Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (c) 2011 Greenbone Networks GmbHOPENVAS:1361412562310840592
HistoryFeb 28, 2011 - 12:00 a.m.

Ubuntu Update for linux, linux-ec2 vulnerabilities USN-1073-1

2011-02-2800:00:00
Copyright (c) 2011 Greenbone Networks GmbH
plugins.openvas.org
25

0.063 Low

EPSS

Percentile

92.9%

JSON

Ubuntu Update for Linux kernel vulnerabilities USN-1073-1

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_ubuntu_USN_1073_1.nasl 14132 2019-03-13 09:25:59Z cfischer $
#
# Ubuntu Update for linux, linux-ec2 vulnerabilities USN-1073-1
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

if(description)
{
  script_xref(name:"URL", value:"http://www.ubuntu.com/usn/usn-1073-1/");
  script_oid("1.3.6.1.4.1.25623.1.0.840592");
  script_version("$Revision: 14132 $");
  script_tag(name:"last_modification", value:"$Date: 2019-03-13 10:25:59 +0100 (Wed, 13 Mar 2019) $");
  script_tag(name:"creation_date", value:"2011-02-28 16:24:14 +0100 (Mon, 28 Feb 2011)");
  script_tag(name:"cvss_base", value:"7.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_xref(name:"USN", value:"1073-1");
  script_cve_id("CVE-2010-0435", "CVE-2010-3448", "CVE-2010-3698", "CVE-2010-3859", "CVE-2010-3865", "CVE-2010-3873", "CVE-2010-3874", "CVE-2010-3875", "CVE-2010-3876", "CVE-2010-3877", "CVE-2010-3880", "CVE-2010-4074", "CVE-2010-4078", "CVE-2010-4079", "CVE-2010-4080", "CVE-2010-4081", "CVE-2010-4082", "CVE-2010-4083", "CVE-2010-4157", "CVE-2010-4160", "CVE-2010-4165", "CVE-2010-4169", "CVE-2010-4248", "CVE-2010-4249");
  script_name("Ubuntu Update for linux, linux-ec2 vulnerabilities USN-1073-1");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2011 Greenbone Networks GmbH");
  script_family("Ubuntu Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU9\.10");
  script_tag(name:"summary", value:"Ubuntu Update for Linux kernel vulnerabilities USN-1073-1");
  script_tag(name:"affected", value:"linux, linux-ec2 vulnerabilities on Ubuntu 9.10");
  script_tag(name:"solution", value:"Please Install the Updated Packages.");
  script_tag(name:"insight", value:"Gleb Napatov discovered that KVM did not correctly check certain privileged
  operations. A local attacker with access to a guest kernel could exploit
  this to crash the host system, leading to a denial of service.
  (CVE-2010-0435)

  Dan Jacobson discovered that ThinkPad video output was not correctly access
  controlled. A local attacker could exploit this to hang the system, leading
  to a denial of service. (CVE-2010-3448)

  It was discovered that KVM did not correctly initialize certain CPU
  registers. A local attacker could exploit this to crash the system, leading
  to a denial of service. (CVE-2010-3698)

  Dan Rosenberg discovered that the Linux kernel TIPC implementation
  contained multiple integer signedness errors. A local attacker could
  exploit this to gain root privileges. (CVE-2010-3859)

  Thomas Pollet discovered that the RDS network protocol did not
  check certain iovec buffers. A local attacker could exploit this
  to crash the system or possibly execute arbitrary code as the root
  user. (CVE-2010-3865)

  Dan Rosenberg discovered that the Linux kernel X.25 implementation
  incorrectly parsed facilities. A remote attacker could exploit this to
  crash the kernel, leading to a denial of service. (CVE-2010-3873)

  Dan Rosenberg discovered that the CAN protocol on 64bit systems did not
  correctly calculate the size of certain buffers. A local attacker could
  exploit this to crash the system or possibly execute arbitrary code as
  the root user. (CVE-2010-3874)

  Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did
  not correctly clear kernel memory. A local attacker could exploit this to
  read kernel stack memory, leading to a loss of privacy. (CVE-2010-3875)

  Vasiliy Kulikov discovered that the Linux kernel sockets implementation did
  not properly initialize certain structures. A local attacker could exploit
  this to read kernel stack memory, leading to a loss of privacy.
  (CVE-2010-3876)

  Vasiliy Kulikov discovered that the TIPC interface did not correctly
  initialize certain structures. A local attacker could exploit this to read
  kernel stack memory, leading to a loss of privacy. (CVE-2010-3877)

  Nelson Elhage discovered that the Linux kernel IPv4 implementation did not
  properly audit certain bytecodes in netlink messages. A local attacker
  could exploit this to cause the kernel to hang, leading to a denial of
  service. (CVE-2010-3880)

  Dan Rosenberg discovered that the USB subsystem did not correctly
  initialize certain structures. A local attacker could exploit this to read ...

  Description truncated, please see the referenced URL(s) for more information.");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-deb.inc");

release = dpkg_get_ssh_release();
if(!release)
  exit(0);

res = "";

if(release == "UBUNTU9.10")
{

  if ((res = isdpkgvuln(pkg:"linux-headers-2.6.31-307-ec2", ver:"2.6.31-307.27", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-image-2.6.31-307-ec2", ver:"2.6.31-307.27", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-headers-2.6.31-22-386", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-headers-2.6.31-22-generic-pae", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-headers-2.6.31-22-generic", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-image-2.6.31-22-386", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-image-2.6.31-22-generic-pae", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-image-2.6.31-22-generic", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-image-2.6.31-22-virtual", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-libc-dev", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-ec2-doc", ver:"2.6.31-307.27", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-ec2-source-2.6.31", ver:"2.6.31-307.27", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-headers-2.6.31-307", ver:"2.6.31-307.27", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-doc", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-headers-2.6.31-22", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"linux-source-2.6.31", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"block-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"char-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"crypto-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"fat-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"fb-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"firewire-core-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"floppy-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"fs-core-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"fs-secondary-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"input-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"irda-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"kernel-image-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"md-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"message-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"mouse-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nfs-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nic-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nic-pcmcia-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nic-shared-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nic-usb-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"parport-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"pata-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"pcmcia-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"pcmcia-storage-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"plip-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"ppp-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"sata-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"scsi-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"serial-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"storage-core-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"usb-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"virtio-modules-2.6.31-22-generic-di", ver:"2.6.31-22.73", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Related

ubuntu 9
nessus 35
openvas 48
securityvulns 4
osv 1
oraclelinux 7
redhat 6
centos 3
debian 1
suse 3
ubuntucve 18
prion 18
cve 17
veracode 15
packetstorm 3
seebug 9
exploitpack 2
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-02-25 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00
nessus
nessus
Ubuntu 9.10 : linux, linux-ec2 vulnerabilities (USN-1073-1)
2011-03-01 00:00:00
Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-1071-1)
2011-03-01 00:00:00
Ubuntu 8.04 LTS : linux vulnerabilities (USN-1072-1)
2011-03-01 00:00:00
openvas
openvas
Ubuntu Update for linux, linux-ec2 vulnerabilities USN-1073-1
2011-02-28 00:00:00
Ubuntu Update for linux-source-2.6.15 vulnerabilities USN-1071-1
2011-02-28 00:00:00
Ubuntu Update for linux-source-2.6.15 vulnerabilities USN-1071-1
2011-02-28 00:00:00
securityvulns
securityvulns
[USN-1054-1] Linux kernel vulnerabilities
2011-02-02 00:00:00
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-12-01 00:00:00
Linux kernel multiple security vulnerabilities
2010-12-09 00:00:00
osv
osv
linux-2.6 - several issues
2010-11-26 00:00:00
oraclelinux
oraclelinux
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2011-03-16 00:00:00
kernel security, bug fix, and enhancement update
2011-01-04 00:00:00
kernel security and bug fix update
2011-01-18 00:00:00
redhat
redhat
(RHSA-2010:0958) Important: kernel-rt security and bug fix update
2010-12-08 00:00:00
(RHSA-2011:0162) Important: kernel security and bug fix update
2011-01-18 00:00:00
(RHSA-2011:0007) Important: kernel security and bug fix update
2011-01-11 00:00:00
centos
centos
kernel security update
2011-01-27 09:25:23
kernel security update
2011-01-06 12:23:15
kmod, kvm security update
2010-12-14 01:21:04
debian
debian
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-11-27 04:49:43
suse
suse
potential local privilege escalation in kernel
2011-01-03 15:33:25
local privilege escalation, remote denial of in kernel
2011-01-03 15:33:10
local privilege escalation in kernel
2011-01-14 16:35:40
ubuntucve
ubuntucve
CVE-2010-4160
2011-01-07 00:00:00
CVE-2010-3873
2011-01-03 00:00:00
CVE-2010-4082
2010-11-30 00:00:00
prion
prion
Design/Logic Flaw
2010-11-22 13:00:00
Design/Logic Flaw
2010-11-30 22:14:00
Session fixation
2010-11-29 16:00:00
cve
cve
CVE-2010-4169
2010-11-22 13:00:00
CVE-2010-4078
2010-11-29 16:00:00
CVE-2010-4082
2010-11-30 22:14:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:48:28
Denial Of Service (DoS)
2020-04-10 00:55:17
Information Disclosure
2020-04-10 00:55:13
packetstorm
packetstorm
Linux Kernel 2.6 TCP_MAXSEG Denial Of Service
2011-03-10 00:00:00
Linux Kernel Unix Sockets Denial Of Service
2010-11-27 00:00:00
Linux Kernel 2.6.37 Denial Of Service
2011-03-01 00:00:00
seebug
seebug
Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS
2011-03-14 00:00:00
Linux Kernel <= 2.6.37 Local Kernel Denial of Service
2014-07-01 00:00:00
Linux Kernel TCP_MAXSEG本地拒绝服务漏洞
2010-11-17 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.37-rc2 - TCP_MAXSEG Kernel Panic (Denial of Service) (2)
2011-03-10 00:00:00
Linux Kernel 2.6.37 - Local Kernel Denial of Service (1)
2011-03-02 00:00:00

0.063 Low

EPSS

Percentile

92.9%

JSON
Related for OPENVAS:1361412562310840592
ubuntu9nessus35openvas48securityvulns4osv1oraclelinux7redhat6centos3debian1suse3ubuntucve18prion18cve17veracode15packetstorm3seebug9exploitpack2