UbuntuUSN-1336-1Linux kernel vulnerability
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
46.3%
Releases
- Ubuntu 11.10
Packages
- linux - Linux kernel
Details
Clement Lecigne discovered a bug in the HFS filesystem. A local attacker
could exploit this to cause a kernel oops. (CVE-2011-2203)
A bug was discovered in the XFS filesystem’s handling of pathnames. A local
attacker could exploit this to crash the system, leading to a denial of
service, or gain root privileges. (CVE-2011-4077)
A flaw was found in how the Linux kernel handles user-defined key types. An
unprivileged local user could exploit this to crash the system.
(CVE-2011-4110)
A flaw was found in the Journaling Block Device (JBD). A local attacker
able to mount ext3 or ext4 file systems could exploit this to crash the
system, leading to a denial of service. (CVE-2011-4132)
Clement Lecigne discovered a bug in the HFS file system bounds checking.
When a malformed HFS file system is mounted a local user could crash the
system or gain root privileges. (CVE-2011-4330)
Chen Haogang discovered an integer overflow that could result in memory
corruption. A local unprivileged user could use this to crash the system.
(CVE-2012-0044)
Jüri Aedla discovered that the kernel incorrectly handled /proc//mem
permissions. A local attacker could exploit this and gain root privileges.
(CVE-2012-0056)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.10 | noarch | linux-image-3.0.0-15-omap | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | block-modules-3.0.0-15-generic-di | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | block-modules-3.0.0-15-virtual-di | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | crypto-modules-3.0.0-15-generic-di | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | crypto-modules-3.0.0-15-virtual-di | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | fat-modules-3.0.0-15-generic-di | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | fat-modules-3.0.0-15-virtual-di | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | fb-modules-3.0.0-15-generic-di | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | fb-modules-3.0.0-15-virtual-di | < 3.0.0-15.26 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firewire-core-modules-3.0.0-15-generic-di | < 3.0.0-15.26 | UNKNOWN |
Related
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
46.3%