE-2013-4299"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2015-04-24T14:17:36", "id": "RHSA-2013:1450", "href": "https://access.redhat.com/errata/RHSA-2013:1450", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-12T23:59:26", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "6.4-20131016.0.el6_4", "arch": "noarch", "packageName": "rhev-hypervisor6", "packageFilename": "rhev-hypervisor6-6.4-20131016.0.el6_4.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "6.4-20131016.0.el6_4", "arch": "src", "packageName": "rhev-hypervisor6", "packageFilename": "rhev-hypervisor6-6.4-20131016.0.el6_4.src.rpm", "operator": "lt"}], "description": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: A subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nUpgrade Note: If you upgrade the Red Hat Enterprise Virtualization\nHypervisor through the 3.2 Manager administration portal, the Host may\nappear with the status of \"Install Failed\". If this happens, place the host\ninto maintenance mode, then activate it again to get the host back to an\n\"Up\" state\n\nA stack-based buffer overflow flaw was found in the way the\nreds_handle_ticket() function in the spice-server library handled\ndecryption of ticket data provided by the client. A remote attacker able to\ninitiate a SPICE connection to the guest could use this flaw to crash the\nguest. (CVE-2013-4282)\n\nThis issue was discovered by Tomas Jamrisko of Red Hat.\n\nThis updated package provides updated components that include fixes for \nvarious security issues. These issues have no security impact on Red Hat \nEnterprise Virtualization Hypervisor itself, however. The security fixes \nincluded in this update address the following CVE numbers: \n\nCVE-2013-4162 and CVE-2013-4299 (kernel issues)\n\nCVE-2013-4296 and CVE-2013-4311 (libvirt issues)\n\nCVE-2013-4288 (polkit issue)\n\nThis update also contains the fixes from the following advisories:\n\n* vdsm: https://rhn.redhat.com/errata/RHBA-2013-1462.html\n* ovirt-node: https://rhn.redhat.com/errata/RHBA-2013-1461.html\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which corrects these issues.\n", "reporter": "RedHat", "published": "2013-10-29T04:00:00", "type": "redhat", "title": "(RHSA-2013:1460) Important: rhev-hypervisor6 security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4162", "CVE-2013-4282", "CVE-2013-4288", "CVE-2013-4296", "CVE-2013-4299", "CVE-2013-4311"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-07T08:59:45", "id": "RHSA-2013:1460", "href": "https://access.redhat.com/errata/RHSA-2013:1460", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-03T18:24:50", "references": ["https://rhn.redhat.com/errata/RHSA-2013-1436.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-358.23.2.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-358.23.2.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-358.23.2.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-358.23.2.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.23.2.el6.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "i686", "packageName": "perf", "packageFilename": "perf-2.6.32-358.23.2.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.23.2.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.23.2.el6.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2013:1436\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A flaw was found in the way the Linux kernel's TCP/IP protocol suite\nimplementation handled IPv6 sockets that used the UDP_CORK option. A local,\nunprivileged user could use this flaw to cause a denial of\nservice. (CVE-2013-4162, Moderate)\n\n* An information leak flaw was found in the way Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\nRed Hat would like to thank Hannes Frederic Sowa for reporting\nCVE-2013-4162; and Fujitsu for reporting CVE-2013-4299.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-October/019976.html\n\n**Affected packages:**\nkernel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-firmware\nkernel-headers\nperf\npython-perf\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-1436.html", "edition": 1, "reporter": "CentOS Project", "published": "2013-10-17T16:14:23", "title": "kernel, perf, python security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4162", "CVE-2013-4299"], "modified": "2013-10-17T16:14:23", "href": "http://lists.centos.org/pipermail/centos-announce/2013-October/019976.html", "id": "CESA-2013:1436", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-10-03T18:25:19", "references": ["https://rhn.redhat.com/errata/RHSA-2013-1449.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-371.1.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-371.1.2.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-371.1.2.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-371.1.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-371.1.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i386", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-371.1.2.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-371.1.2.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-371.1.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-371.1.2.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.18-371.1.2.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-371.1.2.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "i686", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-371.1.2.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.18-371.1.2.el5.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-371.1.2.el5", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.18-371.1.2.el5.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2013:1449\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A flaw was found in the way the Linux kernel handled the creation of\ntemporary IPv6 addresses. If the IPv6 privacy extension was enabled\n(/proc/sys/net/ipv6/conf/eth0/use_tempaddr is set to '2'), an attacker on\nthe local network could disable IPv6 temporary address generation, leading\nto a potential information disclosure. (CVE-2013-0343, Moderate)\n\n* An information leak flaw was found in the way Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\n* An off-by-one flaw was found in the way the ANSI CPRNG implementation in\nthe Linux kernel processed non-block size aligned requests. This could lead\nto random numbers being generated with less bits of entropy than expected\nwhen ANSI CPRNG was used. (CVE-2013-4345, Moderate)\n\n* An information leak flaw was found in the way Xen hypervisor emulated the\nOUTS instruction for 64-bit paravirtualized guests. A privileged guest user\ncould use this flaw to leak hypervisor stack memory to the guest.\n(CVE-2013-4368, Moderate)\n\nRed Hat would like to thank Fujitsu for reporting CVE-2013-4299, Stephan\nMueller for reporting CVE-2013-4345, and the Xen project for reporting\nCVE-2013-4368.\n\nThis update also fixes the following bug:\n\n* A bug in the GFS2 code prevented glock work queues from freeing\nglock-related memory while the glock memory shrinker repeatedly queued a\nlarge number of demote requests, for example when performing a simultaneous\nbackup of several live GFS2 volumes with a large file count. As a\nconsequence, the glock work queues became overloaded which resulted in a\nhigh CPU usage and the GFS2 file systems being unresponsive for a\nsignificant amount of time. A patch has been applied to alleviate this\nproblem by calling the yield() function after scheduling a certain amount\nof tasks on the glock work queues. The problem can now occur only with\nextremely high work loads. (BZ#1014714)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-October/019981.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-1449.html", "edition": 1, "reporter": "CentOS Project", "published": "2013-10-23T00:10:49", "title": "kernel security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-4345", "CVE-2013-4368", "CVE-2013-0343", "CVE-2013-4299"], "modified": "2013-10-23T00:10:49", "href": "http://lists.centos.org/pipermail/centos-announce/2013-October/019981.html", "id": "CESA-2013:1449", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-10-03T18:26:55", "references": ["https://rhn.redhat.com/errata/RHSA-2013-1166.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i386", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.16.1.el5.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-348.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.16.1.el5.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-348.16.1.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-348.16.1.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.16.1.el5", "arch": "i686", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-348.16.1.el5.i686.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2013:1166\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way the Linux kernel's Stream Control\nTransmission Protocol (SCTP) implementation handled duplicate cookies. If a\nlocal user queried SCTP connection information at the same time a remote\nattacker has initialized a crafted SCTP connection to the system, it could\ntrigger a NULL pointer dereference, causing the system to crash.\n(CVE-2013-2206, Important)\n\n* It was found that the fix for CVE-2012-3552 released via RHSA-2012:1540\nintroduced an invalid free flaw in the Linux kernel's TCP/IP protocol suite\nimplementation. A local, unprivileged user could use this flaw to corrupt\nkernel memory via crafted sendmsg() calls, allowing them to cause a denial\nof service or, potentially, escalate their privileges on the system.\n(CVE-2013-2224, Important)\n\n* An invalid pointer dereference flaw was found in the Linux kernel's\nTCP/IP protocol suite implementation. A local, unprivileged user could use\nthis flaw to crash the system or, potentially, escalate their privileges on\nthe system by using sendmsg() with an IPv6 socket connected to an IPv4\ndestination. (CVE-2013-2232, Moderate)\n\n* Information leak flaws in the Linux kernel could allow a privileged,\nlocal user to leak kernel memory to user-space. (CVE-2013-2164,\nCVE-2013-2147, CVE-2013-2234, CVE-2013-2237, Low)\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-August/019910.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-1166.html", "edition": 1, "reporter": "CentOS Project", "published": "2013-08-21T14:07:08", "title": "kernel security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2234", "CVE-2013-2206", "CVE-2013-2147", "CVE-2013-2232", "CVE-2013-2237", "CVE-2012-3552", "CVE-2013-2224", "CVE-2013-2164"], "modified": "2013-08-21T14:07:08", "href": "http://lists.centos.org/pipermail/centos-announce/2013-August/019910.html", "id": "CESA-2013:1166", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "debian": [{"lastseen": "2016-09-02T18:27:10", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "6", "packageVersion": "2.6.32-48squeeze5", "packageFilename": "linux-2.6_2.6.32-48squeeze5_all.deb", "packageName": "linux-2.6", "arch": "all", "operator": "lt"}], "description": "Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2013-0343](<https://security-tracker.debian.org/tracker/CVE-2013-0343>)\n\nGeorge Kargiotakis reported an issue in the temporary address handling of the IPv6 privacy extensions. Users on the same LAN can cause a denial of service or obtain access to sensitive information by sending router advertisement messages that cause temporary address generation to be disabled.\n\n * [CVE-2013-2147](<https://security-tracker.debian.org/tracker/CVE-2013-2147>)\n\nDan Carpenter reported issues in the cpqarray driver for Compaq Smart2 Controllers and the cciss driver for HP Smart Array controllers allowing users to gain access to sensitive kernel memory.\n\n * [CVE-2013-2889](<https://security-tracker.debian.org/tracker/CVE-2013-2889>)\n\nKees Cook discovered missing input sanitization in the HID driver for Zeroplus game pads that could lead to a local denial of service.\n\n * [CVE-2013-2893](<https://security-tracker.debian.org/tracker/CVE-2013-2893>)\n\nKees Cook discovered that missing input sanitization in the HID driver for various Logitech force feedback devices could lead to a local denial of service.\n\n * [CVE-2013-2929](<https://security-tracker.debian.org/tracker/CVE-2013-2929>)\n\nVasily Kulikov discovered that a flaw in the get_dumpable() function of the ptrace subsytsem could lead to information disclosure. Only systems with the fs.suid_dumpable sysctl set to a non-default value of 2 are vulnerable.\n\n * [CVE-2013-4162](<https://security-tracker.debian.org/tracker/CVE-2013-4162>)\n\nHannes Frederic Sowa discovered that incorrect handling of IPv6 sockets using the UDP_CORK option could result in denial of service.\n\n * [CVE-2013-4299](<https://security-tracker.debian.org/tracker/CVE-2013-4299>)\n\nFujitsu reported an issue in the device-mapper subsystem. Local users could gain access to sensitive kernel memory.\n\n * [CVE-2013-4345](<https://security-tracker.debian.org/tracker/CVE-2013-4345>)\n\nStephan Mueller found in bug in the ANSI pseudo random number generator which could lead to the use of less entropy than expected.\n\n * [CVE-2013-4512](<https://security-tracker.debian.org/tracker/CVE-2013-4512>)\n\nNico Golde and Fabian Yamaguchi reported an issue in the user mode linux port. A buffer overflow condition exists in the write method for the /proc/exitcode file. Local users with sufficient privileges allowing them to write to this file could gain further elevated privileges.\n\n * [CVE-2013-4587](<https://security-tracker.debian.org/tracker/CVE-2013-4587>)\n\nAndrew Honig of Google reported an issue in the KVM virtualization subsystem. A local user could gain elevated privileges by passing a large vcpu_id parameter.\n\n * [CVE-2013-6367](<https://security-tracker.debian.org/tracker/CVE-2013-6367>)\n\nAndrew Honig of Google reported an issue in the KVM virtualization subsystem. A divide-by-zero condition could allow a guest user to cause a denial of service on the host (crash).\n\n * [CVE-2013-6380](<https://security-tracker.debian.org/tracker/CVE-2013-6380>)\n\nMahesh Rajashekhara reported an issue in the aacraid driver for storage products from various vendors. Local users with CAP_SYS_ADMIN privileges could gain further elevated privileges.\n\n * [CVE-2013-6381](<https://security-tracker.debian.org/tracker/CVE-2013-6381>)\n\nNico Golde and Fabian Yamaguchi reported an issue in the Gigabit Ethernet device support for s390 systems. Local users could cause a denial of service or gain elevated privileges via the SIOC_QETH_ADP_SET_SNMP_CONTROL ioctl.\n\n * [CVE-2013-6382](<https://security-tracker.debian.org/tracker/CVE-2013-6382>)\n\nNico Golde and Fabian Yamaguchi reported an issue in the XFS filesystem. Local users with CAP_SYS_ADMIN privileges could gain further elevated privileges.\n\n * [CVE-2013-6383](<https://security-tracker.debian.org/tracker/CVE-2013-6383>)\n\nDan Carpenter reported an issue in the aacraid driver for storage devices from various vendors. A local user could gain elevated privileges due to a missing privilege level check in the aac_compat_ioctl function.\n\n * [CVE-2013-7263](<https://security-tracker.debian.org/tracker/CVE-2013-7263>) [CVE-2013-7264](<https://security-tracker.debian.org/tracker/CVE-2013-7264>) [CVE-2013-7265](<https://security-tracker.debian.org/tracker/CVE-2013-7265>)\n\nmpb reported an information leak in the recvfrom, recvmmsg and recvmsg system calls. A local user could obtain access to sensitive kernel memory.\n\n * [CVE-2013-7339](<https://security-tracker.debian.org/tracker/CVE-2013-7339>)\n\nSasha Levin reported an issue in the RDS network protocol over Infiniband. A local user could cause a denial of service condition.\n\n * [CVE-2014-0101](<https://security-tracker.debian.org/tracker/CVE-2014-0101>)\n\nNokia Siemens Networks reported an issue in the SCTP network protocol subsystem. Remote users could cause a denial of service (NULL pointer dereference).\n\n * [CVE-2014-1444](<https://security-tracker.debian.org/tracker/CVE-2014-1444>)\n\nSalva Peiro reported an issue in the FarSync WAN driver. Local users with the CAP_NET_ADMIN capability could gain access to sensitive kernel memory.\n\n * [CVE-2014-1445](<https://security-tracker.debian.org/tracker/CVE-2014-1445>)\n\nSalva Peiro reported an issue in the wanXL serial card driver. Local users could gain access to sensitive kernel memory.\n\n * [CVE-2014-1446](<https://security-tracker.debian.org/tracker/CVE-2014-1446>)\n\nSalva Peiro reported an issue in the YAM radio modem driver. Local users with the CAP_NET_ADMIN capability could gain access to sensitive kernel memory.\n\n * [CVE-2014-1874](<https://security-tracker.debian.org/tracker/CVE-2014-1874>)\n\nMatthew Thode reported an issue in the SELinux subsystem. A local user with CAP_MAC_ADMIN privileges could cause a denial of service by setting an empty security context on a file.\n\n * [CVE-2014-2039](<https://security-tracker.debian.org/tracker/CVE-2014-2039>)\n\nMartin Schwidefsky reported an issue on s390 systems. A local user could cause a denial of service (kernel oops) by executing an application with a linkage stack instruction.\n\n * [CVE-2014-2523](<https://security-tracker.debian.org/tracker/CVE-2014-2523>)\n\nDaniel Borkmann provided a fix for an issue in the nf_conntrack_dccp module. Remote users could cause a denial of service (system crash) or potentially gain elevated privileges.\n\nFor the oldstable distribution (squeeze), this problem has been fixed in version 2.6.32-48squeeze5.\n\nThe following matrix lists additional source packages that were rebuilt for compatibility with or to take advantage of this update:\n\n| Debian 6.0 (squeeze) \n---|--- \nuser-mode-linux | 2.6.32-1um-4+48squeeze5 \n \nWe recommend that you upgrade your linux-2.6 and user-mode-linux packages. \n\n**Note**: Debian carefully tracks all known security issues across every linux kernel package in all releases under active security support. However, given the high frequency at which low-severity security issues are discovered in the kernel and the resource requirements of doing an update, updates for lower priority issues will normally not be released for all kernels at the same time. Rather, they will be released in a staggered or leap-frog fashion.", "edition": 1, "reporter": "Debian", "published": "2014-04-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "debian", "title": "linux-2.6 -- privilege escalation/denial of service/information leak", "bulletinFamily": "unix", "cvelist": ["CVE-2013-4345", "CVE-2013-4512", "CVE-2013-7265", "CVE-2013-6383", "CVE-2013-2929", "CVE-2014-1874", "CVE-2013-2147", "CVE-2013-4162", "CVE-2013-7264", "CVE-2014-1446", "CVE-2013-7339", "CVE-2013-6382", "CVE-2014-2039", "CVE-2013-6367", "CVE-2013-7263", "CVE-2014-1444", "CVE-2013-6380", "CVE-2013-0343", "CVE-2013-4587", "CVE-2013-6381", "CVE-2014-1445", "CVE-2014-2523", "CVE-2014-0101", "CVE-2013-4299", "CVE-2013-2889", "CVE-2013-2893"], "modified": "2014-04-24T00:00:00", "id": "DSA-2906", "href": "http://www.debian.org/security/dsa-2906", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "suse": [{"lastseen": "2016-09-04T12:10:59", "references": ["https://bugzilla.suse.com/show_bug.cgi?id=891368", "https://bugzilla.suse.com/show_bug.cgi?id=896391", "http://download.suse.com/patch/finder/?keywords=2969b6fb6821f3c1c5779cb35e36252b", "https://bugzilla.suse.com/show_bug.cgi?id=897708", "https://bugzilla.suse.com/show_bug.cgi?id=895468", "https://bugzilla.suse.com/show_bug.cgi?id=851603", "https://bugzilla.suse.com/show_bug.cgi?id=891211", "https://bugzilla.suse.com/show_bug.cgi?id=887418", "https://bugzilla.suse.com/show_bug.cgi?id=904700", "https://bugzilla.suse.com/show_bug.cgi?id=898295", "http://download.suse.com/patch/finder/?keywords=a2d767013b3d89848dc24f9f8e959d1b", "https://bugzilla.suse.com/show_bug.cgi?id=893758", "https://bugzilla.suse.com/show_bug.cgi?id=885077", "https://bugzilla.suse.com/show_bug.cgi?id=883948", "https://bugzilla.suse.com/show_bug.cgi?id=898554", "https://bugzilla.suse.com/show_bug.cgi?id=895387", "https://bugzilla.suse.com/show_bug.cgi?id=899574", "https://bugzilla.suse.com/show_bug.cgi?id=888607", "https://bugzilla.suse.com/show_bug.cgi?id=894058", "https://bugzilla.suse.com/show_bug.cgi?id=853040", "https://bugzilla.suse.com/show_bug.cgi?id=899843", "https://bugzilla.suse.com/show_bug.cgi?id=903653", "http://download.suse.com/patch/finder/?keywords=9da207bd70d4d6642d94fe875803ac61", "https://bugzilla.suse.com/show_bug.cgi?id=903331", "https://bugzilla.suse.com/show_bug.cgi?id=905100", "https://bugzilla.suse.com/show_bug.cgi?id=857643", "https://bugzilla.suse.com/show_bug.cgi?id=902349", "https://bugzilla.suse.com/show_bug.cgi?id=904358", "https://bugzilla.suse.com/show_bug.cgi?id=901638", "https://bugzilla.suse.com/show_bug.cgi?id=896390", "http://download.suse.com/patch/finder/?keywords=d7fb7c9ea045657cf163753ab42e7d48", "https://bugzilla.suse.com/show_bug.cgi?id=896415", "https://bugzilla.suse.com/show_bug.cgi?id=902346", "https://bugzilla.suse.com/show_bug.cgi?id=800255", "https://bugzilla.suse.com/show_bug.cgi?id=779488", "https://bugzilla.suse.com/show_bug.cgi?id=899192", "https://bugzilla.suse.com/show_bug.cgi?id=891790", "https://bugzilla.suse.com/show_bug.cgi?id=868049", "https://bugzilla.suse.com/show_bug.cgi?id=755743", "http://download.suse.com/patch/finder/?keywords=ac39209a595f41dfe7246b4c02e9fa0e", "https://bugzilla.suse.com/show_bug.cgi?id=904013", "https://bugzilla.suse.com/show_bug.cgi?id=896392", "https://bugzilla.suse.com/show_bug.cgi?id=892782", "https://bugzilla.suse.com/show_bug.cgi?id=860441", "https://bugzilla.suse.com/show_bug.cgi?id=883724", "https://bugzilla.suse.com/show_bug.cgi?id=876633", "https://bugzilla.suse.com/show_bug.cgi?id=835839", "https://bugzilla.suse.com/show_bug.cgi?id=897502", "https://bugzilla.suse.com/show_bug.cgi?id=896382", "https://bugzilla.suse.com/show_bug.cgi?id=873228", "https://bugzilla.suse.com/show_bug.cgi?id=905522", "https://bugzilla.suse.com/show_bug.cgi?id=897694", "https://bugzilla.suse.com/show_bug.cgi?id=898375", "https://bugzilla.suse.com/show_bug.cgi?id=894895"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_02_3.0.101_0.42-0.7.2", "arch": "i586", "packageFilename": "xen-kmp-default-4.2.5_02_3.0.101_0.42-0.7.2.i586.rpm", "packageName": "xen-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "arch": "i586", "packageFilename": "cluster-network-kmp-trace-1.4_3.0.101_0.42-2.27.115.i586.rpm", "packageName": "cluster-network-kmp-trace", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "arch": "i586", "packageFilename": "gfs2-kmp-default-2_3.0.101_0.42-0.16.121.i586.rpm", "packageName": "gfs2-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "arch": "i586", "packageFilename": "gfs2-kmp-xen-2_3.0.101_0.42-0.16.121.i586.rpm", "packageName": "gfs2-kmp-xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-ec2-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-ec2", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-extra-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default-extra", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "arch": "i586", "packageFilename": "cluster-network-kmp-pae-1.4_3.0.101_0.42-2.27.115.i586.rpm", "packageName": "cluster-network-kmp-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "arch": "i586", "packageFilename": "ocfs2-kmp-xen-1.6_3.0.101_0.42-0.20.115.i586.rpm", "packageName": "ocfs2-kmp-xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_02_3.0.101_0.42-0.7.2", "arch": "i586", "packageFilename": "xen-kmp-pae-4.2.5_02_3.0.101_0.42-0.7.2.i586.rpm", "packageName": "xen-kmp-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_02_3.0.101_0.42-0.7.2", "arch": "i586", "packageFilename": "xen-kmp-pae-4.2.5_02_3.0.101_0.42-0.7.2.i586.rpm", "packageName": "xen-kmp-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "arch": "i586", "packageFilename": "ocfs2-kmp-trace-1.6_3.0.101_0.42-0.20.115.i586.rpm", "packageName": "ocfs2-kmp-trace", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "arch": "i586", "packageFilename": "cluster-network-kmp-default-1.4_3.0.101_0.42-2.27.115.i586.rpm", "packageName": "cluster-network-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-syms-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-syms", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default-devel", "operator": "lt"}, {"OS": "SLE SERVER Unsupported Extras", "OSVersion": "11", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-extra-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae-extra", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-syms-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-syms", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-ec2-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-ec2-devel", "operator": "lt"}, {"OS": "SLE SERVER Unsupported Extras", "OSVersion": "11", "packageVersion": "3.0.101-0.42.1", "arch": "s390x", "packageFilename": "kernel-default-extra-3.0.101-0.42.1.s390x.rpm", "packageName": "kernel-default-extra", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-extra-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae-extra", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-trace-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-trace", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae-base", "operator": "lt"}, {"OS": "SLE SERVER Unsupported Extras", "OSVersion": "11", "packageVersion": "3.0.101-0.42.1", "arch": "ppc64", "packageFilename": "kernel-ppc64-extra-3.0.101-0.42.1.ppc64.rpm", "packageName": "kernel-ppc64-extra", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-ec2-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-ec2-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "arch": "i586", "packageFilename": "cluster-network-kmp-xen-1.4_3.0.101_0.42-2.27.115.i586.rpm", "packageName": "cluster-network-kmp-xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-trace-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-trace-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-syms-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-syms", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "arch": "i586", "packageFilename": "gfs2-kmp-pae-2_3.0.101_0.42-0.16.121.i586.rpm", "packageName": "gfs2-kmp-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-trace-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-trace-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-source-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-source", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-trace-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-trace-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_02_3.0.101_0.42-0.7.2", "arch": "i586", "packageFilename": "xen-kmp-default-4.2.5_02_3.0.101_0.42-0.7.2.i586.rpm", "packageName": "xen-kmp-default", "operator": "lt"}, {"OS": "SLE SERVER Unsupported Extras", "OSVersion": "11", "packageVersion": "3.0.101-0.42.1", "arch": "ppc64", "packageFilename": "kernel-default-extra-3.0.101-0.42.1.ppc64.rpm", "packageName": "kernel-default-extra", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default-devel", "operator": "lt"}, {"OS": "SLE SERVER Unsupported Extras", "OSVersion": "11", "packageVersion": "3.0.101-0.42.1", "arch": "ia64", "packageFilename": "kernel-default-extra-3.0.101-0.42.1.ia64.rpm", "packageName": "kernel-default-extra", "operator": "lt"}, {"OS": "SLE SERVER Unsupported Extras", "OSVersion": "11", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-extra-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default-extra", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-extra-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen-extra", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "arch": "i586", "packageFilename": "ocfs2-kmp-pae-1.6_3.0.101_0.42-0.20.115.i586.rpm", "packageName": "ocfs2-kmp-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-trace-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-trace", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-trace-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-trace-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-source-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-source", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-default-base-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-default-base", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-source-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-source", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "arch": "i586", "packageFilename": "ocfs2-kmp-default-1.6_3.0.101_0.42-0.20.115.i586.rpm", "packageName": "ocfs2-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-pae-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-pae-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "arch": "i586", "packageFilename": "gfs2-kmp-trace-2_3.0.101_0.42-0.16.121.i586.rpm", "packageName": "gfs2-kmp-trace", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-trace-devel-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-trace-devel", "operator": "lt"}, {"OS": "SLE SERVER Unsupported Extras", "OSVersion": "11", "packageVersion": "3.0.101-0.42.1", "arch": "i586", "packageFilename": "kernel-xen-extra-3.0.101-0.42.1.i586.rpm", "packageName": "kernel-xen-extra", "operator": "lt"}], "description": "The SUSE Linux Enterprise 11 Service Pack 3 kernel has been updated to fix\n various bugs and security issues.\n\n The following security bugs have been fixed:\n\n * CVE-2012-4398: The __request_module function in kernel/kmod.c in the\n Linux kernel before 3.4 did not set a certain killable attribute,\n which allowed local users to cause a denial of service (memory\n consumption) via a crafted application (bnc#779488).\n * CVE-2013-2889: drivers/hid/hid-zpff.c in the Human Interface Device\n (HID) subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_ZEROPLUS is enabled, allowed physically proximate\n attackers to cause a denial of service (heap-based out-of-bounds\n write) via a crafted device (bnc#835839).\n * CVE-2013-2893: The Human Interface Device (HID) subsystem in the\n Linux kernel through 3.11, when CONFIG_LOGITECH_FF,\n CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF is enabled, allowed\n physically proximate attackers to cause a denial of service\n (heap-based out-of-bounds write) via a crafted device, related to\n (1) drivers/hid/hid-lgff.c, (2) drivers/hid/hid-lg3ff.c, and (3)\n drivers/hid/hid-lg4ff.c (bnc#835839).\n * CVE-2013-2897: Multiple array index errors in\n drivers/hid/hid-multitouch.c in the Human Interface Device (HID)\n subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_MULTITOUCH is enabled, allowed physically proximate\n attackers to cause a denial of service (heap memory corruption, or\n NULL pointer dereference and OOPS) via a crafted device (bnc#835839).\n * CVE-2013-2899: drivers/hid/hid-picolcd_core.c in the Human Interface\n Device (HID) subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_PICOLCD is enabled, allowed physically proximate\n attackers to cause a denial of service (NULL pointer dereference and\n OOPS) via a crafted device (bnc#835839).\n * CVE-2013-7263: The Linux kernel before 3.12.4 updates certain length\n values before ensuring that associated data structures have been\n initialized, which allowed local users to obtain sensitive\n information from kernel stack memory via a (1) recvfrom, (2)\n recvmmsg, or (3) recvmsg system call, related to net/ipv4/ping.c,\n net/ipv4/raw.c, net/ipv4/udp.c, net/ipv6/raw.c, and net/ipv6/udp.c\n (bnc#853040, bnc#857643).\n * CVE-2014-3181: Multiple stack-based buffer overflows in the\n magicmouse_raw_event function in drivers/hid/hid-magicmouse.c in the\n Magic Mouse HID driver in the Linux kernel through 3.16.3 allowed\n physically proximate attackers to cause a denial of service (system\n crash) or possibly execute arbitrary code via a crafted device that\n provides a large amount of (1) EHCI or (2) XHCI data associated with\n an event (bnc#896382).\n * CVE-2014-3184: The report_fixup functions in the HID subsystem in\n the Linux kernel before 3.16.2 allowed physically proximate\n attackers to cause a denial of service (out-of-bounds write) via a\n crafted device that provides a small report descriptor, related to\n (1) drivers/hid/hid-cherry.c, (2) drivers/hid/hid-kye.c, (3)\n drivers/hid/hid-lg.c, (4) drivers/hid/hid-monterey.c, (5)\n drivers/hid/hid-petalynx.c, and (6) drivers/hid/hid-sunplus.c\n (bnc#896390).\n * CVE-2014-3185: Multiple buffer overflows in the\n command_port_read_callback function in\n drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in\n the Linux kernel before 3.16.2 allowed physically proximate\n attackers to execute arbitrary code or cause a denial of service\n (memory corruption and system crash) via a crafted device that\n provides a large amount of (1) EHCI or (2) XHCI data associated with\n a bulk response (bnc#896391).\n * CVE-2014-3186: Buffer overflow in the picolcd_raw_event function in\n devices/hid/hid-picolcd_core.c in the PicoLCD HID device driver in\n the Linux kernel through 3.16.3, as used in Android on Nexus 7\n devices, allowed physically proximate attackers to cause a denial of\n service (system crash) or possibly execute arbitrary code via a\n crafted device that sends a large report (bnc#896392).\n * CVE-2014-3601: The kvm_iommu_map_pages function in virt/kvm/iommu.c\n in the Linux kernel through 3.16.1 miscalculated the number of pages\n during the handling of a mapping failure, which allowed guest OS\n users to (1) cause a denial of service (host OS memory corruption)\n or possibly have unspecified other impact by triggering a large gfn\n value or (2) cause a denial of service (host OS memory consumption)\n by triggering a small gfn value that leads to permanently pinned\n pages (bnc#892782).\n * CVE-2014-3610: The WRMSR processing functionality in the KVM\n subsystem in the Linux kernel through 3.17.2 did not properly handle\n the writing of a non-canonical address to a model-specific register,\n which allowed guest OS users to cause a denial of service (host OS\n crash) by leveraging guest OS privileges, related to the\n wrmsr_interception function in arch/x86/kvm/svm.c and the\n handle_wrmsr function in arch/x86/kvm/vmx.c (bnc#899192).\n * CVE-2014-3646: arch/x86/kvm/vmx.c in the KVM subsystem in the Linux\n kernel through 3.17.2 did not have an exit handler for the INVVPID\n instruction, which allowed guest OS users to cause a denial of\n service (guest OS crash) via a crafted application (bnc#899192).\n * CVE-2014-3647: arch/x86/kvm/emulate.c in the KVM subsystem in the\n Linux kernel through 3.17.2 did not properly perform RIP changes,\n which allowed guest OS users to cause a denial of service (guest OS\n crash) via a crafted application (bnc#899192).\n * CVE-2014-3673: The SCTP implementation in the Linux kernel through\n 3.17.2 allowed remote attackers to cause a denial of service (system\n crash) via a malformed ASCONF chunk, related to\n net/sctp/sm_make_chunk.c and net/sctp/sm_statefuns.c (bnc#902346,\n bnc#902349).\n * CVE-2014-4508: arch/x86/kernel/entry_32.S in the Linux kernel\n through 3.15.1 on 32-bit x86 platforms, when syscall auditing is\n enabled and the sep CPU feature flag is set, allowed local users to\n cause a denial of service (OOPS and system crash) via an invalid\n syscall number, as demonstrated by number 1000 (bnc#883724).\n * CVE-2014-4608: * DISPUTED * Multiple integer overflows in the\n lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in\n the LZO decompressor in the Linux kernel before 3.15.2 allowed\n context-dependent attackers to cause a denial of service (memory\n corruption) via a crafted Literal Run. NOTE: the author of the LZO\n algorithms says: The Linux kernel is not affected; media hype\n (bnc#883948).\n * CVE-2014-7826: kernel/trace/trace_syscalls.c in the Linux kernel\n through 3.17.2 did not properly handle private syscall numbers\n during use of the ftrace subsystem, which allowed local users to\n gain privileges or cause a denial of service (invalid pointer\n dereference) via a crafted application (bnc#904013).\n * CVE-2014-7841: An SCTP server doing ASCONF would panic on malformed\n INIT ping-of-death (bnc#905100).\n * CVE-2014-8709: The ieee80211_fragment function in net/mac80211/tx.c\n in the Linux kernel before 3.13.5 did not properly maintain a\n certain tail pointer, which allowed remote attackers to obtain\n sensitive cleartext information by reading packets (bnc#904700).\n * CVE-2014-8884: A local user with write access could have used this\n flaw to crash the kernel or elevate privileges (bnc#905522).\n\n The following non-security bugs have been fixed:\n\n * Build the KOTD against the SP3 Update project\n * HID: fix kabi breakage.\n * NFS: Provide stub nfs_fscache_wait_on_invalidate() for when\n CONFIG_NFS_FSCACHE=n.\n * NFS: fix inverted test for delegation in nfs4_reclaim_open_state\n (bnc#903331).\n * NFS: remove incorrect Lock reclaim failed! warning (bnc#903331).\n * NFSv4: nfs4_open_done first must check that GETATTR decoded a file\n type (bnc#899574).\n * PCI: pciehp: Clear Data Link Layer State Changed during init\n (bnc#898295).\n * PCI: pciehp: Enable link state change notifications (bnc#898295).\n * PCI: pciehp: Handle push button event asynchronously (bnc#898295).\n * PCI: pciehp: Make check_link_active() non-static (bnc#898295).\n * PCI: pciehp: Use link change notifications for hot-plug and removal\n (bnc#898295).\n * PCI: pciehp: Use per-slot workqueues to avoid deadlock (bnc#898295).\n * PCI: pciehp: Use symbolic constants, not hard-coded bitmask\n (bnc#898295).\n * PM / hibernate: Iterate over set bits instead of PFNs in\n swsusp_free() (bnc#860441).\n * be2net: Fix invocation of be_close() after be_clear() (bnc#895468).\n * block: Fix bogus partition statistics reports (bnc#885077\n bnc#891211).\n * block: Fix computation of merged request priority.\n * btrfs: Fix wrong device size when we are resizing the device.\n * btrfs: Return right extent when fiemap gives unaligned offset and\n len.\n * btrfs: abtract out range locking in clone ioctl().\n * btrfs: always choose work from prio_head first.\n * btrfs: balance delayed inode updates.\n * btrfs: cache extent states in defrag code path.\n * btrfs: check file extent type before anything else (bnc#897694).\n * btrfs: clone, do not create invalid hole extent map.\n * btrfs: correctly determine if blocks are shared in\n btrfs_compare_trees.\n * btrfs: do not bug_on if we try to cow a free space cache inode.\n * btrfs: ensure btrfs_prev_leaf does not miss 1 item.\n * btrfs: ensure readers see new data after a clone operation.\n * btrfs: fill_holes: Fix slot number passed to hole_mergeable() call.\n * btrfs: filter invalid arg for btrfs resize.\n * btrfs: fix EINVAL checks in btrfs_clone.\n * btrfs: fix EIO on reading file after ioctl clone works on it.\n * btrfs: fix a crash of clone with inline extents split.\n * btrfs: fix crash of compressed writes (bnc#898375).\n * btrfs: fix crash when starting transaction.\n * btrfs: fix deadlock with nested trans handles.\n * btrfs: fix hang on error (such as ENOSPC) when writing extent pages.\n * btrfs: fix leaf corruption after __btrfs_drop_extents.\n * btrfs: fix race between balance recovery and root deletion.\n * btrfs: fix wrong extent mapping for DirectIO.\n * btrfs: handle a missing extent for the first file extent.\n * btrfs: limit delalloc pages outside of find_delalloc_range\n (bnc#898375).\n * btrfs: read lock extent buffer while walking backrefs.\n * btrfs: remove unused wait queue in struct extent_buffer.\n * btrfs: replace EINVAL with ERANGE for resize when ULLONG_MAX.\n * btrfs: replace error code from btrfs_drop_extents.\n * btrfs: unlock extent and pages on error in cow_file_range.\n * btrfs: unlock inodes in correct order in clone ioctl.\n * btrfs_ioctl_clone: Move clone code into its own function.\n * cifs: delay super block destruction until all cifsFileInfo objects\n are gone (bnc#903653).\n * drm/i915: Flush the PTEs after updating them before suspend\n (bnc#901638).\n * drm/i915: Undo gtt scratch pte unmapping again (bnc#901638).\n * ext3: return 32/64-bit dir name hash according to usage type\n (bnc#898554).\n * ext4: return 32/64-bit dir name hash according to usage type\n (bnc#898554).\n * fix: use after free of xfs workqueues (bnc#894895).\n * fs: add new FMODE flags: FMODE_32bithash and FMODE_64bithash\n (bnc#898554).\n * futex: Ensure get_futex_key_refs() always implies a barrier\n (bnc#851603 (futex scalability series)).\n * futex: Fix a race condition between REQUEUE_PI and task death\n (bnc#851603 (futex scalability series)).\n * ipv6: add support of peer address (bnc#896415).\n * ipv6: fix a refcnt leak with peer addr (bnc#896415).\n * megaraid_sas: Disable fastpath writes for non-RAID0 (bnc#897502).\n * mm: change __remove_pages() to call release_mem_region_adjustable()\n (bnc#891790).\n * netxen: Fix link event handling (bnc#873228).\n * netxen: fix link notification order (bnc#873228).\n * nfsd: rename int access to int may_flags in nfsd_open() (bnc#898554).\n * nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (bnc#898554).\n * ocfs2: fix NULL pointer dereference in\n ocfs2_duplicate_clusters_by_page (bnc#899843).\n * powerpc: Add smp_mb() to arch_spin_is_locked() (bsc#893758).\n * powerpc: Add smp_mb()s to arch_spin_unlock_wait() (bsc#893758).\n * powerpc: Add support for the optimised lockref implementation\n (bsc#893758).\n * powerpc: Implement arch_spin_is_locked() using\n arch_spin_value_unlocked() (bsc#893758).\n * refresh patches.xen/xen-blkback-multi-page-ring (bnc#897708)).\n * remove filesize checks for sync I/O journal commit (bnc#800255).\n * resource: add __adjust_resource() for internal use (bnc#891790).\n * resource: add release_mem_region_adjustable() (bnc#891790).\n * revert PM / Hibernate: Iterate over set bits instead of PFNs in\n swsusp_free() (bnc#860441).\n * rpm/mkspec: Generate specfiles according to Factory requirements.\n * rpm/mkspec: Generate a per-architecture per-package _constraints file\n * sched: Fix unreleased llc_shared_mask bit during CPU hotplug\n (bnc#891368).\n * scsi_dh_alua: disable ALUA handling for non-disk devices\n (bnc#876633).\n * usb: Do not re-read descriptors for wired devices in\n usb_authorize_device() (bnc#904358).\n * usbback: Do not access request fields in shared ring more than once.\n * usbhid: add another mouse that needs QUIRK_ALWAYS_POLL (bnc#888607).\n * vfs,proc: guarantee unique inodes in /proc (bnc#868049).\n * x86, cpu hotplug: Fix stack frame warning\n incheck_irq_vectors_for_cpu_disable() (bnc#887418).\n * x86, ioremap: Speed up check for RAM pages (Boot time optimisations\n (bnc#895387)).\n * x86: Add check for number of available vectors before CPU down\n (bnc#887418).\n * x86: optimize resource lookups for ioremap (Boot time optimisations\n (bnc#895387)).\n * x86: use optimized ioresource lookup in ioremap function (Boot time\n optimisations (bnc#895387)).\n * xfs: Do not free EFIs before the EFDs are committed (bsc#755743).\n * xfs: Do not reference the EFI after it is freed (bsc#755743).\n * xfs: fix cil push sequence after log recovery (bsc#755743).\n * zcrypt: support for extended number of ap domains (bnc#894058,\n LTC#117041).\n * zcrypt: toleration of new crypto adapter hardware (bnc#894058,\n LTC#117041).\n\n Security Issues:\n\n * CVE-2012-4398\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4398\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4398</a>>\n * CVE-2013-2889\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2889\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2889</a>>\n * CVE-2013-2893\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2893\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2893</a>>\n * CVE-2013-2897\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2897\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2897</a>>\n * CVE-2013-2899\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2899\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2899</a>>\n * CVE-2013-7263\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7263\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7263</a>>\n * CVE-2014-3181\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3181\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3181</a>>\n * CVE-2014-3184\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3184\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3184</a>>\n * CVE-2014-3185\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3185\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3185</a>>\n * CVE-2014-3186\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3186\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3186</a>>\n * CVE-2014-3601\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3601\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3601</a>>\n * CVE-2014-3610\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3610\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3610</a>>\n * CVE-2014-3646\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3646\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3646</a>>\n * CVE-2014-3647\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3647\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3647</a>>\n * CVE-2014-4508\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4508\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4508</a>>\n * CVE-2014-4608\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4608\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4608</a>>\n * CVE-2014-7826\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7826\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7826</a>>\n * CVE-2014-7841\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7841\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7841</a>>\n * CVE-2014-8709\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8709\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8709</a>>\n * CVE-2014-8884\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8884\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8884</a>>\n * CVE-2014-3673\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3673\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3673</a>>\n", "edition": 1, "reporter": "Suse", "published": "2014-12-23T19:06:22", "title": "Security update for Linux kernel (important)", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2014-3646", "CVE-2014-3186", "CVE-2014-3673", "CVE-2014-7841", "CVE-2014-4508", "CVE-2014-3647", "CVE-2014-3610", "CVE-2014-3181", "CVE-2014-8709", "CVE-2014-3185", "CVE-2013-2897", "CVE-2014-3601", "CVE-2014-8884", "CVE-2013-2899", "CVE-2014-4608", "CVE-2013-7263", "CVE-2012-4398", "CVE-2014-7826", "CVE-2013-2889", "CVE-2013-2893", "CVE-2014-3184"], "modified": "2014-12-23T19:06:22", "id": "SUSE-SU-2014:1693-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00027.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:38:48", "references": ["https://bugzilla.suse.com/show_bug.cgi?id=891368", "https://bugzilla.suse.com/show_bug.cgi?id=896391", "https://bugzilla.suse.com/show_bug.cgi?id=897708", "https://bugzilla.suse.com/show_bug.cgi?id=895468", "https://bugzilla.suse.com/show_bug.cgi?id=851603", "https://bugzilla.suse.com/show_bug.cgi?id=891211", "https://bugzilla.suse.com/show_bug.cgi?id=887418", "https://bugzilla.suse.com/show_bug.cgi?id=904700", "https://bugzilla.suse.com/show_bug.cgi?id=898295", "https://bugzilla.suse.com/show_bug.cgi?id=893758", "https://bugzilla.suse.com/show_bug.cgi?id=885077", "https://bugzilla.suse.com/show_bug.cgi?id=883948", "https://bugzilla.suse.com/show_bug.cgi?id=898554", "https://bugzilla.suse.com/show_bug.cgi?id=895387", "https://bugzilla.suse.com/show_bug.cgi?id=899574", "https://bugzilla.suse.com/show_bug.cgi?id=888607", "https://bugzilla.suse.com/show_bug.cgi?id=894058", "https://bugzilla.suse.com/show_bug.cgi?id=853040", "https://bugzilla.suse.com/show_bug.cgi?id=899843", "https://bugzilla.suse.com/show_bug.cgi?id=903653", "https://bugzilla.suse.com/show_bug.cgi?id=903331", "http://download.suse.com/patch/finder/?keywords=7c8bcdf8aeebe75105e56721788b47f9", "https://bugzilla.suse.com/show_bug.cgi?id=905100", "https://bugzilla.suse.com/show_bug.cgi?id=857643", "https://bugzilla.suse.com/show_bug.cgi?id=902349", "https://bugzilla.suse.com/show_bug.cgi?id=904358", "https://bugzilla.suse.com/show_bug.cgi?id=901638", "https://bugzilla.suse.com/show_bug.cgi?id=896390", "https://bugzilla.suse.com/show_bug.cgi?id=896415", "https://bugzilla.suse.com/show_bug.cgi?id=902346", "https://bugzilla.suse.com/show_bug.cgi?id=800255", "https://bugzilla.suse.com/show_bug.cgi?id=779488", "https://bugzilla.suse.com/show_bug.cgi?id=899192", "https://bugzilla.suse.com/show_bug.cgi?id=891790", "https://bugzilla.suse.com/show_bug.cgi?id=868049", "https://bugzilla.suse.com/show_bug.cgi?id=755743", "http://download.suse.com/patch/finder/?keywords=ccd0e8b5f2fdf4059ed078e5d1f571b3", "https://bugzilla.suse.com/show_bug.cgi?id=904013", "https://bugzilla.suse.com/show_bug.cgi?id=896392", "https://bugzilla.suse.com/show_bug.cgi?id=892782", "http://download.suse.com/patch/finder/?keywords=759bd5232756bc1601d59154022f3e0a", "https://bugzilla.suse.com/show_bug.cgi?id=860441", "https://bugzilla.suse.com/show_bug.cgi?id=883724", "https://bugzilla.suse.com/show_bug.cgi?id=876633", "https://bugzilla.suse.com/show_bug.cgi?id=835839", "https://bugzilla.suse.com/show_bug.cgi?id=897502", "https://bugzilla.suse.com/show_bug.cgi?id=896382", "https://bugzilla.suse.com/show_bug.cgi?id=873228", "https://bugzilla.suse.com/show_bug.cgi?id=905522", "https://bugzilla.suse.com/show_bug.cgi?id=897694", "https://bugzilla.suse.com/show_bug.cgi?id=898375", "https://bugzilla.suse.com/show_bug.cgi?id=894895"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default-base", "packageFilename": "kernel-default-base-3.0.101-0.42.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "packageName": "ocfs2-kmp-trace", "packageFilename": "ocfs2-kmp-trace-1.6_3.0.101_0.42-0.20.115.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default-devel", "packageFilename": "kernel-default-devel-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "packageName": "cluster-network-kmp-default", "packageFilename": "cluster-network-kmp-default-1.4_3.0.101_0.42-2.27.115.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace-devel", "packageFilename": "kernel-trace-devel-3.0.101-0.42.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default-devel", "packageFilename": "kernel-default-devel-3.0.101-0.42.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "packageName": "cluster-network-kmp-default", "packageFilename": "cluster-network-kmp-default-1.4_3.0.101_0.42-2.27.115.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "packageName": "cluster-network-kmp-default", "packageFilename": "cluster-network-kmp-default-1.4_3.0.101_0.42-2.27.115.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "packageName": "gfs2-kmp-default", "packageFilename": "gfs2-kmp-default-2_3.0.101_0.42-0.16.121.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace-devel", "packageFilename": "kernel-trace-devel-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-ppc64", "packageFilename": "kernel-ppc64-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "packageName": "gfs2-kmp-ppc64", "packageFilename": "gfs2-kmp-ppc64-2_3.0.101_0.42-0.16.121.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace-base", "packageFilename": "kernel-trace-base-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default-man", "packageFilename": "kernel-default-man-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "packageName": "gfs2-kmp-trace", "packageFilename": "gfs2-kmp-trace-2_3.0.101_0.42-0.16.121.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-syms", "packageFilename": "kernel-syms-3.0.101-0.42.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "packageName": "cluster-network-kmp-trace", "packageFilename": "cluster-network-kmp-trace-1.4_3.0.101_0.42-2.27.115.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace-base", "packageFilename": "kernel-trace-base-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default", "packageFilename": "kernel-default-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace-base", "packageFilename": "kernel-trace-base-3.0.101-0.42.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "packageName": "ocfs2-kmp-default", "packageFilename": "ocfs2-kmp-default-1.6_3.0.101_0.42-0.20.115.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "packageName": "cluster-network-kmp-trace", "packageFilename": "cluster-network-kmp-trace-1.4_3.0.101_0.42-2.27.115.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "packageName": "cluster-network-kmp-trace", "packageFilename": "cluster-network-kmp-trace-1.4_3.0.101_0.42-2.27.115.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default", "packageFilename": "kernel-default-3.0.101-0.42.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default-base", "packageFilename": "kernel-default-base-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-syms", "packageFilename": "kernel-syms-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default-devel", "packageFilename": "kernel-default-devel-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_0.42-2.27.115", "packageName": "cluster-network-kmp-ppc64", "packageFilename": "cluster-network-kmp-ppc64-1.4_3.0.101_0.42-2.27.115.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace", "packageFilename": "kernel-trace-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "packageName": "gfs2-kmp-default", "packageFilename": "gfs2-kmp-default-2_3.0.101_0.42-0.16.121.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "packageName": "gfs2-kmp-default", "packageFilename": "gfs2-kmp-default-2_3.0.101_0.42-0.16.121.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default", "packageFilename": "kernel-default-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-source", "packageFilename": "kernel-source-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-source", "packageFilename": "kernel-source-3.0.101-0.42.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-ppc64-devel", "packageFilename": "kernel-ppc64-devel-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace", "packageFilename": "kernel-trace-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "packageName": "ocfs2-kmp-default", "packageFilename": "ocfs2-kmp-default-1.6_3.0.101_0.42-0.20.115.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace", "packageFilename": "kernel-trace-3.0.101-0.42.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "packageName": "gfs2-kmp-trace", "packageFilename": "gfs2-kmp-trace-2_3.0.101_0.42-0.16.121.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "2_3.0.101_0.42-0.16.121", "packageName": "gfs2-kmp-trace", "packageFilename": "gfs2-kmp-trace-2_3.0.101_0.42-0.16.121.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "packageName": "ocfs2-kmp-ppc64", "packageFilename": "ocfs2-kmp-ppc64-1.6_3.0.101_0.42-0.20.115.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-syms", "packageFilename": "kernel-syms-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-source", "packageFilename": "kernel-source-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "packageName": "ocfs2-kmp-default", "packageFilename": "ocfs2-kmp-default-1.6_3.0.101_0.42-0.20.115.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-ppc64-base", "packageFilename": "kernel-ppc64-base-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "packageName": "ocfs2-kmp-trace", "packageFilename": "ocfs2-kmp-trace-1.6_3.0.101_0.42-0.20.115.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise High Availability Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_0.42-0.20.115", "packageName": "ocfs2-kmp-trace", "packageFilename": "ocfs2-kmp-trace-1.6_3.0.101_0.42-0.20.115.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-default-base", "packageFilename": "kernel-default-base-3.0.101-0.42.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "3.0.101-0.42.1", "packageName": "kernel-trace-devel", "packageFilename": "kernel-trace-devel-3.0.101-0.42.1.s390x.rpm", "arch": "s390x", "operator": "lt"}], "description": "The SUSE Linux Enterprise 11 Service Pack 3 kernel has been updated to fix\n various bugs and security issues.\n\n The following security bugs have been fixed:\n\n * CVE-2012-4398: The __request_module function in kernel/kmod.c in the\n Linux kernel before 3.4 did not set a certain killable attribute,\n which allowed local users to cause a denial of service (memory\n consumption) via a crafted application (bnc#779488).\n * CVE-2013-2889: drivers/hid/hid-zpff.c in the Human Interface Device\n (HID) subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_ZEROPLUS is enabled, allowed physically proximate\n attackers to cause a denial of service (heap-based out-of-bounds\n write) via a crafted device (bnc#835839).\n * CVE-2013-2893: The Human Interface Device (HID) subsystem in the\n Linux kernel through 3.11, when CONFIG_LOGITECH_FF,\n CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF is enabled, allowed\n physically proximate attackers to cause a denial of service\n (heap-based out-of-bounds write) via a crafted device, related to\n (1) drivers/hid/hid-lgff.c, (2) drivers/hid/hid-lg3ff.c, and (3)\n drivers/hid/hid-lg4ff.c (bnc#835839).\n * CVE-2013-2897: Multiple array index errors in\n drivers/hid/hid-multitouch.c in the Human Interface Device (HID)\n subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_MULTITOUCH is enabled, allowed physically proximate\n attackers to cause a denial of service (heap memory corruption, or\n NULL pointer dereference and OOPS) via a crafted device (bnc#835839).\n * CVE-2013-2899: drivers/hid/hid-picolcd_core.c in the Human Interface\n Device (HID) subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_PICOLCD is enabled, allowed physically proximate\n attackers to cause a denial of service (NULL pointer dereference and\n OOPS) via a crafted device (bnc#835839).\n * CVE-2013-7263: The Linux kernel before 3.12.4 updates certain length\n values before ensuring that associated data structures have been\n initialized, which allowed local users to obtain sensitive\n information from kernel stack memory via a (1) recvfrom, (2)\n recvmmsg, or (3) recvmsg system call, related to net/ipv4/ping.c,\n net/ipv4/raw.c, net/ipv4/udp.c, net/ipv6/raw.c, and net/ipv6/udp.c\n (bnc#853040, bnc#857643).\n * CVE-2014-3181: Multiple stack-based buffer overflows in the\n magicmouse_raw_event function in drivers/hid/hid-magicmouse.c in the\n Magic Mouse HID driver in the Linux kernel through 3.16.3 allowed\n physically proximate attackers to cause a denial of service (system\n crash) or possibly execute arbitrary code via a crafted device that\n provides a large amount of (1) EHCI or (2) XHCI data associated with\n an event (bnc#896382).\n * CVE-2014-3184: The report_fixup functions in the HID subsystem in\n the Linux kernel before 3.16.2 allowed physically proximate\n attackers to cause a denial of service (out-of-bounds write) via a\n crafted device that provides a small report descriptor, related to\n (1) drivers/hid/hid-cherry.c, (2) drivers/hid/hid-kye.c, (3)\n drivers/hid/hid-lg.c, (4) drivers/hid/hid-monterey.c, (5)\n drivers/hid/hid-petalynx.c, and (6) drivers/hid/hid-sunplus.c\n (bnc#896390).\n * CVE-2014-3185: Multiple buffer overflows in the\n command_port_read_callback function in\n drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in\n the Linux kernel before 3.16.2 allowed physically proximate\n attackers to execute arbitrary code or cause a denial of service\n (memory corruption and system crash) via a crafted device that\n provides a large amount of (1) EHCI or (2) XHCI data associated with\n a bulk response (bnc#896391).\n * CVE-2014-3186: Buffer overflow in the picolcd_raw_event function in\n devices/hid/hid-picolcd_core.c in the PicoLCD HID device driver in\n the Linux kernel through 3.16.3, as used in Android on Nexus 7\n devices, allowed physically proximate attackers to cause a denial of\n service (system crash) or possibly execute arbitrary code via a\n crafted device that sends a large report (bnc#896392).\n * CVE-2014-3601: The kvm_iommu_map_pages function in virt/kvm/iommu.c\n in the Linux kernel through 3.16.1 miscalculated the number of pages\n during the handling of a mapping failure, which allowed guest OS\n users to (1) cause a denial of service (host OS memory corruption)\n or possibly have unspecified other impact by triggering a large gfn\n value or (2) cause a denial of service (host OS memory consumption)\n by triggering a small gfn value that leads to permanently pinned\n pages (bnc#892782).\n * CVE-2014-3610: The WRMSR processing functionality in the KVM\n subsystem in the Linux kernel through 3.17.2 did not properly handle\n the writing of a non-canonical address to a model-specific register,\n which allowed guest OS users to cause a denial of service (host OS\n crash) by leveraging guest OS privileges, related to the\n wrmsr_interception function in arch/x86/kvm/svm.c and the\n handle_wrmsr function in arch/x86/kvm/vmx.c (bnc#899192).\n * CVE-2014-3646: arch/x86/kvm/vmx.c in the KVM subsystem in the Linux\n kernel through 3.17.2 did not have an exit handler for the INVVPID\n instruction, which allowed guest OS users to cause a denial of\n service (guest OS crash) via a crafted application (bnc#899192).\n * CVE-2014-3647: arch/x86/kvm/emulate.c in the KVM subsystem in the\n Linux kernel through 3.17.2 did not properly perform RIP changes,\n which allowed guest OS users to cause a denial of service (guest OS\n crash) via a crafted application (bnc#899192).\n * CVE-2014-3673: The SCTP implementation in the Linux kernel through\n 3.17.2 allowed remote attackers to cause a denial of service (system\n crash) via a malformed ASCONF chunk, related to\n net/sctp/sm_make_chunk.c and net/sctp/sm_statefuns.c (bnc#902346,\n bnc#902349).\n * CVE-2014-4508: arch/x86/kernel/entry_32.S in the Linux kernel\n through 3.15.1 on 32-bit x86 platforms, when syscall auditing is\n enabled and the sep CPU feature flag is set, allowed local users to\n cause a denial of service (OOPS and system crash) via an invalid\n syscall number, as demonstrated by number 1000 (bnc#883724).\n * CVE-2014-4608: * DISPUTED * Multiple integer overflows in the\n lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in\n the LZO decompressor in the Linux kernel before 3.15.2 allowed\n context-dependent attackers to cause a denial of service (memory\n corruption) via a crafted Literal Run. NOTE: the author of the LZO\n algorithms says: The Linux kernel is not affected; media hype\n (bnc#883948).\n * CVE-2014-7826: kernel/trace/trace_syscalls.c in the Linux kernel\n through 3.17.2 did not properly handle private syscall numbers\n during use of the ftrace subsystem, which allowed local users to\n gain privileges or cause a denial of service (invalid pointer\n dereference) via a crafted application (bnc#904013).\n * CVE-2014-7841: An SCTP server doing ASCONF would panic on malformed\n INIT ping-of-death (bnc#905100).\n * CVE-2014-8709: The ieee80211_fragment function in net/mac80211/tx.c\n in the Linux kernel before 3.13.5 did not properly maintain a\n certain tail pointer, which allowed remote attackers to obtain\n sensitive cleartext information by reading packets (bnc#904700).\n * CVE-2014-8884: A local user with write access could have used this\n flaw to crash the kernel or elevate privileges (bnc#905522).\n\n The following non-security bugs have been fixed:\n\n * Build the KOTD against the SP3 Update project\n * HID: fix kabi breakage.\n * NFS: Provide stub nfs_fscache_wait_on_invalidate() for when\n CONFIG_NFS_FSCACHE=n.\n * NFS: fix inverted test for delegation in nfs4_reclaim_open_state\n (bnc#903331).\n * NFS: remove incorrect Lock reclaim failed! warning (bnc#903331).\n * NFSv4: nfs4_open_done first must check that GETATTR decoded a file\n type (bnc#899574).\n * PCI: pciehp: Clear Data Link Layer State Changed during init\n (bnc#898295).\n * PCI: pciehp: Enable link state change notifications (bnc#898295).\n * PCI: pciehp: Handle push button event asynchronously (bnc#898295).\n * PCI: pciehp: Make check_link_active() non-static (bnc#898295).\n * PCI: pciehp: Use link change notifications for hot-plug and removal\n (bnc#898295).\n * PCI: pciehp: Use per-slot workqueues to avoid deadlock (bnc#898295).\n * PCI: pciehp: Use symbolic constants, not hard-coded bitmask\n (bnc#898295).\n * PM / hibernate: Iterate over set bits instead of PFNs in\n swsusp_free() (bnc#860441).\n * be2net: Fix invocation of be_close() after be_clear() (bnc#895468).\n * block: Fix bogus partition statistics reports (bnc#885077\n bnc#891211).\n * block: Fix computation of merged request priority.\n * btrfs: Fix wrong device size when we are resizing the device.\n * btrfs: Return right extent when fiemap gives unaligned offset and\n len.\n * btrfs: abtract out range locking in clone ioctl().\n * btrfs: always choose work from prio_head first.\n * btrfs: balance delayed inode updates.\n * btrfs: cache extent states in defrag code path.\n * btrfs: check file extent type before anything else (bnc#897694).\n * btrfs: clone, do not create invalid hole extent map.\n * btrfs: correctly determine if blocks are shared in\n btrfs_compare_trees.\n * btrfs: do not bug_on if we try to cow a free space cache inode.\n * btrfs: ensure btrfs_prev_leaf does not miss 1 item.\n * btrfs: ensure readers see new data after a clone operation.\n * btrfs: fill_holes: Fix slot number passed to hole_mergeable() call.\n * btrfs: filter invalid arg for btrfs resize.\n * btrfs: fix EINVAL checks in btrfs_clone.\n * btrfs: fix EIO on reading file after ioctl clone works on it.\n * btrfs: fix a crash of clone with inline extents split.\n * btrfs: fix crash of compressed writes (bnc#898375).\n * btrfs: fix crash when starting transaction.\n * btrfs: fix deadlock with nested trans handles.\n * btrfs: fix hang on error (such as ENOSPC) when writing extent pages.\n * btrfs: fix leaf corruption after __btrfs_drop_extents.\n * btrfs: fix race between balance recovery and root deletion.\n * btrfs: fix wrong extent mapping for DirectIO.\n * btrfs: handle a missing extent for the first file extent.\n * btrfs: limit delalloc pages outside of find_delalloc_range\n (bnc#898375).\n * btrfs: read lock extent buffer while walking backrefs.\n * btrfs: remove unused wait queue in struct extent_buffer.\n * btrfs: replace EINVAL with ERANGE for resize when ULLONG_MAX.\n * btrfs: replace error code from btrfs_drop_extents.\n * btrfs: unlock extent and pages on error in cow_file_range.\n * btrfs: unlock inodes in correct order in clone ioctl.\n * btrfs_ioctl_clone: Move clone code into its own function.\n * cifs: delay super block destruction until all cifsFileInfo objects\n are gone (bnc#903653).\n * drm/i915: Flush the PTEs after updating them before suspend\n (bnc#901638).\n * drm/i915: Undo gtt scratch pte unmapping again (bnc#901638).\n * ext3: return 32/64-bit dir name hash according to usage type\n (bnc#898554).\n * ext4: return 32/64-bit dir name hash according to usage type\n (bnc#898554).\n * fix: use after free of xfs workqueues (bnc#894895).\n * fs: add new FMODE flags: FMODE_32bithash and FMODE_64bithash\n (bnc#898554).\n * futex: Ensure get_futex_key_refs() always implies a barrier\n (bnc#851603 (futex scalability series)).\n * futex: Fix a race condition between REQUEUE_PI and task death\n (bnc#851603 (futex scalability series)).\n * ipv6: add support of peer address (bnc#896415).\n * ipv6: fix a refcnt leak with peer addr (bnc#896415).\n * megaraid_sas: Disable fastpath writes for non-RAID0 (bnc#897502).\n * mm: change __remove_pages() to call release_mem_region_adjustable()\n (bnc#891790).\n * netxen: Fix link event handling (bnc#873228).\n * netxen: fix link notification order (bnc#873228).\n * nfsd: rename int access to int may_flags in nfsd_open() (bnc#898554).\n * nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (bnc#898554).\n * ocfs2: fix NULL pointer dereference in\n ocfs2_duplicate_clusters_by_page (bnc#899843).\n * powerpc: Add smp_mb() to arch_spin_is_locked() (bsc#893758).\n * powerpc: Add smp_mb()s to arch_spin_unlock_wait() (bsc#893758).\n * powerpc: Add support for the optimised lockref implementation\n (bsc#893758).\n * powerpc: Implement arch_spin_is_locked() using\n arch_spin_value_unlocked() (bsc#893758).\n * refresh patches.xen/xen-blkback-multi-page-ring (bnc#897708)).\n * remove filesize checks for sync I/O journal commit (bnc#800255).\n * resource: add __adjust_resource() for internal use (bnc#891790).\n * resource: add release_mem_region_adjustable() (bnc#891790).\n * revert PM / Hibernate: Iterate over set bits instead of PFNs in\n swsusp_free() (bnc#860441).\n * rpm/mkspec: Generate specfiles according to Factory requirements.\n * rpm/mkspec: Generate a per-architecture per-package _constraints file\n * sched: Fix unreleased llc_shared_mask bit during CPU hotplug\n (bnc#891368).\n * scsi_dh_alua: disable ALUA handling for non-disk devices\n (bnc#876633).\n * usb: Do not re-read descriptors for wired devices in\n usb_authorize_device() (bnc#904358).\n * usbback: Do not access request fields in shared ring more than once.\n * usbhid: add another mouse that needs QUIRK_ALWAYS_POLL (bnc#888607).\n * vfs,proc: guarantee unique inodes in /proc (bnc#868049).\n * x86, cpu hotplug: Fix stack frame warning\n incheck_irq_vectors_for_cpu_disable() (bnc#887418).\n * x86, ioremap: Speed up check for RAM pages (Boot time optimisations\n (bnc#895387)).\n * x86: Add check for number of available vectors before CPU down\n (bnc#887418).\n * x86: optimize resource lookups for ioremap (Boot time optimisations\n (bnc#895387)).\n * x86: use optimized ioresource lookup in ioremap function (Boot time\n optimisations (bnc#895387)).\n * xfs: Do not free EFIs before the EFDs are committed (bsc#755743).\n * xfs: Do not reference the EFI after it is freed (bsc#755743).\n * xfs: fix cil push sequence after log recovery (bsc#755743).\n * zcrypt: support for extended number of ap domains (bnc#894058,\n LTC#117041).\n * zcrypt: toleration of new crypto adapter hardware (bnc#894058,\n LTC#117041).\n\n Security Issues:\n\n * CVE-2012-4398\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4398\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4398</a>>\n * CVE-2013-2889\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2889\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2889</a>>\n * CVE-2013-2893\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2893\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2893</a>>\n * CVE-2013-2897\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2897\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2897</a>>\n * CVE-2013-2899\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2899\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2899</a>>\n * CVE-2013-7263\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7263\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7263</a>>\n * CVE-2014-3181\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3181\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3181</a>>\n * CVE-2014-3184\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3184\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3184</a>>\n * CVE-2014-3185\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3185\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3185</a>>\n * CVE-2014-3186\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3186\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3186</a>>\n * CVE-2014-3601\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3601\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3601</a>>\n * CVE-2014-3610\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3610\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3610</a>>\n * CVE-2014-3646\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3646\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3646</a>>\n * CVE-2014-3647\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3647\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3647</a>>\n * CVE-2014-4508\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4508\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4508</a>>\n * CVE-2014-4608\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4608\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4608</a>>\n * CVE-2014-7826\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7826\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7826</a>>\n * CVE-2014-7841\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7841\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7841</a>>\n * CVE-2014-8709\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8709\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8709</a>>\n * CVE-2014-8884\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8884\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8884</a>>\n * CVE-2014-3673\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3673\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3673</a>>\n", "edition": 1, "reporter": "Suse", "published": "2014-12-24T08:08:49", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "type": "suse", "title": "Security update for Linux kernel (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2014-3646", "CVE-2014-3186", "CVE-2014-3673", "CVE-2014-7841", "CVE-2014-4508", "CVE-2014-3647", "CVE-2014-3610", "CVE-2014-3181", "CVE-2014-8709", "CVE-2014-3185", "CVE-2013-2897", "CVE-2014-3601", "CVE-2014-8884", "CVE-2013-2899", "CVE-2014-4608", "CVE-2013-7263", "CVE-2012-4398", "CVE-2014-7826", "CVE-2013-2889", "CVE-2013-2893", "CVE-2014-3184"], "modified": "2014-12-24T08:08:49", "id": "SUSE-SU-2014:1693-2", "href": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00033.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:28:40", "references": ["https://bugzilla.suse.com/show_bug.cgi?id=891368", "https://bugzilla.suse.com/show_bug.cgi?id=896391", "https://bugzilla.suse.com/show_bug.cgi?id=897708", "https://bugzilla.suse.com/show_bug.cgi?id=895468", "https://bugzilla.suse.com/show_bug.cgi?id=851603", "https://bugzilla.suse.com/show_bug.cgi?id=891211", "https://bugzilla.suse.com/show_bug.cgi?id=887418", "https://bugzilla.suse.com/show_bug.cgi?id=904700", "https://bugzilla.suse.com/show_bug.cgi?id=898295", "https://bugzilla.suse.com/show_bug.cgi?id=893758", "https://bugzilla.suse.com/show_bug.cgi?id=885077", "https://bugzilla.suse.com/show_bug.cgi?id=883948", "https://bugzilla.suse.com/show_bug.cgi?id=898554", "https://bugzilla.suse.com/show_bug.cgi?id=895387", "https://bugzilla.suse.com/show_bug.cgi?id=899574", "http://download.suse.com/patch/finder/?keywords=4c2fbbe393eb620db11efdb808134fc2", "https://bugzilla.suse.com/show_bug.cgi?id=888607", "https://bugzilla.suse.com/show_bug.cgi?id=894058", "https://bugzilla.suse.com/show_bug.cgi?id=853040", "https://bugzilla.suse.com/show_bug.cgi?id=899843", "https://bugzilla.suse.com/show_bug.cgi?id=903653", "https://bugzilla.suse.com/show_bug.cgi?id=903331", "https://bugzilla.suse.com/show_bug.cgi?id=905100", "https://bugzilla.suse.com/show_bug.cgi?id=857643", "https://bugzilla.suse.com/show_bug.cgi?id=902349", "https://bugzilla.suse.com/show_bug.cgi?id=904358", "https://bugzilla.suse.com/show_bug.cgi?id=901638", "https://bugzilla.suse.com/show_bug.cgi?id=896390", "https://bugzilla.suse.com/show_bug.cgi?id=896415", "https://bugzilla.suse.com/show_bug.cgi?id=902346", "https://bugzilla.suse.com/show_bug.cgi?id=800255", "https://bugzilla.suse.com/show_bug.cgi?id=779488", "https://bugzilla.suse.com/show_bug.cgi?id=899192", "https://bugzilla.suse.com/show_bug.cgi?id=891790", "https://bugzilla.suse.com/show_bug.cgi?id=868049", "https://bugzilla.suse.com/show_bug.cgi?id=755743", "https://bugzilla.suse.com/show_bug.cgi?id=904013", "https://bugzilla.suse.com/show_bug.cgi?id=896392", "https://bugzilla.suse.com/show_bug.cgi?id=892782", "https://bugzilla.suse.com/show_bug.cgi?id=909077", "https://bugzilla.suse.com/show_bug.cgi?id=910251", "https://bugzilla.suse.com/show_bug.cgi?id=860441", "https://bugzilla.suse.com/show_bug.cgi?id=883724", "https://bugzilla.suse.com/show_bug.cgi?id=907818", "https://bugzilla.suse.com/show_bug.cgi?id=876633", "https://bugzilla.suse.com/show_bug.cgi?id=835839", "https://bugzilla.suse.com/show_bug.cgi?id=897502", "https://bugzilla.suse.com/show_bug.cgi?id=896382", "https://bugzilla.suse.com/show_bug.cgi?id=873228", "https://bugzilla.suse.com/show_bug.cgi?id=905522", "https://bugzilla.suse.com/show_bug.cgi?id=897694", "https://bugzilla.suse.com/show_bug.cgi?id=898375", "https://bugzilla.suse.com/show_bug.cgi?id=894895"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_rt130_0.32-2.27.121", "packageFilename": "cluster-network-kmp-rt_trace-1.4_3.0.101_rt130_0.32-2.27.121.x86_64.rpm", "packageName": "cluster-network-kmp-rt_trace", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "3.0.101.rt130-0.32.1", "packageFilename": "kernel-syms-rt-3.0.101.rt130-0.32.1.x86_64.rpm", "packageName": "kernel-syms-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "3.0.101.rt130-0.32.1", "packageFilename": "kernel-source-rt-3.0.101.rt130-0.32.1.x86_64.rpm", "packageName": "kernel-source-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_rt130_0.32-0.20.121", "packageFilename": "ocfs2-kmp-rt_trace-1.6_3.0.101_rt130_0.32-0.20.121.x86_64.rpm", "packageName": "ocfs2-kmp-rt_trace", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "3.0.101.rt130-0.32.1", "packageFilename": "kernel-rt_trace-base-3.0.101.rt130-0.32.1.x86_64.rpm", "packageName": "kernel-rt_trace-base", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "1.4_3.0.101_rt130_0.32-2.27.121", "packageFilename": "cluster-network-kmp-rt-1.4_3.0.101_rt130_0.32-2.27.121.x86_64.rpm", "packageName": "cluster-network-kmp-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "2.1.1_3.0.101_rt130_0.32-0.11.96", "packageFilename": "lttng-modules-kmp-rt_trace-2.1.1_3.0.101_rt130_0.32-0.11.96.x86_64.rpm", "packageName": "lttng-modules-kmp-rt_trace", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "1.4.20_3.0.101_rt130_0.32-0.38.106", "packageFilename": "iscsitarget-kmp-rt-1.4.20_3.0.101_rt130_0.32-0.38.106.x86_64.rpm", "packageName": "iscsitarget-kmp-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "3.0.101.rt130-0.32.1", "packageFilename": "kernel-rt-devel-3.0.101.rt130-0.32.1.x86_64.rpm", "packageName": "kernel-rt-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "1.4.20_3.0.101_rt130_0.32-0.38.106", "packageFilename": "iscsitarget-kmp-rt_trace-1.4.20_3.0.101_rt130_0.32-0.38.106.x86_64.rpm", "packageName": "iscsitarget-kmp-rt_trace", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "3.0.101.rt130-0.32.1", "packageFilename": "kernel-rt_trace-devel-3.0.101.rt130-0.32.1.x86_64.rpm", "packageName": "kernel-rt_trace-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "3.0.101.rt130-0.32.1", "packageFilename": "kernel-rt-3.0.101.rt130-0.32.1.x86_64.rpm", "packageName": "kernel-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "1.6_3.0.101_rt130_0.32-0.20.121", "packageFilename": "ocfs2-kmp-rt-1.6_3.0.101_rt130_0.32-0.20.121.x86_64.rpm", "packageName": "ocfs2-kmp-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "3.0.101.rt130-0.32.1", "packageFilename": "kernel-rt-base-3.0.101.rt130-0.32.1.x86_64.rpm", "packageName": "kernel-rt-base", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "8.4.4_3.0.101_rt130_0.32-0.22.87", "packageFilename": "drbd-kmp-rt-8.4.4_3.0.101_rt130_0.32-0.22.87.x86_64.rpm", "packageName": "drbd-kmp-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "8.4.4_3.0.101_rt130_0.32-0.22.87", "packageFilename": "drbd-kmp-rt_trace-8.4.4_3.0.101_rt130_0.32-0.22.87.x86_64.rpm", "packageName": "drbd-kmp-rt_trace", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "1.5.4.1_3.0.101_rt130_0.32-0.13.112", "packageFilename": "ofed-kmp-rt-1.5.4.1_3.0.101_rt130_0.32-0.13.112.x86_64.rpm", "packageName": "ofed-kmp-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "3.0.101.rt130-0.32.1", "packageFilename": "kernel-rt_trace-3.0.101.rt130-0.32.1.x86_64.rpm", "packageName": "kernel-rt_trace", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "2.1.1_3.0.101_rt130_0.32-0.11.96", "packageFilename": "lttng-modules-kmp-rt-2.1.1_3.0.101_rt130_0.32-0.11.96.x86_64.rpm", "packageName": "lttng-modules-kmp-rt", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Real Time Extension", "OSVersion": "11.3", "packageVersion": "1.5.4.1_3.0.101_rt130_0.32-0.13.112", "packageFilename": "ofed-kmp-rt_trace-1.5.4.1_3.0.101_rt130_0.32-0.13.112.x86_64.rpm", "packageName": "ofed-kmp-rt_trace", "arch": "x86_64", "operator": "lt"}], "description": "The SUSE Linux Enterprise 11 Service Pack 3 kernel has been updated to fix\n various bugs and security issues.\n\n The following security bugs have been fixed:\n\n * CVE-2012-4398: The __request_module function in kernel/kmod.c in the\n Linux kernel before 3.4 did not set a certain killable attribute,\n which allowed local users to cause a denial of service (memory\n consumption) via a crafted application (bnc#779488).\n * CVE-2013-2889: drivers/hid/hid-zpff.c in the Human Interface Device\n (HID) subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_ZEROPLUS is enabled, allowed physically proximate\n attackers to cause a denial of service (heap-based out-of-bounds\n write) via a crafted device (bnc#835839).\n * CVE-2013-2893: The Human Interface Device (HID) subsystem in the\n Linux kernel through 3.11, when CONFIG_LOGITECH_FF,\n CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF is enabled, allowed\n physically proximate attackers to cause a denial of service\n (heap-based out-of-bounds write) via a crafted device, related to\n (1) drivers/hid/hid-lgff.c, (2) drivers/hid/hid-lg3ff.c, and (3)\n drivers/hid/hid-lg4ff.c (bnc#835839).\n * CVE-2013-2897: Multiple array index errors in\n drivers/hid/hid-multitouch.c in the Human Interface Device (HID)\n subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_MULTITOUCH is enabled, allowed physically proximate\n attackers to cause a denial of service (heap memory corruption, or\n NULL pointer dereference and OOPS) via a crafted device (bnc#835839).\n * CVE-2013-2899: drivers/hid/hid-picolcd_core.c in the Human Interface\n Device (HID) subsystem in the Linux kernel through 3.11, when\n CONFIG_HID_PICOLCD is enabled, allowed physically proximate\n attackers to cause a denial of service (NULL pointer dereference and\n OOPS) via a crafted device (bnc#835839).\n * CVE-2013-7263: The Linux kernel before 3.12.4 updates certain length\n values before ensuring that associated data structures have been\n initialized, which allowed local users to obtain sensitive\n information from kernel stack memory via a (1) recvfrom, (2)\n recvmmsg, or (3) recvmsg system call, related to net/ipv4/ping.c,\n net/ipv4/raw.c, net/ipv4/udp.c, net/ipv6/raw.c, and net/ipv6/udp.c\n (bnc#853040, bnc#857643).\n * CVE-2014-3181: Multiple stack-based buffer overflows in the\n magicmouse_raw_event function in drivers/hid/hid-magicmouse.c in the\n Magic Mouse HID driver in the Linux kernel through 3.16.3 allowed\n physically proximate attackers to cause a denial of service (system\n crash) or possibly execute arbitrary code via a crafted device that\n provides a large amount of (1) EHCI or (2) XHCI data associated with\n an event (bnc#896382).\n * CVE-2014-3184: The report_fixup functions in the HID subsystem in\n the Linux kernel before 3.16.2 allowed physically proximate\n attackers to cause a denial of service (out-of-bounds wr