UbuntuUSN-1405-1Linux kernel vulnerabilities
7 High
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.016 Low
EPSS
Percentile
87.5%
Releases
- Ubuntu 11.10
Packages
- linux - Linux kernel
Details
Paolo Bonzini discovered a flaw in Linux’s handling of the SG_IO ioctl
command. A local user, or user in a VM could exploit this flaw to bypass
restrictions and gain read/write access to all data on the affected block
device. (CVE-2011-4127)
A flaw was found in the Linux kernel’s ext4 file system when mounting a
corrupt filesystem. A user-assisted remote attacker could exploit this flaw
to cause a denial of service. (CVE-2012-2100)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.10 | noarch | linux-image-3.0.0-16-server | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | block-modules-3.0.0-16-generic-di | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | block-modules-3.0.0-16-virtual-di | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | crypto-modules-3.0.0-16-generic-di | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | crypto-modules-3.0.0-16-virtual-di | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | fat-modules-3.0.0-16-generic-di | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | fat-modules-3.0.0-16-virtual-di | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | fb-modules-3.0.0-16-generic-di | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | fb-modules-3.0.0-16-virtual-di | < 3.0.0-16.29 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firewire-core-modules-3.0.0-16-generic-di | < 3.0.0-16.29 | UNKNOWN |
Related
7 High
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.016 Low
EPSS
Percentile
87.5%