Lucene search

K

Ubuntu Update for linux-ec2 USN-1556-1

🗓️ 07 Sep 2012 00:00:00Reported by Copyright (c) 2012 Greenbone Networks GmbHType 
openvas
 openvas
🔗 plugins.openvas.org👁 28 Views

Ubuntu Update for linux-ec2 USN-1556-1 addresses multiple vulnerabilities in the Linux kernel, including integer overflow leading to memory corruption, denial of service, and UDF file system errors allowing system crashes

Show more
Related
Refs
Code
ReporterTitlePublishedViews
Family
Ubuntu
Linux kernel (EC2) vulnerabilities
6 Sep 201200:00
ubuntu
Ubuntu
Linux kernel vulnerabilities
5 Sep 201200:00
ubuntu
Ubuntu
Linux kernel vulnerability
7 Sep 201200:00
ubuntu
Ubuntu
Linux kernel (Natty backport) vulnerability
10 Sep 201200:00
ubuntu
Ubuntu
Linux kernel (OMAP4) vulnerabilities
6 Feb 201200:00
ubuntu
Ubuntu
Linux kernel (OMAP4) vulnerability
7 Sep 201200:00
ubuntu
Ubuntu
Linux kernel vulnerabilities
10 Aug 201200:00
ubuntu
Ubuntu
Linux kernel (Natty backport) vulnerabilities
14 Aug 201200:00
ubuntu
Ubuntu
Linux kernel (Oneiric backport) vulnerability
10 Sep 201200:00
ubuntu
Ubuntu
Linux kernel vulnerability
5 Sep 201200:00
ubuntu
Rows per page
###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_ubuntu_USN_1556_1.nasl 7960 2017-12-01 06:58:16Z santu $
#
# Ubuntu Update for linux-ec2 USN-1556-1
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "Chen Haogang discovered an integer overflow that could result in memory
  corruption. A local unprivileged user could use this to crash the system.
  (CVE-2012-0044)

  A flaw was found in the Linux kernel's Reliable Datagram Sockets (RDS)
  protocol implementation. A local, unprivileged user could use this flaw to
  cause a denial of service. (CVE-2012-2372)
  
  Some errors where discovered in the Linux kernel's UDF file system, which
  is used to mount some CD-ROMs and DVDs. An unprivileged local user could
  use these flaws to crash the system. (CVE-2012-3400)";

tag_summary = "Ubuntu Update for Linux kernel vulnerabilities USN-1556-1";
tag_affected = "linux-ec2 on Ubuntu 10.04 LTS";
tag_solution = "Please Install the Updated Packages.";



if(description)
{
  script_xref(name: "URL" , value: "http://www.ubuntu.com/usn/usn-1556-1/");
  script_id(841134);
  script_version("$Revision: 7960 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-01 07:58:16 +0100 (Fri, 01 Dec 2017) $");
  script_tag(name:"creation_date", value:"2012-09-07 11:26:41 +0530 (Fri, 07 Sep 2012)");
  script_cve_id("CVE-2012-0044", "CVE-2012-2372", "CVE-2012-3400");
  script_tag(name:"cvss_base", value:"7.6");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:C/I:C/A:C");
  script_xref(name: "USN", value: "1556-1");
  script_name("Ubuntu Update for linux-ec2 USN-1556-1");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2012 Greenbone Networks GmbH");
  script_family("Ubuntu Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages");
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-deb.inc");

release = get_kb_item("ssh/login/release");

res = "";
if(release == NULL){
  exit(0);
}

if(release == "UBUNTU10.04 LTS")
{

  if ((res = isdpkgvuln(pkg:"linux-image-2.6.32-347-ec2", ver:"2.6.32-347.53", rls:"UBUNTU10.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo