{"id": "RHSA-2013:0496", "hash": "3773b1d3c979d85b6e7cd39c67ab89d1", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2013:0496) Important: Red Hat Enterprise Linux 6 kernel update", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled descriptors\nthat spanned multiple regions. A privileged guest user in a KVM guest could\nuse this flaw to crash the host or, potentially, escalate their privileges\non the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user could\npotentially use this flaw to write arbitrary data to a LUN that is\npassed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in the\nLinux kernel handled the failed iret (interrupt return) instruction\nnotification from the Xen hypervisor. An unprivileged user in a 32-bit\npara-virtualized guest could use this flaw to crash the guest.\n(CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE\nmemory ranges when transparent hugepages were in use. A local, unprivileged\nuser could use this flaw to crash the system. (CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP options\nwere validated when set from user mode. A local user able to set CIPSO IP\noptions on the socket could use this flaw to crash the system.\n(CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\nAndrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges\nDmitry Monakhov as the original reporter of CVE-2012-4508. The\nCVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements. Refer to\nthe Red Hat Enterprise Linux 6.4 Release Notes for information on the most\nsignificant of these changes, and the Technical Notes for further\ninformation, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated\npackages, which correct these issues, and fix the bugs and add the\nenhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and\nTechnical Notes. The system must be rebooted for this update to take\neffect.\n", "published": "2013-02-21T05:00:00", "modified": "2018-06-06T20:24:24", "cvss": {"vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/", "score": 6.6}, "href": "https://access.redhat.com/errata/RHSA-2013:0496", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2012-4508", "CVE-2012-4542", "CVE-2013-0190", "CVE-2013-0309", "CVE-2013-0310", "CVE-2013-0311"], "lastseen": "2018-12-11T19:43:04", "history": [{"bulletin": {"id": "RHSA-2013:0496", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2013:0496) Important: Red Hat Enterprise Linux 6 kernel update", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled descriptors\nthat spanned multiple regions. A privileged guest user in a KVM guest could\nuse this flaw to crash the host or, potentially, escalate their privileges\non the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user could\npotentially use this flaw to write arbitrary data to a LUN that is\npassed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in the\nLinux kernel handled the failed iret (interrupt return) instruction\nnotification from the Xen hypervisor. An unprivileged user in a 32-bit\npara-virtualized guest could use this flaw to crash the guest.\n(CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE\nmemory ranges when transparent hugepages were in use. A local, unprivileged\nuser could use this flaw to crash the system. (CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP options\nwere validated when set from user mode. A local user able to set CIPSO IP\noptions on the socket could use this flaw to crash the system.\n(CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\nAndrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges\nDmitry Monakhov as the original reporter of CVE-2012-4508. The\nCVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements. Refer to\nthe Red Hat Enterprise Linux 6.4 Release Notes for information on the most\nsignificant of these changes, and the Technical Notes for further\ninformation, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated\npackages, which correct these issues, and fix the bugs and add the\nenhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and\nTechnical Notes. The system must be rebooted for this update to take\neffect.\n", "published": "2013-02-21T05:00:00", "modified": "2017-03-03T17:34:12", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2013:0496", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2012-4508", "CVE-2013-0190", "CVE-2013-0311", "CVE-2012-4542", "CVE-2013-0310", "CVE-2013-0309"], "lastseen": "2017-03-10T13:18:48", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 6.6, "modified": "2017-03-10T13:18:48"}}, "objectVersion": "1.4", "affectedPackage": [{"arch": "x86_64", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "kernel-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "python-perf-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "python-perf", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-devel-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "python-perf-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "python-perf", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "perf-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "perf-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-debug-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-debug", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "python-perf-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "python-perf", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "kernel-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-debug-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel-debug", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "perf-debuginfo-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "perf-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "perf-debuginfo-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "perf-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "kernel-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "perf-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "perf", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "src", "packageFilename": "kernel-2.6.32-358.el6.src.rpm", "OSVersion": "6", "packageName": "kernel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-headers-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel-headers", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-devel-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel-debug-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "kernel-debug-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "kernel-debug", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-kdump-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-kdump-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "perf-debuginfo-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "perf-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "kernel-doc-2.6.32-358.el6.noarch.rpm", "OSVersion": "6", "packageName": "kernel-doc", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "kernel-debuginfo-common-x86_64", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "kernel-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "kernel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "python-perf-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "perf-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "perf", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "kernel-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "kernel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-kdump-devel-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-kdump-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-headers-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-headers", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "kernel-devel-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "kernel-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "kernel-headers", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "kernel-debug", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-bootwrapper-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel-bootwrapper", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel-debug-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-debuginfo-common-s390x", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "kernel-debug-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "python-perf-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "python-perf-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-kdump-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-kdump", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "kernel-headers-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "kernel-headers", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "packageName": "kernel-debug-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "kernel-debuginfo-common-ppc64", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-debug-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "python-perf-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "perf-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "perf", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "s390x", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "packageName": "kernel-debug-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "ppc64", "packageFilename": "python-perf-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "packageName": "python-perf", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "perf-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "perf", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "kernel-debug-debuginfo", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-358.el6.noarch.rpm", "OSVersion": "6", "packageName": "kernel-firmware", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "kernel-debuginfo-common-i686", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}, {"arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "packageName": "kernel-debug-devel", "OS": "RedHat", "packageVersion": "2.6.32-358.el6", "operator": "lt"}]}, "lastseen": "2017-03-10T13:18:48", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "RHSA-2013:0496", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2013:0496) Important: Red Hat Enterprise Linux 6 kernel update", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled descriptors\nthat spanned multiple regions. A privileged guest user in a KVM guest could\nuse this flaw to crash the host or, potentially, escalate their privileges\non the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user could\npotentially use this flaw to write arbitrary data to a LUN that is\npassed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in the\nLinux kernel handled the failed iret (interrupt return) instruction\nnotification from the Xen hypervisor. An unprivileged user in a 32-bit\npara-virtualized guest could use this flaw to crash the guest.\n(CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE\nmemory ranges when transparent hugepages were in use. A local, unprivileged\nuser could use this flaw to crash the system. (CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP options\nwere validated when set from user mode. A local user able to set CIPSO IP\noptions on the socket could use this flaw to crash the system.\n(CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\nAndrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges\nDmitry Monakhov as the original reporter of CVE-2012-4508. The\nCVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements. Refer to\nthe Red Hat Enterprise Linux 6.4 Release Notes for information on the most\nsignificant of these changes, and the Technical Notes for further\ninformation, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated\npackages, which correct these issues, and fix the bugs and add the\nenhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and\nTechnical Notes. The system must be rebooted for this update to take\neffect.\n", "published": "2013-02-21T05:00:00", "modified": "2017-11-24T18:38:39", "cvss": {"vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/", "score": 6.6}, "href": "https://access.redhat.com/errata/RHSA-2013:0496", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2012-4508", "CVE-2012-4542", "CVE-2013-0190", "CVE-2013-0309", "CVE-2013-0310", "CVE-2013-0311"], "lastseen": "2017-12-25T20:05:16", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.4", "affectedPackage": [{"arch": "i686", "packageFilename": "perf-debuginfo-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debuginfo-common-i686", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "python-perf-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "src", "packageFilename": "kernel-2.6.32-358.el6.src.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debuginfo-common-x86_64", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "perf-debuginfo-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "python-perf-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "python-perf-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "python-perf", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "python-perf-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "python-perf", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "kernel-debug-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "kernel-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "kernel-headers-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-headers", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-358.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-firmware", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "perf-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "perf", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "kernel-devel-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.i686.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "kernel-doc-2.6.32-358.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-doc", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "perf-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "perf", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "kernel-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-headers", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-358.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debuginfo-common-ppc64", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "python-perf-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "perf-debuginfo-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "python-perf-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "python-perf", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-bootwrapper-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-bootwrapper", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-debug-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-devel-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "kernel-headers-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-headers", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "ppc64", "packageFilename": "perf-2.6.32-358.el6.ppc64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "perf", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debuginfo-common-s390x", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-kdump-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-kdump-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "perf-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "python-perf-debuginfo", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "python-perf-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "python-perf", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-devel-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-headers-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-headers", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-kdump-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-kdump", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-debug-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-debug", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "kernel-kdump-devel-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "kernel-kdump-devel", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}, {"arch": "s390x", "packageFilename": "perf-2.6.32-358.el6.s390x.rpm", "OSVersion": "6", "operator": "lt", "packageName": "perf", "packageVersion": "2.6.32-358.el6", "OS": "RedHat"}]}, "lastseen": "2017-12-25T20:05:16", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "RHSA-2013:0496", "hash": "2dc76d734105c03207b541a7fb57ccb5", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2013:0496) Important: Red Hat Enterprise Linux 6 kernel update", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled descriptors\nthat spanned multiple regions. A privileged guest user in a KVM guest could\nuse this flaw to crash the host or, potentially, escalate their privileges\non the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user could\npotentially use this flaw to write arbitrary data to a LUN that is\npassed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in the\nLinux kernel handled the failed iret (interrupt return) instruction\nnotification from the Xen hypervisor. An unprivileged user in a 32-bit\npara-virtualized guest could use this flaw to crash the guest.\n(CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE\nmemory ranges when transparent hugepages were in use. A local, unprivileged\nuser could use this flaw to crash the system. (CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP options\nwere validated when set from user mode. A local user able to set CIPSO IP\noptions on the socket could use this flaw to crash the system.\n(CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\nAndrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges\nDmitry Monakhov as the original reporter of CVE-2012-4508. The\nCVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements. Refer to\nthe Red Hat Enterprise Linux 6.4 Release Notes for information on the most\nsignificant of these changes, and the Technical Notes for further\ninformation, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated\npackages, which correct these issues, and fix the bugs and add the\nenhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and\nTechnical Notes. The system must be rebooted for this update to take\neffect.\n", "published": "2013-02-21T05:00:00", "modified": "2018-06-06T20:24:24", "cvss": {"vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/", "score": 6.6}, "href": "https://access.redhat.com/errata/RHSA-2013:0496", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2012-4508", "CVE-2012-4542", "CVE-2013-0190", "CVE-2013-0309", "CVE-2013-0310", "CVE-2013-0311"], "lastseen": "2018-06-12T21:10:48", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-debuginfo-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "kernel-debug-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "kernel-debuginfo-common-i686", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "kernel-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "python-perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "src", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-2.6.32-358.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "kernel-debuginfo-common-x86_64", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-debuginfo-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "python-perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "kernel-debug-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "kernel-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "python-perf", "packageVersion": "2.6.32-358.el6", "packageFilename": "python-perf-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "python-perf", "packageVersion": "2.6.32-358.el6", "packageFilename": "python-perf-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "kernel-debug", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "kernel-headers", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-headers-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "kernel-firmware", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-firmware-2.6.32-358.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "perf", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "kernel-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-devel-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "kernel-debug-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "kernel-doc", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-doc-2.6.32-358.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "perf", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "kernel-debug", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "kernel-headers", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-headers-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "kernel-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-devel-2.6.32-358.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel-debuginfo-common-ppc64", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel-debug-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "python-perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-debuginfo-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "python-perf", "packageVersion": "2.6.32-358.el6", "packageFilename": "python-perf-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel-bootwrapper", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-bootwrapper-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel-debug", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel-debug-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-devel-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "kernel-headers", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-headers-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageName": "perf", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-2.6.32-358.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-debuginfo-common-s390x", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debuginfo-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-kdump-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-kdump-debuginfo-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-debuginfo-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-debug-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "python-perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "python-perf-debuginfo-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "python-perf", "packageVersion": "2.6.32-358.el6", "packageFilename": "python-perf-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-debug-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-devel-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-devel-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-headers", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-headers-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-kdump", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-kdump-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-debug", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-debug-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "kernel-kdump-devel", "packageVersion": "2.6.32-358.el6", "packageFilename": "kernel-kdump-devel-2.6.32-358.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageName": "perf", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-2.6.32-358.el6.s390x.rpm", "operator": "lt"}]}, "lastseen": "2018-06-12T21:10:48", "differentElements": ["affectedPackage"], "edition": 3}], "viewCount": 0, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}, "dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310123696", "OPENVAS:881682", "OPENVAS:1361412562310881682", "OPENVAS:1361412562310123694", "OPENVAS:1361412562310841312", "OPENVAS:841312", "OPENVAS:841371", "OPENVAS:1361412562310123629", "OPENVAS:1361412562310841371", "OPENVAS:841316"]}, {"type": "nessus", "idList": ["CENTOS_RHSA-2013-0496.NASL", "ORACLELINUX_ELSA-2013-0496.NASL", "REDHAT-RHSA-2013-0496.NASL", "REDHAT-RHSA-2013-0579.NASL", "UBUNTU_USN-1719-1.NASL", "REDHAT-RHSA-2013-0882.NASL", "UBUNTU_USN-1720-1.NASL", "F5_BIGIP_SOL15746.NASL", "F5_BIGIP_SOL15732.NASL", "UBUNTU_USN-1725-1.NASL"]}, {"type": "centos", "idList": ["CESA-2013:0496"]}, {"type": "oraclelinux", "idList": ["ELSA-2013-0496", "ELSA-2013-2507", "ELSA-2013-2504", "ELSA-2013-2520"]}, {"type": "cve", "idList": ["CVE-2012-4542", "CVE-2013-0309", "CVE-2012-4508", "CVE-2013-0190", "CVE-2013-0311", "CVE-2013-0310"]}, {"type": "f5", "idList": ["SOL15746", "SOL15732"]}, {"type": "redhat", "idList": ["RHSA-2013:0579", "RHSA-2013:0882", "RHSA-2013:0928", "RHSA-2013:1519", "RHSA-2013:1783"]}, {"type": "ubuntu", "idList": ["USN-1719-1", "USN-1720-1", "USN-1725-1", "USN-1728-1", "USN-1768-1", "USN-1769-1", "USN-1774-1", "USN-1775-1", "USN-1558-1", "USN-1563-1"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:29044", "SECURITYVULNS:VULN:12888"]}, {"type": "seebug", "idList": ["SSV:60638"]}, {"type": "amazon", "idList": ["ALAS-2013-154"]}, {"type": "xen", "idList": ["XSA-40"]}, {"type": "threatpost", "idList": ["THREATPOST:598790503ACCB1E7323D4862D42346C2"]}], "modified": "2018-12-11T19:43:04"}, "vulnersScore": 7.2}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "perf-debuginfo", "packageVersion": "2.6.32-358.el6", "packageFilename": "perf-debuginfo-2.6.32-358.el6.i686.rpm", "operator": "lt"}], "_object_type": "robots.models.redhat.RedHatBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"]}

{"openvas": [{"lastseen": "2018-09-28T18:23:44", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2013-0496", "modified": "2018-09-28T00:00:00", "published": "2015-10-06T00:00:00", "id": "OPENVAS:1361412562310123696", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123696", "title": "Oracle Linux Local Check: ELSA-2013-0496", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2013-0496.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123696\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:07:21 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2013-0496\");\n script_tag(name:\"insight\", value:\"ELSA-2013-0496 - Oracle Linux 6 kernel security and bugfix update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2013-0496\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2013-0496.html\");\n script_cve_id(\"CVE-2012-4508\", \"CVE-2013-0190\", \"CVE-2012-4542\", \"CVE-2013-0309\", \"CVE-2013-0310\", \"CVE-2013-0311\");\n script_tag(name:\"cvss_base\", value:\"6.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:S/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux6\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-firmware\", rpm:\"kernel-firmware~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"perf\", rpm:\"perf~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"python-perf\", rpm:\"python-perf~2.6.32~358.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:51:49", "bulletinFamily": "scanner", "description": "Check for the Version of kernel", "modified": "2017-07-10T00:00:00", "published": "2013-03-12T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881682", "id": "OPENVAS:881682", "title": "CentOS Update for kernel CESA-2013:0496 centos6 ", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2013:0496 centos6 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n \n * A race condition was found in the way asynchronous I/O and fallocate()\n interacted when using the ext4 file system. A local, unprivileged user\n could use this flaw to expose random data from an extent whose data blocks\n have not yet been written, and thus contain data from a deleted file.\n (CVE-2012-4508, Important)\n \n * A flaw was found in the way the vhost kernel module handled descriptors\n that spanned multiple regions. A privileged guest user in a KVM guest could\n use this flaw to crash the host or, potentially, escalate their privileges\n on the host. (CVE-2013-0311, Important)\n \n * It was found that the default SCSI command filter does not accommodate\n commands that overlap across device classes. A privileged guest user could\n potentially use this flaw to write arbitrary data to a LUN that is\n passed-through as read-only. (CVE-2012-4542, Moderate)\n \n * A flaw was found in the way the xen_failsafe_callback() function in the\n Linux kernel handled the failed iret (interrupt return) instruction\n notification from the Xen hypervisor. An unprivileged user in a 32-bit\n para-virtualized guest could use this flaw to crash the guest.\n (CVE-2013-0190, Moderate)\n \n * A flaw was found in the way pmd_present() interacted with PROT_NONE\n memory ranges when transparent hugepages were in use. A local, unprivileged\n user could use this flaw to crash the system. (CVE-2013-0309, Moderate)\n \n * A flaw was found in the way CIPSO (Common IP Security Option) IP options\n were validated when set from user mode. A local user able to set CIPSO IP\n options on the socket could use this flaw to crash the system.\n (CVE-2013-0310, Moderate)\n \n Red Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\n Andrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges\n Dmitry Monakhov as the original reporter of CVE-2012-4508. The\n CVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n \n This update also fixes several hundred bugs and adds enhancements. Refer to\n the Red Hat Enterprise Linux 6.4 Release Notes for information on the most\n significant of these changes, and the Technical Notes for further\n information, both linked to in the References.\n \n All Red Hat Enterprise Linux 6 users are advised to install these updated\n packages, which correct these issues, and fix the bugs and add the\n enhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and\n Technical Notes. The system must be rebooted for this update to take\n effect.\";\n\n\ntag_affected = \"kernel on CentOS 6\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2013-March/019361.html\");\n script_id(881682);\n script_version(\"$Revision: 6655 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:48:58 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2013-03-12 10:02:55 +0530 (Tue, 12 Mar 2013)\");\n script_cve_id(\"CVE-2012-4508\", \"CVE-2012-4542\", \"CVE-2013-0190\", \"CVE-2013-0309\", \"CVE-2013-0310\", \"CVE-2013-0311\");\n script_tag(name:\"cvss_base\", value:\"6.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:S/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2013:0496\");\n script_name(\"CentOS Update for kernel CESA-2013:0496 centos6 \");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS6\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-firmware\", rpm:\"kernel-firmware~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perf\", rpm:\"perf~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"python-perf\", rpm:\"python-perf~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:56:22", "bulletinFamily": "scanner", "description": "Check for the Version of kernel", "modified": "2018-04-06T00:00:00", "published": "2013-03-12T00:00:00", "id": "OPENVAS:1361412562310881682", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881682", "title": "CentOS Update for kernel CESA-2013:0496 centos6 ", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2013:0496 centos6 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n \n * A race condition was found in the way asynchronous I/O and fallocate()\n interacted when using the ext4 file system. A local, unprivileged user\n could use this flaw to expose random data from an extent whose data blocks\n have not yet been written, and thus contain data from a deleted file.\n (CVE-2012-4508, Important)\n \n * A flaw was found in the way the vhost kernel module handled descriptors\n that spanned multiple regions. A privileged guest user in a KVM guest could\n use this flaw to crash the host or, potentially, escalate their privileges\n on the host. (CVE-2013-0311, Important)\n \n * It was found that the default SCSI command filter does not accommodate\n commands that overlap across device classes. A privileged guest user could\n potentially use this flaw to write arbitrary data to a LUN that is\n passed-through as read-only. (CVE-2012-4542, Moderate)\n \n * A flaw was found in the way the xen_failsafe_callback() function in the\n Linux kernel handled the failed iret (interrupt return) instruction\n notification from the Xen hypervisor. An unprivileged user in a 32-bit\n para-virtualized guest could use this flaw to crash the guest.\n (CVE-2013-0190, Moderate)\n \n * A flaw was found in the way pmd_present() interacted with PROT_NONE\n memory ranges when transparent hugepages were in use. A local, unprivileged\n user could use this flaw to crash the system. (CVE-2013-0309, Moderate)\n \n * A flaw was found in the way CIPSO (Common IP Security Option) IP options\n were validated when set from user mode. A local user able to set CIPSO IP\n options on the socket could use this flaw to crash the system.\n (CVE-2013-0310, Moderate)\n \n Red Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\n Andrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges\n Dmitry Monakhov as the original reporter of CVE-2012-4508. The\n CVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n \n This update also fixes several hundred bugs and adds enhancements. Refer to\n the Red Hat Enterprise Linux 6.4 Release Notes for information on the most\n significant of these changes, and the Technical Notes for further\n information, both linked to in the References.\n \n All Red Hat Enterprise Linux 6 users are advised to install these updated\n packages, which correct these issues, and fix the bugs and add the\n enhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and\n Technical Notes. The system must be rebooted for this update to take\n effect.\";\n\n\ntag_affected = \"kernel on CentOS 6\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2013-March/019361.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881682\");\n script_version(\"$Revision: 9372 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:56:37 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-03-12 10:02:55 +0530 (Tue, 12 Mar 2013)\");\n script_cve_id(\"CVE-2012-4508\", \"CVE-2012-4542\", \"CVE-2013-0190\", \"CVE-2013-0309\", \"CVE-2013-0310\", \"CVE-2013-0311\");\n script_tag(name:\"cvss_base\", value:\"6.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:S/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2013:0496\");\n script_name(\"CentOS Update for kernel CESA-2013:0496 centos6 \");\n\n script_tag(name:\"summary\", value:\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS6\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-firmware\", rpm:\"kernel-firmware~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perf\", rpm:\"perf~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"python-perf\", rpm:\"python-perf~2.6.32~358.el6\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-28T18:23:30", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2013-2507", "modified": "2018-09-28T00:00:00", "published": "2015-10-06T00:00:00", "id": "OPENVAS:1361412562310123694", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123694", "title": "Oracle Linux Local Check: ELSA-2013-2507", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2013-2507.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123694\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:07:20 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2013-2507\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2013-2507\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2013-2507.html\");\n script_cve_id(\"CVE-2013-0309\", \"CVE-2013-0310\", \"CVE-2013-0311\", \"CVE-2013-0228\");\n script_tag(name:\"cvss_base\", value:\"6.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:S/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux(5|6)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"kernel-uek\", rpm:\"kernel-uek~2.6.39~400.17.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-debug\", rpm:\"kernel-uek-debug~2.6.39~400.17.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-debug-devel\", rpm:\"kernel-uek-debug-devel~2.6.39~400.17.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-devel\", rpm:\"kernel-uek-devel~2.6.39~400.17.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-doc\", rpm:\"kernel-uek-doc~2.6.39~400.17.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-firmware\", rpm:\"kernel-uek-firmware~2.6.39~400.17.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"kernel-uek\", rpm:\"kernel-uek~2.6.39~400.17.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-debug\", rpm:\"kernel-uek-debug~2.6.39~400.17.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-debug-devel\", rpm:\"kernel-uek-debug-devel~2.6.39~400.17.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-devel\", rpm:\"kernel-uek-devel~2.6.39~400.17.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-doc\", rpm:\"kernel-uek-doc~2.6.39~400.17.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-firmware\", rpm:\"kernel-uek-firmware~2.6.39~400.17.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-19T13:04:38", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2018-11-16T00:00:00", "published": "2013-02-15T00:00:00", "id": "OPENVAS:1361412562310841312", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841312", "title": "Ubuntu Update for linux USN-1720-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1720_1.nasl 12381 2018-11-16 11:16:30Z cfischer $\n#\n# Ubuntu Update for linux USN-1720-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1720-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841312\");\n script_version(\"$Revision: 12381 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 12:16:30 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-02-15 11:25:03 +0530 (Fri, 15 Feb 2013)\");\n script_cve_id(\"CVE-2012-2669\", \"CVE-2012-4508\", \"CVE-2012-5532\", \"CVE-2013-0190\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"USN\", value:\"1720-1\");\n script_name(\"Ubuntu Update for linux USN-1720-1\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU11\\.10\");\n script_tag(name:\"affected\", value:\"linux on Ubuntu 11.10\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"It was discovered that hypervkvpd, which is distributed in the Linux\n kernel, was not correctly validating the origin on Netlink messages. An\n untrusted local user can cause a denial of service of Linux guests in\n Hyper-V virtualization environments. (CVE-2012-2669)\n\n Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem\n that can expose stale data. An unprivileged user could exploit this flaw to\n cause an information leak. (CVE-2012-4508)\n\n Florian Weimer discovered that hypervkvpd, which is distributed in the\n Linux kernel, was not correctly validating source addresses of netlink\n packets. An untrusted local user can cause a denial of service by causing\n hypervkvpd to exit. (CVE-2012-5532)\n\n Andrew Cooper of Citrix reported a Xen stack corruption in the Linux\n kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest\n kernel to crash, or operate erroneously. (CVE-2013-0190)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-generic\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-generic-pae\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-omap\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-powerpc\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-powerpc-smp\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-powerpc64-smp\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-server\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-virtual\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-01-23T13:09:45", "bulletinFamily": "scanner", "description": "Check for the Version of linux", "modified": "2018-01-23T00:00:00", "published": "2013-02-15T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841312", "id": "OPENVAS:841312", "title": "Ubuntu Update for linux USN-1720-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1720_1.nasl 8494 2018-01-23 06:57:55Z teissa $\n#\n# Ubuntu Update for linux USN-1720-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"It was discovered that hypervkvpd, which is distributed in the Linux\n kernel, was not correctly validating the origin on Netlink messages. An\n untrusted local user can cause a denial of service of Linux guests in\n Hyper-V virtualization environments. (CVE-2012-2669)\n\n Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem\n that can expose stale data. An unprivileged user could exploit this flaw to\n cause an information leak. (CVE-2012-4508)\n \n Florian Weimer discovered that hypervkvpd, which is distributed in the\n Linux kernel, was not correctly validating source addresses of netlink\n packets. An untrusted local user can cause a denial of service by causing\n hypervkvpd to exit. (CVE-2012-5532)\n \n Andrew Cooper of Citrix reported a Xen stack corruption in the Linux\n kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest\n kernel to crash, or operate erroneously. (CVE-2013-0190)\";\n\n\ntag_affected = \"linux on Ubuntu 11.10\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1720-1/\");\n script_id(841312);\n script_version(\"$Revision: 8494 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-23 07:57:55 +0100 (Tue, 23 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-02-15 11:25:03 +0530 (Fri, 15 Feb 2013)\");\n script_cve_id(\"CVE-2012-2669\", \"CVE-2012-4508\", \"CVE-2012-5532\", \"CVE-2013-0190\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"1720-1\");\n script_name(\"Ubuntu Update for linux USN-1720-1\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-generic\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-generic-pae\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-omap\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-powerpc\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-powerpc-smp\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-powerpc64-smp\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-server\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-31-virtual\", ver:\"3.0.0-31.48\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-01-26T11:10:30", "bulletinFamily": "scanner", "description": "Check for the Version of linux-ti-omap4", "modified": "2018-01-25T00:00:00", "published": "2013-03-22T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841371", "id": "OPENVAS:841371", "title": "Ubuntu Update for linux-ti-omap4 USN-1774-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1774_1.nasl 8526 2018-01-25 06:57:37Z teissa $\n#\n# Ubuntu Update for linux-ti-omap4 USN-1774-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Andrew Cooper of Citrix reported a Xen stack corruption in the Linux\n kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest\n kernel to crash, or operate erroneously. (CVE-2013-0190)\n\n A failure to validate input was discovered in the Linux kernel's Xen\n netback (network backend) driver. A user in a guest OS may exploit this\n flaw to cause a denial of service to the guest OS and other guest domains.\n (CVE-2013-0216)\n\n A memory leak was discovered in the Linux kernel's Xen netback (network\n backend) driver. A user in a guest OS could trigger this flaw to cause a\n denial of service on the system. (CVE-2013-0217)\n\n A flaw was discovered in the Linux kernel Xen PCI backend driver. If a PCI\n device is assigned to the guest OS, the guest OS could exploit this flaw to\n cause a denial of service on the host. (CVE-2013-0231)\n\n Tommi Rantala discovered a flaw in the a flaw the Linux kernels handling of\n datagrams packets when the MSG_PEEK flag is specified. An unprivileged\n local user could exploit this flaw to cause a denial of service (system\n hang). (CVE-2013-0290)\n\n A flaw was discovered in the Linux kernel's vhost driver used to accelerate\n guest networking in KVM based virtual machines. A privileged guest user\n could exploit this flaw to crash the host system. (CVE-2013-0311)\";\n\n\ntag_affected = \"linux-ti-omap4 on Ubuntu 12.10\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1774-1/\");\n script_id(841371);\n script_version(\"$Revision: 8526 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-25 07:57:37 +0100 (Thu, 25 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-03-22 10:41:42 +0530 (Fri, 22 Mar 2013)\");\n script_cve_id(\"CVE-2013-0190\", \"CVE-2013-0216\", \"CVE-2013-0217\", \"CVE-2013-0231\",\n \"CVE-2013-0290\", \"CVE-2013-0311\");\n script_tag(name:\"cvss_base\", value:\"6.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:H/Au:S/C:C/I:C/A:C\");\n script_xref(name: \"USN\", value: \"1774-1\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-1774-1\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of linux-ti-omap4\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-221-omap4\", ver:\"3.5.0-221.31\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-28T18:26:00", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2013-2523", "modified": "2018-09-28T00:00:00", "published": "2015-10-06T00:00:00", "id": "OPENVAS:1361412562310123629", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123629", "title": "Oracle Linux Local Check: ELSA-2013-2523", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2013-2523.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123629\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:06:29 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2013-2523\");\n script_tag(name:\"insight\", value:\"ELSA-2013-2523 - Unbreakable Enterprise kernel security and bugfix update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2013-2523\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2013-2523.html\");\n script_cve_id(\"CVE-2012-4542\");\n script_tag(name:\"cvss_base\", value:\"4.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux(5|6)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"kernel-uek\", rpm:\"kernel-uek~2.6.39~400.23.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-debug\", rpm:\"kernel-uek-debug~2.6.39~400.23.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-debug-devel\", rpm:\"kernel-uek-debug-devel~2.6.39~400.23.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-devel\", rpm:\"kernel-uek-devel~2.6.39~400.23.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-doc\", rpm:\"kernel-uek-doc~2.6.39~400.23.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-firmware\", rpm:\"kernel-uek-firmware~2.6.39~400.23.1.el5uek\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"kernel-uek\", rpm:\"kernel-uek~2.6.39~400.23.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-debug\", rpm:\"kernel-uek-debug~2.6.39~400.23.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-debug-devel\", rpm:\"kernel-uek-debug-devel~2.6.39~400.23.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-devel\", rpm:\"kernel-uek-devel~2.6.39~400.23.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-doc\", rpm:\"kernel-uek-doc~2.6.39~400.23.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-uek-firmware\", rpm:\"kernel-uek-firmware~2.6.39~400.23.1.el6uek\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-19T13:04:31", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2018-11-16T00:00:00", "published": "2013-03-22T00:00:00", "id": "OPENVAS:1361412562310841371", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841371", "title": "Ubuntu Update for linux-ti-omap4 USN-1774-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1774_1.nasl 12381 2018-11-16 11:16:30Z cfischer $\n#\n# Ubuntu Update for linux-ti-omap4 USN-1774-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1774-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841371\");\n script_version(\"$Revision: 12381 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 12:16:30 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-03-22 10:41:42 +0530 (Fri, 22 Mar 2013)\");\n script_cve_id(\"CVE-2013-0190\", \"CVE-2013-0216\", \"CVE-2013-0217\", \"CVE-2013-0231\",\n \"CVE-2013-0290\", \"CVE-2013-0311\");\n script_tag(name:\"cvss_base\", value:\"6.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:H/Au:S/C:C/I:C/A:C\");\n script_xref(name:\"USN\", value:\"1774-1\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-1774-1\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux-ti-omap4'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU12\\.10\");\n script_tag(name:\"affected\", value:\"linux-ti-omap4 on Ubuntu 12.10\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Andrew Cooper of Citrix reported a Xen stack corruption in the Linux\n kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest\n kernel to crash, or operate erroneously. (CVE-2013-0190)\n\n A failure to validate input was discovered in the Linux kernel's Xen\n netback (network backend) driver. A user in a guest OS may exploit this\n flaw to cause a denial of service to the guest OS and other guest domains.\n (CVE-2013-0216)\n\n A memory leak was discovered in the Linux kernel's Xen netback (network\n backend) driver. A user in a guest OS could trigger this flaw to cause a\n denial of service on the system. (CVE-2013-0217)\n\n A flaw was discovered in the Linux kernel Xen PCI backend driver. If a PCI\n device is assigned to the guest OS, the guest OS could exploit this flaw to\n cause a denial of service on the host. (CVE-2013-0231)\n\n Tommi Rantala discovered a flaw in the a flaw the Linux kernels handling of\n datagrams packets when the MSG_PEEK flag is specified. An unprivileged\n local user could exploit this flaw to cause a denial of service (system\n hang). (CVE-2013-0290)\n\n A flaw was discovered in the Linux kernel's vhost driver used to accelerate\n guest networking in KVM based virtual machines. A privileged guest user\n could exploit this flaw to crash the host system. (CVE-2013-0311)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-221-omap4\", ver:\"3.5.0-221.31\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:21:52", "bulletinFamily": "scanner", "description": "Check for the Version of linux", "modified": "2017-12-01T00:00:00", "published": "2013-02-15T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841316", "id": "OPENVAS:841316", "title": "Ubuntu Update for linux USN-1725-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1725_1.nasl 7958 2017-12-01 06:47:47Z santu $\n#\n# Ubuntu Update for linux USN-1725-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\ntag_affected = \"linux on Ubuntu 10.04 LTS\";\ntag_insight = \"Andrew Cooper of Citrix reported a Xen stack corruption in the Linux\n kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest\n kernel to crash, or operate erroneously.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1725-1/\");\n script_id(841316);\n script_version(\"$Revision: 7958 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:47:47 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2013-02-15 11:25:23 +0530 (Fri, 15 Feb 2013)\");\n script_cve_id(\"CVE-2013-0190\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"1725-1\");\n script_name(\"Ubuntu Update for linux USN-1725-1\");\n\n script_summary(\"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-386\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-generic\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-generic-pae\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-ia64\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-lpia\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-powerpc\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-powerpc-smp\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-powerpc64-smp\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-preempt\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-server\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-sparc64\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-sparc64-smp\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-versatile\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-45-virtual\", ver:\"2.6.32-45.103\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2019-02-21T01:18:39", "bulletinFamily": "scanner", "description": "Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the fourth regular update.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* A race condition was found in the way asynchronous I/O and fallocate() interacted when using the ext4 file system. A local, unprivileged user could use this flaw to expose random data from an extent whose data blocks have not yet been written, and thus contain data from a deleted file. (CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled descriptors that spanned multiple regions. A privileged guest user in a KVM guest could use this flaw to crash the host or, potentially, escalate their privileges on the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not accommodate commands that overlap across device classes. A privileged guest user could potentially use this flaw to write arbitrary data to a LUN that is passed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in the Linux kernel handled the failed iret (interrupt return) instruction notification from the Xen hypervisor. An unprivileged user in a 32-bit para-virtualized guest could use this flaw to crash the guest. (CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE memory ranges when transparent hugepages were in use. A local, unprivileged user could use this flaw to crash the system.\n(CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP options were validated when set from user mode. A local user able to set CIPSO IP options on the socket could use this flaw to crash the system. (CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and Andrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges Dmitry Monakhov as the original reporter of CVE-2012-4508. The CVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements.\nRefer to the Red Hat Enterprise Linux 6.4 Release Notes for information on the most significant of these changes, and the Technical Notes for further information, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated packages, which correct these issues, and fix the bugs and add the enhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and Technical Notes. The system must be rebooted for this update to take effect.", "modified": "2018-11-10T00:00:00", "id": "CENTOS_RHSA-2013-0496.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=65134", "published": "2013-03-10T00:00:00", "title": "CentOS 6 : kernel (CESA-2013:0496)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:0496 and \n# CentOS Errata and Security Advisory 2013:0496 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(65134);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/11/10 11:49:30\");\n\n script_cve_id(\"CVE-2012-4508\", \"CVE-2012-4542\", \"CVE-2013-0190\", \"CVE-2013-0309\", \"CVE-2013-0310\", \"CVE-2013-0311\");\n script_bugtraq_id(56238, 57433, 58046, 58052, 58053, 58088);\n script_xref(name:\"RHSA\", value:\"2013:0496\");\n\n script_name(english:\"CentOS 6 : kernel (CESA-2013:0496)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix multiple security issues, address\nseveral hundred bugs, and add numerous enhancements are now available\nas part of the ongoing support and maintenance of Red Hat Enterprise\nLinux version 6. This is the fourth regular update.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* A race condition was found in the way asynchronous I/O and\nfallocate() interacted when using the ext4 file system. A local,\nunprivileged user could use this flaw to expose random data from an\nextent whose data blocks have not yet been written, and thus contain\ndata from a deleted file. (CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled\ndescriptors that spanned multiple regions. A privileged guest user in\na KVM guest could use this flaw to crash the host or, potentially,\nescalate their privileges on the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not\naccommodate commands that overlap across device classes. A privileged\nguest user could potentially use this flaw to write arbitrary data to\na LUN that is passed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in\nthe Linux kernel handled the failed iret (interrupt return)\ninstruction notification from the Xen hypervisor. An unprivileged user\nin a 32-bit para-virtualized guest could use this flaw to crash the\nguest. (CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE\nmemory ranges when transparent hugepages were in use. A local,\nunprivileged user could use this flaw to crash the system.\n(CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP\noptions were validated when set from user mode. A local user able to\nset CIPSO IP options on the socket could use this flaw to crash the\nsystem. (CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508,\nand Andrew Cooper of Citrix for reporting CVE-2013-0190. Upstream\nacknowledges Dmitry Monakhov as the original reporter of\nCVE-2012-4508. The CVE-2012-4542 issue was discovered by Paolo Bonzini\nof Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements.\nRefer to the Red Hat Enterprise Linux 6.4 Release Notes for\ninformation on the most significant of these changes, and the\nTechnical Notes for further information, both linked to in the\nReferences.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these\nupdated packages, which correct these issues, and fix the bugs and add\nthe enhancements noted in the Red Hat Enterprise Linux 6.4 Release\nNotes and Technical Notes. The system must be rebooted for this update\nto take effect.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2013-March/019361.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b0c25d69\"\n );\n # https://lists.centos.org/pipermail/centos-cr-announce/2013-February/000553.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7f33b762\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:python-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/03/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/03/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-6\", reference:\"kernel-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"kernel-debug-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"kernel-debug-devel-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"kernel-devel-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"kernel-doc-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"kernel-firmware-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"kernel-headers-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"perf-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"python-perf-2.6.32-358.el6\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:19:41", "bulletinFamily": "scanner", "description": "From Red Hat Security Advisory 2013:0496 :\n\nUpdated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the fourth regular update.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* A race condition was found in the way asynchronous I/O and fallocate() interacted when using the ext4 file system. A local, unprivileged user could use this flaw to expose random data from an extent whose data blocks have not yet been written, and thus contain data from a deleted file. (CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled descriptors that spanned multiple regions. A privileged guest user in a KVM guest could use this flaw to crash the host or, potentially, escalate their privileges on the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not accommodate commands that overlap across device classes. A privileged guest user could potentially use this flaw to write arbitrary data to a LUN that is passed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in the Linux kernel handled the failed iret (interrupt return) instruction notification from the Xen hypervisor. An unprivileged user in a 32-bit para-virtualized guest could use this flaw to crash the guest. (CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE memory ranges when transparent hugepages were in use. A local, unprivileged user could use this flaw to crash the system.\n(CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP options were validated when set from user mode. A local user able to set CIPSO IP options on the socket could use this flaw to crash the system. (CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and Andrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges Dmitry Monakhov as the original reporter of CVE-2012-4508. The CVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements.\nRefer to the Red Hat Enterprise Linux 6.4 Release Notes for information on the most significant of these changes, and the Technical Notes for further information, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated packages, which correct these issues, and fix the bugs and add the enhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and Technical Notes. The system must be rebooted for this update to take effect.", "modified": "2018-07-18T00:00:00", "id": "ORACLELINUX_ELSA-2013-0496.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=68739", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 6 : kernel (ELSA-2013-0496)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2013:0496 and \n# Oracle Linux Security Advisory ELSA-2013-0496 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68739);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/07/18 17:43:57\");\n\n script_cve_id(\"CVE-2012-4508\", \"CVE-2012-4542\", \"CVE-2013-0190\", \"CVE-2013-0309\", \"CVE-2013-0310\", \"CVE-2013-0311\");\n script_bugtraq_id(46616, 52687, 53233, 53414, 53615, 53668, 53965, 53971, 54279, 54365, 54367, 54702, 54763, 55151, 55361, 55878, 56238, 56346, 56414, 57433, 58046, 58052, 58053, 58088);\n script_xref(name:\"RHSA\", value:\"2013:0496\");\n\n script_name(english:\"Oracle Linux 6 : kernel (ELSA-2013-0496)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2013:0496 :\n\nUpdated kernel packages that fix multiple security issues, address\nseveral hundred bugs, and add numerous enhancements are now available\nas part of the ongoing support and maintenance of Red Hat Enterprise\nLinux version 6. This is the fourth regular update.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* A race condition was found in the way asynchronous I/O and\nfallocate() interacted when using the ext4 file system. A local,\nunprivileged user could use this flaw to expose random data from an\nextent whose data blocks have not yet been written, and thus contain\ndata from a deleted file. (CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled\ndescriptors that spanned multiple regions. A privileged guest user in\na KVM guest could use this flaw to crash the host or, potentially,\nescalate their privileges on the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not\naccommodate commands that overlap across device classes. A privileged\nguest user could potentially use this flaw to write arbitrary data to\na LUN that is passed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in\nthe Linux kernel handled the failed iret (interrupt return)\ninstruction notification from the Xen hypervisor. An unprivileged user\nin a 32-bit para-virtualized guest could use this flaw to crash the\nguest. (CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE\nmemory ranges when transparent hugepages were in use. A local,\nunprivileged user could use this flaw to crash the system.\n(CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP\noptions were validated when set from user mode. A local user able to\nset CIPSO IP options on the socket could use this flaw to crash the\nsystem. (CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508,\nand Andrew Cooper of Citrix for reporting CVE-2013-0190. Upstream\nacknowledges Dmitry Monakhov as the original reporter of\nCVE-2012-4508. The CVE-2012-4542 issue was discovered by Paolo Bonzini\nof Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements.\nRefer to the Red Hat Enterprise Linux 6.4 Release Notes for\ninformation on the most significant of these changes, and the\nTechnical Notes for further information, both linked to in the\nReferences.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these\nupdated packages, which correct these issues, and fix the bugs and add\nthe enhancements noted in the Red Hat Enterprise Linux 6.4 Release\nNotes and Technical Notes. The system must be rebooted for this update\nto take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-February/003297.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:python-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/02/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-2.6.32\") && rpm_check(release:\"EL6\", reference:\"kernel-2.6.32-358.el6\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-debug-2.6.32\") && rpm_check(release:\"EL6\", reference:\"kernel-debug-2.6.32-358.el6\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-debug-devel-2.6.32\") && rpm_check(release:\"EL6\", reference:\"kernel-debug-devel-2.6.32-358.el6\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-devel-2.6.32\") && rpm_check(release:\"EL6\", reference:\"kernel-devel-2.6.32-358.el6\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-doc-2.6.32\") && rpm_check(release:\"EL6\", reference:\"kernel-doc-2.6.32-358.el6\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-firmware-2.6.32\") && rpm_check(release:\"EL6\", reference:\"kernel-firmware-2.6.32-358.el6\")) flag++;\nif (rpm_exists(release:\"EL6\", rpm:\"kernel-headers-2.6.32\") && rpm_check(release:\"EL6\", reference:\"kernel-headers-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"perf-2.6.32-358.el6\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"python-perf-2.6.32-358.el6\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:18:40", "bulletinFamily": "scanner", "description": "Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the fourth regular update.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* A race condition was found in the way asynchronous I/O and fallocate() interacted when using the ext4 file system. A local, unprivileged user could use this flaw to expose random data from an extent whose data blocks have not yet been written, and thus contain data from a deleted file. (CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled descriptors that spanned multiple regions. A privileged guest user in a KVM guest could use this flaw to crash the host or, potentially, escalate their privileges on the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not accommodate commands that overlap across device classes. A privileged guest user could potentially use this flaw to write arbitrary data to a LUN that is passed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in the Linux kernel handled the failed iret (interrupt return) instruction notification from the Xen hypervisor. An unprivileged user in a 32-bit para-virtualized guest could use this flaw to crash the guest. (CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE memory ranges when transparent hugepages were in use. A local, unprivileged user could use this flaw to crash the system.\n(CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP options were validated when set from user mode. A local user able to set CIPSO IP options on the socket could use this flaw to crash the system. (CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and Andrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges Dmitry Monakhov as the original reporter of CVE-2012-4508. The CVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements.\nRefer to the Red Hat Enterprise Linux 6.4 Release Notes for information on the most significant of these changes, and the Technical Notes for further information, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated packages, which correct these issues, and fix the bugs and add the enhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and Technical Notes. The system must be rebooted for this update to take effect.", "modified": "2018-11-26T00:00:00", "id": "REDHAT-RHSA-2013-0496.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=65171", "published": "2013-03-10T00:00:00", "title": "RHEL 6 : kernel (RHSA-2013:0496)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:0496. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(65171);\n script_version(\"1.14\");\n script_cvs_date(\"Date: 2018/11/26 11:02:15\");\n\n script_cve_id(\"CVE-2012-4508\", \"CVE-2012-4542\", \"CVE-2013-0190\", \"CVE-2013-0309\", \"CVE-2013-0310\", \"CVE-2013-0311\");\n script_bugtraq_id(56238, 57433, 58046, 58052, 58053, 58088);\n script_xref(name:\"RHSA\", value:\"2013:0496\");\n\n script_name(english:\"RHEL 6 : kernel (RHSA-2013:0496)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix multiple security issues, address\nseveral hundred bugs, and add numerous enhancements are now available\nas part of the ongoing support and maintenance of Red Hat Enterprise\nLinux version 6. This is the fourth regular update.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* A race condition was found in the way asynchronous I/O and\nfallocate() interacted when using the ext4 file system. A local,\nunprivileged user could use this flaw to expose random data from an\nextent whose data blocks have not yet been written, and thus contain\ndata from a deleted file. (CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled\ndescriptors that spanned multiple regions. A privileged guest user in\na KVM guest could use this flaw to crash the host or, potentially,\nescalate their privileges on the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not\naccommodate commands that overlap across device classes. A privileged\nguest user could potentially use this flaw to write arbitrary data to\na LUN that is passed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in\nthe Linux kernel handled the failed iret (interrupt return)\ninstruction notification from the Xen hypervisor. An unprivileged user\nin a 32-bit para-virtualized guest could use this flaw to crash the\nguest. (CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE\nmemory ranges when transparent hugepages were in use. A local,\nunprivileged user could use this flaw to crash the system.\n(CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP\noptions were validated when set from user mode. A local user able to\nset CIPSO IP options on the socket could use this flaw to crash the\nsystem. (CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508,\nand Andrew Cooper of Citrix for reporting CVE-2013-0190. Upstream\nacknowledges Dmitry Monakhov as the original reporter of\nCVE-2012-4508. The CVE-2012-4542 issue was discovered by Paolo Bonzini\nof Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements.\nRefer to the Red Hat Enterprise Linux 6.4 Release Notes for\ninformation on the most significant of these changes, and the\nTechnical Notes for further information, both linked to in the\nReferences.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these\nupdated packages, which correct these issues, and fix the bugs and add\nthe enhancements noted in the Red Hat Enterprise Linux 6.4 Release\nNotes and Technical Notes. The system must be rebooted for this update\nto take effect.\"\n );\n # https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b5caa05f\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2013:0496\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2012-4508\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-0190\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-0311\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-0310\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2012-4542\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-0309\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common-i686\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common-s390x\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common-x86_64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:perf-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:python-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:python-perf-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/02/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/03/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2013:0496\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"kernel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"kernel-debug-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-debug-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debug-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"kernel-debug-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-debug-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debug-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"kernel-debug-devel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-debug-devel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debug-devel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"kernel-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"kernel-debuginfo-common-i686-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-debuginfo-common-s390x-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debuginfo-common-x86_64-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"kernel-devel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-devel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-devel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", reference:\"kernel-doc-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", reference:\"kernel-firmware-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"kernel-headers-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-headers-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-headers-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-kdump-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-kdump-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"kernel-kdump-devel-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"perf-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"perf-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"perf-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"perf-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"perf-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"perf-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"python-perf-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"python-perf-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"python-perf-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"python-perf-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"python-perf-debuginfo-2.6.32-358.el6\")) flag++;\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"python-perf-debuginfo-2.6.32-358.el6\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-debug / kernel-debug-debuginfo / kernel-debug-devel / etc\");\n }\n}\n", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:22:41", "bulletinFamily": "scanner", "description": "An updated rhev-hypervisor6 package that fixes three security issues, various bugs, and adds an enhancement is now available.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red Hat Enterprise Linux operating environment and the Red Hat Enterprise Virtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for the Intel 64 and AMD64 architectures with virtualization extensions.\n\nA flaw was found in the way the vhost kernel module handled descriptors that spanned multiple regions. A privileged guest user could use this flaw to crash the host or, potentially, escalate their privileges on the host. (CVE-2013-0311)\n\nIt was found that the default SCSI command filter does not accommodate commands that overlap across device classes. A privileged guest user could potentially use this flaw to write arbitrary data to a LUN that is passed-through as read-only. (CVE-2012-4542)\n\nIt was discovered that dnsmasq, when used in combination with certain libvirtd configurations, could incorrectly process network packets from network interfaces that were intended to be prohibited. A remote, unauthenticated attacker could exploit this flaw to cause a denial of service via DNS amplification attacks. (CVE-2012-3411)\n\nThe CVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis updated package provides updated components that include fixes for several security issues. These issues had no security impact on Red Hat Enterprise Virtualization Hypervisor itself, however. The security fixes included in this update address the following CVE numbers :\n\nCVE-2012-3955 (dhcp issue)\n\nCVE-2011-4355 (gdb issue)\n\nCVE-2012-4508, CVE-2013-0190, CVE-2013-0309, and CVE-2013-0310 (kernel issues)\n\nCVE-2012-5536 (openssh issue)\n\nCVE-2011-3148 and CVE-2011-3149 (pam issues)\n\nCVE-2013-0157 (util-linux-ng issue)\n\nThis updated Red Hat Enterprise Virtualization Hypervisor package also fixes the following bugs :\n\n* Previously, the Administration Portal would always display the option to upgrade the Red Hat Enterprise Virtualization Hypervisor ISO regardless of whether or not the selected host was up-to-date. Now, the VDSM version compatibility is considered and the upgrade message only displays if there is an upgrade relevant to the host available.\n(BZ#853092)\n\n* An out of date version of libvirt was included in the Red Hat Enterprise Virtualization Hypervisor 6.4 package. As a result, virtual machines with supported CPU models were not being properly parsed by libvirt and failed to start. A more recent version of libvirt has been included in this updated hypervisor package. Virtual machines now start normally. (BZ#895078)\n\nAs well, this update adds the following enhancement :\n\n* Hypervisor packages now take advantage of the installonlypkg function provided by yum. This allows for multiple versions of the hypervisor package to be installed on a system concurrently without making changes to the yum configuration as was previously required.\n(BZ#863579)\n\nThis update includes the ovirt-node build from RHBA-2013:0556 :\n\nhttps://rhn.redhat.com/errata/RHBA-2013-0556.html\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to upgrade to this updated package, which fixes these issues and adds this enhancement.", "modified": "2018-12-20T00:00:00", "id": "REDHAT-RHSA-2013-0579.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78950", "published": "2014-11-08T00:00:00", "title": "RHEL 6 : rhev-hypervisor6 (RHSA-2013:0579)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:0579. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78950);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2018/12/20 11:08:45\");\n\n script_cve_id(\"CVE-2012-3411\", \"CVE-2012-4542\", \"CVE-2013-0311\");\n script_bugtraq_id(54353, 58053, 58088);\n script_xref(name:\"RHSA\", value:\"2013:0579\");\n\n script_name(english:\"RHEL 6 : rhev-hypervisor6 (RHSA-2013:0579)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An updated rhev-hypervisor6 package that fixes three security issues,\nvarious bugs, and adds an enhancement is now available.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe rhev-hypervisor6 package provides a Red Hat Enterprise\nVirtualization Hypervisor ISO disk image. The Red Hat Enterprise\nVirtualization Hypervisor is a dedicated Kernel-based Virtual Machine\n(KVM) hypervisor. It includes everything necessary to run and manage\nvirtual machines: A subset of the Red Hat Enterprise Linux operating\nenvironment and the Red Hat Enterprise Virtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available\nfor the Intel 64 and AMD64 architectures with virtualization\nextensions.\n\nA flaw was found in the way the vhost kernel module handled\ndescriptors that spanned multiple regions. A privileged guest user\ncould use this flaw to crash the host or, potentially, escalate their\nprivileges on the host. (CVE-2013-0311)\n\nIt was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user\ncould potentially use this flaw to write arbitrary data to a LUN that\nis passed-through as read-only. (CVE-2012-4542)\n\nIt was discovered that dnsmasq, when used in combination with certain\nlibvirtd configurations, could incorrectly process network packets\nfrom network interfaces that were intended to be prohibited. A remote,\nunauthenticated attacker could exploit this flaw to cause a denial of\nservice via DNS amplification attacks. (CVE-2012-3411)\n\nThe CVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis updated package provides updated components that include fixes\nfor several security issues. These issues had no security impact on\nRed Hat Enterprise Virtualization Hypervisor itself, however. The\nsecurity fixes included in this update address the following CVE\nnumbers :\n\nCVE-2012-3955 (dhcp issue)\n\nCVE-2011-4355 (gdb issue)\n\nCVE-2012-4508, CVE-2013-0190, CVE-2013-0309, and CVE-2013-0310 (kernel\nissues)\n\nCVE-2012-5536 (openssh issue)\n\nCVE-2011-3148 and CVE-2011-3149 (pam issues)\n\nCVE-2013-0157 (util-linux-ng issue)\n\nThis updated Red Hat Enterprise Virtualization Hypervisor package also\nfixes the following bugs :\n\n* Previously, the Administration Portal would always display the\noption to upgrade the Red Hat Enterprise Virtualization Hypervisor ISO\nregardless of whether or not the selected host was up-to-date. Now,\nthe VDSM version compatibility is considered and the upgrade message\nonly displays if there is an upgrade relevant to the host available.\n(BZ#853092)\n\n* An out of date version of libvirt was included in the Red Hat\nEnterprise Virtualization Hypervisor 6.4 package. As a result, virtual\nmachines with supported CPU models were not being properly parsed by\nlibvirt and failed to start. A more recent version of libvirt has been\nincluded in this updated hypervisor package. Virtual machines now\nstart normally. (BZ#895078)\n\nAs well, this update adds the following enhancement :\n\n* Hypervisor packages now take advantage of the installonlypkg\nfunction provided by yum. This allows for multiple versions of the\nhypervisor package to be installed on a system concurrently without\nmaking changes to the yum configuration as was previously required.\n(BZ#863579)\n\nThis update includes the ovirt-node build from RHBA-2013:0556 :\n\nhttps://rhn.redhat.com/errata/RHBA-2013-0556.html\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised\nto upgrade to this updated package, which fixes these issues and adds\nthis enhancement.\"\n );\n # https://rhn.redhat.com/errata/RHBA-2013-0556.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHBA-2013:0556\"\n );\n # https://access.redhat.com/knowledge/articles/11258\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/articles/11258\"\n );\n # https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b5caa05f\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2013:0579\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2012-3411\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-0311\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2012-4542\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected rhev-hypervisor6 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:H/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rhev-hypervisor6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/02/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2013:0579\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", reference:\"rhev-hypervisor6-6.4-20130221.0.el6\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"rhev-hypervisor6\");\n }\n}\n", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:18:29", "bulletinFamily": "scanner", "description": "It was discovered that hypervkvpd, which is distributed in the Linux kernel, was not correctly validating the origin on Netlink messages.\nAn untrusted local user can cause a denial of service of Linux guests in Hyper-V virtualization environments. (CVE-2012-2669)\n\nDmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. (CVE-2012-4508)\n\nAndrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously. (CVE-2013-0190).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2018-12-01T00:00:00", "id": "UBUNTU_USN-1719-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=64617", "published": "2013-02-13T00:00:00", "title": "Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1719-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1719-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(64617);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/12/01 13:19:07\");\n\n script_cve_id(\"CVE-2012-2669\", \"CVE-2012-4508\", \"CVE-2013-0190\");\n script_bugtraq_id(56238, 56734, 57433);\n script_xref(name:\"USN\", value:\"1719-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1719-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that hypervkvpd, which is distributed in the Linux\nkernel, was not correctly validating the origin on Netlink messages.\nAn untrusted local user can cause a denial of service of Linux guests\nin Hyper-V virtualization environments. (CVE-2012-2669)\n\nDmitry Monakhov reported a race condition flaw the Linux ext4\nfilesystem that can expose stale data. An unprivileged user could\nexploit this flaw to cause an information leak. (CVE-2012-4508)\n\nAndrew Cooper of Citrix reported a Xen stack corruption in the Linux\nkernel. An unprivileged user in a 32bit PVOPS guest can cause the\nguest kernel to crash, or operate erroneously. (CVE-2013-0190).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/1719-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/02/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/02/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-3.0.0-31-generic\", pkgver:\"3.0.0-31.48~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-3.0.0-31-generic-pae\", pkgver:\"3.0.0-31.48~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-3.0.0-31-server\", pkgver:\"3.0.0-31.48~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-3.0.0-31-virtual\", pkgver:\"3.0.0-31.48~lucid1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.0-generic / linux-image-3.0-generic-pae / etc\");\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:18:58", "bulletinFamily": "scanner", "description": "Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6.2 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the way the vhost kernel module handled descriptors that spanned multiple regions. A privileged guest user in a KVM (Kernel-based Virtual Machine) guest could use this flaw to crash the host or, potentially, escalate their privileges on the host.\n(CVE-2013-0311, Important)\n\n* A flaw was found in the way the KVM subsystem handled guests attempting to run with the X86_CR4_OSXSAVE CPU feature flag set. On hosts without the XSAVE CPU feature, a local, unprivileged user could use this flaw to crash the host system. (The 'grep --color xsave /proc/cpuinfo' command can be used to verify if your system has the XSAVE CPU feature.) (CVE-2012-4461, Moderate)\n\n* It was found that the default SCSI command filter does not accommodate commands that overlap across device classes. A privileged guest user could potentially use this flaw to write arbitrary data to a LUN that is passed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A use-after-free flaw was found in the tmpfs implementation. A local user able to mount and unmount a tmpfs file system could use this flaw to cause a denial of service or, potentially, escalate their privileges. (CVE-2013-1767, Low)\n\nRed Hat would like to thank Jon Howell for reporting CVE-2012-4461.\nCVE-2012-4542 was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes the following bugs :\n\n* Previously, when open(2) system calls were processed, the GETATTR routine did not check to see if valid attributes were also returned.\nAs a result, the open() call succeeded with invalid attributes instead of failing in such a case. This update adds the missing check, and the open() call succeeds only when valid attributes are returned.\n(BZ#960409)\n\n* Previously, the fsync(2) system call incorrectly returned the EIO (Input/Output) error instead of the ENOSPC (No space left on device) error. This was due to incorrect error handling in the page cache.\nThis problem has been fixed and the correct error value is now returned. (BZ#960418)\n\n* In the RPC code, when a network socket backed up due to high network traffic, a timer was set causing a retransmission, which in turn could cause an even larger amount of network traffic to be generated. To prevent this problem, the RPC code now waits for the socket to empty instead of setting the timer. (BZ#960423)\n\n* This update fixes a number of bugs in the be2iscsi driver for ServerEngines BladeEngine 2 Open iSCSI devices. (BZ#955502)\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "modified": "2018-11-10T00:00:00", "id": "REDHAT-RHSA-2013-0882.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=66705", "published": "2013-05-31T00:00:00", "title": "RHEL 6 : kernel (RHSA-2013:0882)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:0882. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66705);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/11/10 11:49:52\");\n\n script_cve_id(\"CVE-2012-4461\", \"CVE-2012-4542\", \"CVE-2013-0311\", \"CVE-2013-1767\");\n script_bugtraq_id(56414, 58053, 58088, 58177);\n script_xref(name:\"RHSA\", value:\"2013:0882\");\n\n script_name(english:\"RHEL 6 : kernel (RHSA-2013:0882)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix multiple security issues and several\nbugs are now available for Red Hat Enterprise Linux 6.2 Extended\nUpdate Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the way the vhost kernel module handled\ndescriptors that spanned multiple regions. A privileged guest user in\na KVM (Kernel-based Virtual Machine) guest could use this flaw to\ncrash the host or, potentially, escalate their privileges on the host.\n(CVE-2013-0311, Important)\n\n* A flaw was found in the way the KVM subsystem handled guests\nattempting to run with the X86_CR4_OSXSAVE CPU feature flag set. On\nhosts without the XSAVE CPU feature, a local, unprivileged user could\nuse this flaw to crash the host system. (The 'grep --color xsave\n/proc/cpuinfo' command can be used to verify if your system has the\nXSAVE CPU feature.) (CVE-2012-4461, Moderate)\n\n* It was found that the default SCSI command filter does not\naccommodate commands that overlap across device classes. A privileged\nguest user could potentially use this flaw to write arbitrary data to\na LUN that is passed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A use-after-free flaw was found in the tmpfs implementation. A local\nuser able to mount and unmount a tmpfs file system could use this flaw\nto cause a denial of service or, potentially, escalate their\nprivileges. (CVE-2013-1767, Low)\n\nRed Hat would like to thank Jon Howell for reporting CVE-2012-4461.\nCVE-2012-4542 was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes the following bugs :\n\n* Previously, when open(2) system calls were processed, the GETATTR\nroutine did not check to see if valid attributes were also returned.\nAs a result, the open() call succeeded with invalid attributes instead\nof failing in such a case. This update adds the missing check, and the\nopen() call succeeds only when valid attributes are returned.\n(BZ#960409)\n\n* Previously, the fsync(2) system call incorrectly returned the EIO\n(Input/Output) error instead of the ENOSPC (No space left on device)\nerror. This was due to incorrect error handling in the page cache.\nThis problem has been fixed and the correct error value is now\nreturned. (BZ#960418)\n\n* In the RPC code, when a network socket backed up due to high network\ntraffic, a timer was set causing a retransmission, which in turn could\ncause an even larger amount of network traffic to be generated. To\nprevent this problem, the RPC code now waits for the socket to empty\ninstead of setting the timer. (BZ#960423)\n\n* This update fixes a number of bugs in the be2iscsi driver for\nServerEngines BladeEngine 2 Open iSCSI devices. (BZ#955502)\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2013:0882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2012-4461\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-0311\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2012-4542\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-1767\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:H/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common-i686\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common-s390x\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common-x86_64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:perf-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:python-perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:python-perf-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/05/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/05/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2013:0882\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"kernel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"kernel-debug-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-debug-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debug-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"kernel-debug-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-debug-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debug-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"kernel-debug-devel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-debug-devel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debug-devel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"kernel-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"kernel-debuginfo-common-i686-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-debuginfo-common-s390x-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-debuginfo-common-x86_64-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"kernel-devel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-devel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-devel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", reference:\"kernel-doc-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", reference:\"kernel-firmware-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"kernel-headers-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-headers-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"kernel-headers-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-kdump-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-kdump-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-kdump-devel-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"perf-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"perf-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"perf-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"perf-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"perf-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"perf-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"python-perf-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"python-perf-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"x86_64\", reference:\"python-perf-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"i686\", reference:\"python-perf-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", sp:\"2\", cpu:\"s390x\", reference:\"python-perf-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"python-perf-debuginfo-2.6.32-220.38.1.el6\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-debug / kernel-debug-debuginfo / kernel-debug-devel / etc\");\n }\n}\n", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:18:29", "bulletinFamily": "scanner", "description": "It was discovered that hypervkvpd, which is distributed in the Linux kernel, was not correctly validating the origin on Netlink messages.\nAn untrusted local user can cause a denial of service of Linux guests in Hyper-V virtualization environments. (CVE-2012-2669)\n\nDmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. (CVE-2012-4508)\n\nFlorian Weimer discovered that hypervkvpd, which is distributed in the Linux kernel, was not correctly validating source addresses of netlink packets. An untrusted local user can cause a denial of service by causing hypervkvpd to exit. (CVE-2012-5532)\n\nAndrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously. (CVE-2013-0190).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2018-12-01T00:00:00", "id": "UBUNTU_USN-1720-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=64618", "published": "2013-02-13T00:00:00", "title": "Ubuntu 11.10 : linux vulnerabilities (USN-1720-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1720-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(64618);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/12/01 13:19:07\");\n\n script_cve_id(\"CVE-2012-2669\", \"CVE-2012-4508\", \"CVE-2012-5532\", \"CVE-2013-0190\");\n script_bugtraq_id(56238, 56710, 56734, 57433);\n script_xref(name:\"USN\", value:\"1720-1\");\n\n script_name(english:\"Ubuntu 11.10 : linux vulnerabilities (USN-1720-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that hypervkvpd, which is distributed in the Linux\nkernel, was not correctly validating the origin on Netlink messages.\nAn untrusted local user can cause a denial of service of Linux guests\nin Hyper-V virtualization environments. (CVE-2012-2669)\n\nDmitry Monakhov reported a race condition flaw the Linux ext4\nfilesystem that can expose stale data. An unprivileged user could\nexploit this flaw to cause an information leak. (CVE-2012-4508)\n\nFlorian Weimer discovered that hypervkvpd, which is distributed in the\nLinux kernel, was not correctly validating source addresses of netlink\npackets. An untrusted local user can cause a denial of service by\ncausing hypervkvpd to exit. (CVE-2012-5532)\n\nAndrew Cooper of Citrix reported a Xen stack corruption in the Linux\nkernel. An unprivileged user in a 32bit PVOPS guest can cause the\nguest kernel to crash, or operate erroneously. (CVE-2013-0190).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/1720-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.10\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/02/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/02/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(11\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 11.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-31-generic\", pkgver:\"3.0.0-31.48\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-31-generic-pae\", pkgver:\"3.0.0-31.48\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-31-server\", pkgver:\"3.0.0-31.48\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-31-virtual\", pkgver:\"3.0.0-31.48\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.0-generic / linux-image-3.0-generic-pae / etc\");\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:22:38", "bulletinFamily": "scanner", "description": "block/scsi_ioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restrictions via an SG_IO ioctl call that leverages overlapping opcodes.(CVE-2012-4542)", "modified": "2019-01-04T00:00:00", "id": "F5_BIGIP_SOL15746.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78696", "published": "2014-10-28T00:00:00", "title": "F5 Networks BIG-IP : Linux kernel vulnerability (SOL15746)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from F5 Networks BIG-IP Solution SOL15746.\n#\n# The text description of this plugin is (C) F5 Networks.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78696);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2019/01/04 10:03:40\");\n\n script_cve_id(\"CVE-2012-4542\");\n script_bugtraq_id(58088);\n\n script_name(english:\"F5 Networks BIG-IP : Linux kernel vulnerability (SOL15746)\");\n script_summary(english:\"Checks the BIG-IP version.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote device is missing a vendor-supplied security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"block/scsi_ioctl.c in the Linux kernel through 3.8 does not properly\nconsider the SCSI device class during authorization of SCSI commands,\nwhich allows local users to bypass intended access restrictions via an\nSG_IO ioctl call that leverages overlapping opcodes.(CVE-2012-4542)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://support.f5.com/csp/article/K15746\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade to one of the non-vulnerable versions listed in the F5\nSolution SOL15746.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_access_policy_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_advanced_firewall_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_application_acceleration_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_application_security_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_application_visibility_and_reporting\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_global_traffic_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_link_controller\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_local_traffic_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_policy_enforcement_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_wan_optimization_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_webaccelerator\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip_protocol_security_manager\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/27\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/28\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"F5 Networks Local Security Checks\");\n\n script_dependencies(\"f5_bigip_detect.nbin\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/BIG-IP/hotfix\", \"Host/BIG-IP/modules\", \"Host/BIG-IP/version\");\n\n exit(0);\n}\n\n\ninclude(\"f5_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nversion = get_kb_item(\"Host/BIG-IP/version\");\nif ( ! version ) audit(AUDIT_OS_NOT, \"F5 Networks BIG-IP\");\nif ( isnull(get_kb_item(\"Host/BIG-IP/hotfix\")) ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/hotfix\");\nif ( ! get_kb_item(\"Host/BIG-IP/modules\") ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/modules\");\n\nsol = \"SOL15746\";\nvmatrix = make_array();\n\n# AFM\nvmatrix[\"AFM\"] = make_array();\nvmatrix[\"AFM\"][\"affected\" ] = make_list(\"11.3.0-11.4.1\");\nvmatrix[\"AFM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n# AM\nvmatrix[\"AM\"] = make_array();\nvmatrix[\"AM\"][\"affected\" ] = make_list(\"11.4.0-11.4.1\");\nvmatrix[\"AM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n# APM\nvmatrix[\"APM\"] = make_array();\nvmatrix[\"APM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.1.0-10.2.4\");\nvmatrix[\"APM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n# ASM\nvmatrix[\"ASM\"] = make_array();\nvmatrix[\"ASM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"ASM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n# AVR\nvmatrix[\"AVR\"] = make_array();\nvmatrix[\"AVR\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\");\nvmatrix[\"AVR\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n# GTM\nvmatrix[\"GTM\"] = make_array();\nvmatrix[\"GTM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"GTM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n# LC\nvmatrix[\"LC\"] = make_array();\nvmatrix[\"LC\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"LC\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n# LTM\nvmatrix[\"LTM\"] = make_array();\nvmatrix[\"LTM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"LTM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n# PEM\nvmatrix[\"PEM\"] = make_array();\nvmatrix[\"PEM\"][\"affected\" ] = make_list(\"11.3.0-11.4.1\");\nvmatrix[\"PEM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\");\n\n\nif (bigip_is_affected(vmatrix:vmatrix, sol:sol))\n{\n if (report_verbosity > 0) security_warning(port:0, extra:bigip_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = bigip_get_tested_modules();\n audit_extra = \"For BIG-IP module(s) \" + tested + \",\";\n if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);\n else audit(AUDIT_HOST_NOT, \"running any of the affected modules\");\n}\n", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:22:38", "bulletinFamily": "scanner", "description": "The translate_desc function in drivers/vhost/vhost.c in the Linux kernel before 3.7 does not properly handle cross-region descriptors, which allows guest OS users to obtain host OS privileges by leveraging Kernel-base Virtual Machine (KVM) guest OS privileges.", "modified": "2019-01-04T00:00:00", "id": "F5_BIGIP_SOL15732.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78660", "published": "2014-10-24T00:00:00", "title": "F5 Networks BIG-IP : Linux kernel vulnerability (SOL15732)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from F5 Networks BIG-IP Solution SOL15732.\n#\n# The text description of this plugin is (C) F5 Networks.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78660);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2019/01/04 10:03:40\");\n\n script_cve_id(\"CVE-2013-0311\");\n script_bugtraq_id(58053);\n\n script_name(english:\"F5 Networks BIG-IP : Linux kernel vulnerability (SOL15732)\");\n script_summary(english:\"Checks the BIG-IP version.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote device is missing a vendor-supplied security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The translate_desc function in drivers/vhost/vhost.c in the Linux\nkernel before 3.7 does not properly handle cross-region descriptors,\nwhich allows guest OS users to obtain host OS privileges by leveraging\nKernel-base Virtual Machine (KVM) guest OS privileges.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://support.f5.com/csp/article/K15732\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade to one of the non-vulnerable versions listed in the F5\nSolution SOL15732.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:H/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_access_policy_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_advanced_firewall_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_application_acceleration_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_application_security_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_application_visibility_and_reporting\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_global_traffic_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_link_controller\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_local_traffic_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_policy_enforcement_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_wan_optimization_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_webaccelerator\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip_protocol_security_manager\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/23\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"F5 Networks Local Security Checks\");\n\n script_dependencies(\"f5_bigip_detect.nbin\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/BIG-IP/hotfix\", \"Host/BIG-IP/modules\", \"Host/BIG-IP/version\");\n\n exit(0);\n}\n\n\ninclude(\"f5_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nversion = get_kb_item(\"Host/BIG-IP/version\");\nif ( ! version ) audit(AUDIT_OS_NOT, \"F5 Networks BIG-IP\");\nif ( isnull(get_kb_item(\"Host/BIG-IP/hotfix\")) ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/hotfix\");\nif ( ! get_kb_item(\"Host/BIG-IP/modules\") ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/modules\");\n\nsol = \"SOL15732\";\nvmatrix = make_array();\n\n# AFM\nvmatrix[\"AFM\"] = make_array();\nvmatrix[\"AFM\"][\"affected\" ] = make_list(\"11.3.0-11.4.1\");\nvmatrix[\"AFM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF5\",\"11.4.0HF8\",\"11.3.0HF10\");\n\n# AM\nvmatrix[\"AM\"] = make_array();\nvmatrix[\"AM\"][\"affected\" ] = make_list(\"11.4.0-11.4.1\");\nvmatrix[\"AM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF5\",\"11.4.0HF8\");\n\n# APM\nvmatrix[\"APM\"] = make_array();\nvmatrix[\"APM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.1.0-10.2.4\");\nvmatrix[\"APM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF5\",\"11.4.0HF8\",\"11.3.0HF10\",\"11.2.1HF12\");\n\n# ASM\nvmatrix[\"ASM\"] = make_array();\nvmatrix[\"ASM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"ASM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF5\",\"11.4.0HF8\",\"11.3.0HF10\",\"11.2.1HF12\");\n\n# AVR\nvmatrix[\"AVR\"] = make_array();\nvmatrix[\"AVR\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\");\nvmatrix[\"AVR\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF4\",\"11.4.0HF8\",\"11.3.0HF10\",\"11.2.1HF12\");\n\n# GTM\nvmatrix[\"GTM\"] = make_array();\nvmatrix[\"GTM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"GTM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF5\",\"11.4.0HF8\",\"11.3.0HF10\",\"11.2.1HF12\");\n\n# LC\nvmatrix[\"LC\"] = make_array();\nvmatrix[\"LC\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"LC\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF5\",\"11.4.0HF8\",\"11.3.0HF10\",\"11.2.1HF12\");\n\n# LTM\nvmatrix[\"LTM\"] = make_array();\nvmatrix[\"LTM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"LTM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF5\",\"11.4.0HF8\",\"11.3.0HF10\",\"11.2.1HF12\");\n\n# PEM\nvmatrix[\"PEM\"] = make_array();\nvmatrix[\"PEM\"][\"affected\" ] = make_list(\"11.3.0-11.4.1\");\nvmatrix[\"PEM\"][\"unaffected\"] = make_list(\"11.5.0-11.6.0\",\"11.4.1HF5\",\"11.4.0HF8\",\"11.3.0HF10\");\n\n# PSM\nvmatrix[\"PSM\"] = make_array();\nvmatrix[\"PSM\"][\"affected\" ] = make_list(\"11.0.0-11.4.1\",\"10.0.0-10.2.4\");\nvmatrix[\"PSM\"][\"unaffected\"] = make_list(\"11.4.1HF5\",\"11.4.0HF8\",\"11.3.0HF10\",\"11.2.1HF12\");\n\n# WAM\nvmatrix[\"WAM\"] = make_array();\nvmatrix[\"WAM\"][\"affected\" ] = make_list(\"11.0.0-11.3.0\",\"10.0.0-10.2.4\");\nvmatrix[\"WAM\"][\"unaffected\"] = make_list(\"11.3.0HF10\",\"11.2.1HF12\");\n\n# WOM\nvmatrix[\"WOM\"] = make_array();\nvmatrix[\"WOM\"][\"affected\" ] = make_list(\"11.0.0-11.3.0\",\"10.0.0-10.2.4\");\nvmatrix[\"WOM\"][\"unaffected\"] = make_list(\"11.3.0HF10\",\"11.2.1HF12\");\n\n\nif (bigip_is_affected(vmatrix:vmatrix, sol:sol))\n{\n if (report_verbosity > 0) security_warning(port:0, extra:bigip_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = bigip_get_tested_modules();\n audit_extra = \"For BIG-IP module(s) \" + tested + \",\";\n if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);\n else audit(AUDIT_HOST_NOT, \"running any of the affected modules\");\n}\n", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:18:30", "bulletinFamily": "scanner", "description": "Andrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2018-12-01T00:00:00", "id": "UBUNTU_USN-1725-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=64640", "published": "2013-02-15T00:00:00", "title": "Ubuntu 10.04 LTS : linux vulnerability (USN-1725-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1725-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(64640);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/12/01 13:19:07\");\n\n script_cve_id(\"CVE-2013-0190\");\n script_bugtraq_id(57433);\n script_xref(name:\"USN\", value:\"1725-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux vulnerability (USN-1725-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Andrew Cooper of Citrix reported a Xen stack corruption in the Linux\nkernel. An unprivileged user in a 32bit PVOPS guest can cause the\nguest kernel to crash, or operate erroneously.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/1725-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/02/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/02/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-45-386\", pkgver:\"2.6.32-45.103\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-45-generic\", pkgver:\"2.6.32-45.103\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-45-generic-pae\", pkgver:\"2.6.32-45.103\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-45-lpia\", pkgver:\"2.6.32-45.103\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-45-preempt\", pkgver:\"2.6.32-45.103\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-45-server\", pkgver:\"2.6.32-45.103\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-45-versatile\", pkgver:\"2.6.32-45.103\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-45-virtual\", pkgver:\"2.6.32-45.103\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-386 / linux-image-2.6-generic / etc\");\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "centos": [{"lastseen": "2018-04-04T13:00:19", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2013:0496\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* A flaw was found in the way the vhost kernel module handled descriptors\nthat spanned multiple regions. A privileged guest user in a KVM guest could\nuse this flaw to crash the host or, potentially, escalate their privileges\non the host. (CVE-2013-0311, Important)\n\n* It was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user could\npotentially use this flaw to write arbitrary data to a LUN that is\npassed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A flaw was found in the way the xen_failsafe_callback() function in the\nLinux kernel handled the failed iret (interrupt return) instruction\nnotification from the Xen hypervisor. An unprivileged user in a 32-bit\npara-virtualized guest could use this flaw to crash the guest.\n(CVE-2013-0190, Moderate)\n\n* A flaw was found in the way pmd_present() interacted with PROT_NONE\nmemory ranges when transparent hugepages were in use. A local, unprivileged\nuser could use this flaw to crash the system. (CVE-2013-0309, Moderate)\n\n* A flaw was found in the way CIPSO (Common IP Security Option) IP options\nwere validated when set from user mode. A local user able to set CIPSO IP\noptions on the socket could use this flaw to crash the system.\n(CVE-2013-0310, Moderate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\nAndrew Cooper of Citrix for reporting CVE-2013-0190. Upstream acknowledges\nDmitry Monakhov as the original reporter of CVE-2012-4508. The\nCVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several hundred bugs and adds enhancements. Refer to\nthe Red Hat Enterprise Linux 6.4 Release Notes for information on the most\nsignificant of these changes, and the Technical Notes for further\ninformation, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated\npackages, which correct these issues, and fix the bugs and add the\nenhancements noted in the Red Hat Enterprise Linux 6.4 Release Notes and\nTechnical Notes. The system must be rebooted for this update to take\neffect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-cr-announce/2013-February/000553.html\n\n**Affected packages:**\nkernel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-firmware\nkernel-headers\nperf\npython-perf\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-0496.html", "modified": "2013-02-27T19:35:40", "published": "2013-02-27T19:35:40", "href": "http://lists.centos.org/pipermail/centos-cr-announce/2013-February/000553.html", "id": "CESA-2013:0496", "title": "kernel, perf, python security update", "type": "centos", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:45:13", "bulletinFamily": "unix", "description": " [2.6.32-358.el6] \r\n- [fs] Fix sget() race with failing mount (Eric Sandeen) [883276] \r\n \n[2.6.32-357.el6] \r\n- [virt] xen: Fix stack corruption in xen_failsafe_callback for 32bit PVOPS guests (Andrew Jones) [896050] {CVE-2013-0190} \r\n- [block] sg_io: use different default filters for each device class (Paolo Bonzini) [875361] {CVE-2012-4542} \r\n- [block] sg_io: prepare for adding per-device-type filters (Paolo Bonzini) [875361] {CVE-2012-4542} \r\n- [virt] virtio-blk: Don't free ida when disk is in use (Asias He) [870344] \r\n- [netdrv] mlx4: Remove FCS bytes from packet length (Doug Ledford) [893707] \r\n- [net] netfilter: nf_ct_reasm: fix conntrack reassembly expire code (Amerigo Wang) [726807] \r\n \n[2.6.32-356.el6] \r\n- [char] ipmi: use a tasklet for handling received messages (Prarit Bhargava) [890160] \r\n- [char] ipmi: handle run_to_completion properly in deliver_recv_msg() (Prarit Bhargava) [890160] \r\n- [usb] xhci: Reset reserved command ring TRBs on cleanup (Don Zickus) [843520] \r\n- [usb] xhci: handle command after aborting the command ring (Don Zickus) [874541] \r\n- [usb] xhci: cancel command after command timeout (Don Zickus) [874541] \r\n- [usb] xhci: add aborting command ring function (Don Zickus) [874541] \r\n- [usb] xhci: add cmd_ring_state (Don Zickus) [874541] \r\n- [usb] xhci: Fix Null pointer dereferencing with non-DMI systems (Don Zickus) [874542] \r\n- [usb] xhci: Intel Panther Point BEI quirk (Don Zickus) [874542] \r\n- [usb] xhci: Increase XHCI suspend timeout to 16ms (Don Zickus) [874542] \r\n- [powerpc] Revert: pseries/iommu: remove default window before attempting DDW manipulation (Steve Best) [890454] \r\n- [serial] 8250_pnp: add Intermec CV60 touchscreen device (Mauro Carvalho Chehab) [894445] \r\n- [char] ipmi: apply missing hunk from upstream commit 2407d77a (Tony Camuso) [882787] \r\n- [acpi] Fix broken kernel build if CONFIG_ACPI_DEBUG is enabled (Lenny Szubowicz) [891948] \r\n- [scsi] qla2xxx: Test and clear FCPORT_UPDATE_NEEDED atomically (Chad Dupuis) [854736] \r\n- [mm] vmalloc: remove guard page from between vmap blocks (Johannes Weiner) [873737] \r\n- [mm] vmalloc: vmap area cache (Johannes Weiner) [873737] \r\n- [fs] vfs: prefer EEXIST to EROFS when creating on an RO filesystem (Eric Sandeen) [878091] \r\n- [scsi] qla2xxx: change queue depth ramp print to debug print (Rob Evers) [893113] \r\n- [fs] nfs: Fix umount when filelayout DS is also the MDS (Steve Dickson) [895194] \r\n- [fs] nfs/pnfs: add set-clear layoutdriver interface (Steve Dickson) [895194] \r\n- [fs] nfs: Don't call nfs4_deviceid_purge_client() unless we're NFSv4.1 (Steve Dickson) [895194] \r\n- [fs] nfs: Wait for session recovery to finish before returning (Steve Dickson) [895176] \r\n- [mm] compaction: validate pfn range passed to isolate_freepages_block (Johannes Weiner) [889456 890498] \r\n- [drm] nouveau: ensure legacy vga is re-enabled during POST (Ben Skeggs) [625441] \r\n- [netdrv] be2net: Remove stops to further access to BE NIC on UE bits (Ivan Vecera) [894344] \r\n- [virt] kvm: invalid opcode oops on SET_SREGS with OSXSAVE bit set (Petr Matousek) [862904] {CVE-2012-4461} \r\n \n[2.6.32-355.el6] \r\n- [netdrv] qlge: remove NETIF_F_TSO6 flag (Amerigo Wang) [891839] \r\n- [fs] ext3: Remove BKL from ext3_put_super() and ext3_remount() (Carlos Maiolino) [885945] \r\n- [lib] switch the protection of percpu_counter list to spinlock (Carlos Maiolino) [885945] \r\n- [virt] hv: Add Hyper-V balloon driver (Jason Wang) [885572] \r\n- [mm] export a function to get vm committed memory (Jason Wang) [885572] \r\n- [drm] nouveau: extend prevent display switching issues by disabling pageflip (Ben Skeggs) [853226] \r\n- [netdrv] mlx4: Fix advertisement of wrong PF context behaviour (Alex Williamson) [894060] \r\n \n[2.6.32-354.el6] \r\n- [char] ipmi: add new kernel options to prevent automatic ipmi init (Tony Camuso) [877177] \r\n- [usb] xhci: New system added for Compliance Mode Patch on SN65LVPE502CP (Don Zickus) [856709] \r\n- [x86] quirks: Mark Haswell HDMI Audio as unsupported (Prarit Bhargava) [883428] \r\n- [scsi] bfa: fix crash in bfa_cb_ioim_done when performing failover/failback tests (Vijay Guvva) [878618] \r\n- [fs] autofs4: Fix sparse warning: context imbalance in autofs4_d_automount() different lock contexts for basic block (Ian Kent) [876795] \r\n- [fs] jbd, jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [886318] \r\n- [scsi] qla4xxx: v5.03.00.00.06.04-k2 (Rob Evers) [890727] \r\n- [scsi] qla4xxx: Correct the validation to check in get_sys_info mailbox (Rob Evers) [890727] \r\n- [scsi] qla4xxx: Pass correct function param to qla4_8xxx_rd_direct (Rob Evers) [890727] \r\n- [scsi] qla4xxx: v5.03.00.00.06.04-k1 (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: update copyrights in LICENSE.qla4xxx (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Disable generating pause frames for ISP83XX (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Fix double clearing of risc_intr for ISP83XX (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: IDC implementation for Loopback (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Fix panic while rmmod (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Fail probe_adapter if IRQ allocation fails (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Prevent MSI/MSI-X falling back to INTx for ISP82XX (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Update idc reg in case of PCI AER (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Fix double IDC locking in qla4_8xxx_error_recovery (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Clear interrupt while unloading driver for ISP83XX (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Print correct IDC version (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: Added new mbox cmd to pass driver version to FW (Chad Dupuis) [878048] \r\n- [scsi] qla4xxx: fix various printk and comment typos (Chad Dupuis) [878048] \r\n- [fs] autofs4: use simple_empty() for empty directory check (Ian Kent) [876795] \r\n- [fs] autofs4: dont clear DCACHE_NEED_AUTOMOUNT on rootless mount (Ian Kent) [876795] \r\n- [fs] gfs2: Fix race in gfs2_rs_alloc (Abhijith Das) [878476] \r\n- [fs] xfs: fix broken error handling in xfs_vm_writepage (Dave Chinner) [874539] \r\n- [drm] radeon: force rn50 chip to always report connected on analog output (Jerome Glisse) [892723] \r\n- [sound] alsa: add support for Teradici 2200 host card audio (Jaroslav Kysela) [890581] \r\n- [md] dm-raid: Fix RAID10's check for sufficient redundancy (Jonathan E Brassow) [889358] \r\n- [scsi] hpsa: update version number to 3.2.0 (Tomas Henzl) [891935] \r\n- [netdrv] cxgb4: Initialize data structures before using (Steve Best) [885756] \r\n[2.6.32-353.el6] \r\n- [mm] pageattr: prevent PSE and GLOABL leftovers to confuse pmd/pte_present and pmd_huge (Andrea Arcangeli) [878877] \r\n- [fs] gfs2: Fix FITRIM argument handling (Abhijith Das) [866932] \r\n- [fs] gfs2: Require user to provide argument for FITRIM (Abhijith Das) [866932] \r\n- [fs] exec: do not leave bprm->interp on stack (Josh Poimboeuf) [880146] {CVE-2012-4530} \r\n- [fs] exec: use -ELOOP for max recursion depth (Josh Poimboeuf) [880146] {CVE-2012-4530} \r\n- [fs] btrfs: close exclusive opens with close_bdev_exclusive() (Zach Brown) [874505] \r\n- [kernel] sched_rt: Fix hang where umount is stuck in synchronize_sched_expedited (Larry Woodman) [814768] \r\n \n[2.6.32-352.el6] \r\n- [md] raid10: Do not call md_raid10_unplug_device while holding spinlock (Jonathan E Brassow) [886658] \r\n- [md] dm-thin: commit before gathering status (Mike Snitzer) [882426] \r\n- [md] dm-thin: cleanup dead code (Mike Snitzer) [882426] \r\n- [md] dm-thin: rename cell_defer_except to cell_defer_no_holder (Mike Snitzer) [882426] \r\n- [md] dm-thin: emit 'ignore_discard' in status if discards are disabled (Mike Snitzer) [882426] \r\n- [md] dm-thin: wake the worker when a discard is prepared (Mike Snitzer) [882426] \r\n- [md] dm-thin: fix race between simultaneous io and discards to same block (Mike Snitzer) [882426] \r\n- [md] dm-thin: replace calls to cell_release_singleton with cell_defer_except (Mike Snitzer) [882426] \r\n- [mm] Revert: ksm: numa awareness sysfs knob (Jarod Wilson) [743643] \r\n- [fs] gfs2: Reset rd_last_alloc when it reaches the end of the rgrp (Robert S Peterson) [882381] \r\n- [fs] gfs2: Stop looking for free blocks at end of rgrp (Robert S Peterson) [882381] \r\n- [drm] nouveau: cache ramcfg value for RAM_RESTRICT_ZM_GROUP (Ben Skeggs) [878384] \r\n- [drm] nouveau: disable use of tesla/fermi copy engines for buffer moves (Ben Skeggs) [878384] \r\n- [fs] xfs: fix direct IO nested transaction deadlock (Dave Chinner) [876426] \r\n \n[2.6.32-351.el6] \r\n- [kernel] ptrace-utrace: fix PTRACE_GETEVENTMSG(pid) in sub-namespace (Oleg Nesterov) [782330] \r\n- [scsi] mpt2sas: fix for driver fails EEH recovery from injected pci bus error (Tomas Henzl) [829149] \r\n- [mm] memcontrol: propagate LRU accounting state when splitting THP (Johannes Weiner) [881714] \r\n- [net] sctp: proc: protect bind_addr->address_list accesses with rcu_read_lock() (Thomas Graf) [706038] \r\n- [net] sctp: Add RCU protection to assoc->transport_addr_list (Thomas Graf) [706038] \r\n- [s390] zfcp: Adapt to new FC_PORTSPEED semantics (Hendrik Brueckner) [855128] \r\n- [virt] virtio_net: allow to change mac when iface is running (Jiri Pirko) [882868] \r\n- [virt] kvm: Minimal hyper-v support (Vadim Rozenfeld) [871350] \r\n- [fs] gfs2: Journal DLM lock has wrong label (Steven Whitehouse) [884822] \r\n- [mm] huge_memory: fix typo in transparent_hugepage sysfs symlink (Jeremy Eder) [887308] \r\n- [mm] ksm: numa awareness sysfs knob (Petr Holasek) [743643] \r\n- [fs] btrfs: handle IS_ERR(inode) in btrfs_lookup() (Zach Brown) [870944] \r\n- [kernel] sched: Add irq_{enter,exit}() to scheduler_ipi() (Stanislaw Gruszka) [836964] \r\n- [kernel] panic: fix a possible deadlock in panic() (Tatsuya Kitamura) [871939] \r\n \n[2.6.32-350.el6] \r\n- [powerpc] perf: power_pmu_start restores incorrect values, breaking frequency events (Jiri Olsa) [880525] \r\n- [netdrv] mlx4: Allow choosing flow steering mode (Doug Ledford) [885191] \r\n- [netdrv] mlx4: Adjustments to Flow Steering activation logic for SRIOV (Doug Ledford) [885191] \r\n- [netdrv] mlx4: Fix wrong error flow in the flow steering wrapper (Doug Ledford) [885191] \r\n- [netdrv] mlx4: Add QPN enforcement for flow steering rules set by VFs (Doug Ledford) [885191] \r\n- [infiniband] mlx4: 64-byte CQE/EQE support (Doug Ledford) [885191] \r\n- [netdrv] mlx4: Fix potential deadlock in mlx4_eq_int() (Doug Ledford) [885191] \r\n- [infiniband] mlx4: Fix spinlock order to avoid lockdep warnings (Doug Ledford) [885191] \r\n- [netdrv] mlx4: Removing reserve vectors (Doug Ledford) [885191] \r\n- [netdrv] mlx4: Fix double-release-range in tx-rings (Doug Ledford) [885191] \r\n- [infiniband] mlx4: Fix QP1 P_Key processing in the Primary Physical Function (PPF) (Doug Ledford) [885191] \r\n- [infiniband] mlx4: Synchronize cleanup of MCGs in MCG paravirtualization (Doug Ledford) [885191] \r\n- [net] bonding: Bonding driver does not consider the gso_max_size setting of slave devices (Ivan Vecera) [883643] \r\n- [net] tcp: Fix >4GB writes on 64-bit (Daniel Borkmann) [885238] \r\n- [net] bridge: skip forwarding delay if not using STP (Thomas Graf) [881682] \r\n- [fs] nfs: Fix open(O_TRUNC) and ftruncate() error handling (Steve Dickson) [884263] \r\n- [fs] nfsd: add proc file listing kernel's gss_krb5 enctypes (Steve Dickson) [877113] \r\n- [fs] nfs: add nfs_sb_deactive_async to avoid deadlock (Steve Dickson) [871968] \r\n- [fs] nfs: fix page dirtying in NFS DIO read codepath (Jeff Layton) [876514] \r\n- [fs] nfs: don't zero out the rest of the page if we hit the EOF on a DIO READ (Jeff Layton) [876514] \r\n- [fs] handle null sb in get_super_thawed (Eric Sandeen) [874521] \r\n- [scsi] Fix race when removing SCSI devices (Tomas Henzl) [820880] \r\n- [netdrv] be2net: enable GRO by default (Ivan Vecera) [849930] \r\n- [netdrv] igb: fix compile warning if CONFIG_IGB_PTP is not set (Stefan Assmann) [886519] \r\n- [netdrv] bnx2x: Prevent link flaps when booting from SAN (Michal Schmidt) [881068] \r\n- [netdrv] bnx2x: Activate LFA (Michal Schmidt) [881068] \r\n- [acpi] apei: Fixup common access width firmware bug (Prarit Bhargava) [880465] \r\n- [acpi] apei: Avoid too much error reporting in runtime (Prarit Bhargava) [880465] \r\n- [acpi] apei: Fix incorrect APEI register bit width check and usage (Prarit Bhargav a ) [ 8 8 0 4 6 5 ] \r b r > - [ v i r t ] v h o s t : f i x l e n g t h f o r c r o s s r e g i o n d e s c r i p t o r ( M i c h a e l S . T s i r k i n ) [ 8 6 2 2 6 5 ] \r b r > - [ f s ] n f s : U s e F S - C a c h e i n v a l i d a t i o n ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] c a c h e f i l e s : I m p l e m e n t i n v a l i d a t i o n ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] v f s : M a k e m o r e c o m p l e t e t r u n c a t e o p e r a t i o n a v a i l a b l e t o C a c h e F i l e s ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : P r o v i d e p r o p e r i n v a l i d a t i o n ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : F i x o p e r a t i o n s t a t e m a n a g e m e n t a n d a c c o u n t i n g ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : M a k e c o o k i e r e l i n q u i s h m e n t w a i t f o r o u t s t a n d i n g r e a d s ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] c a c h e f i l e s : M a k e s o m e d e b u g g i n g s t a t e m e n t s c o n d i t i o n a l ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : C h e c k c o o k i e i s s t i l l c o r r e c t i n _ _ f s c a c h e _ r e a d _ o r _ a l l o c _ p a g e s ( ) ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : C h e c k t h a t t h e r e a r e n o r e a d o p s w h e n c o o k i e r e l i n q u i s h e d ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] c a c h e f i l e s : D o w n g r a d e t h e r e q u i r e m e n t s p a s s e d t o t h e a l l o c a t o r ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : V a l i d a t e p a g e m a p p i n g p o i n t e r v a l u e ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : F i x t h e m a r k i n g o f c a c h e d p a g e s ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : n f s _ m i g r a t e _ p a g e ( ) d o e s n o t w a i t f o r F S - C a c h e t o f i n i s h w i t h a p a g e ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : F i x _ _ f s c a c h e _ u n c a c h e _ a l l _ i n o d e _ p a g e s ( ) ' s o u t e r l o o p ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ f s ] f s c a c h e : A d d a h e l p e r t o b u l k u n c a c h e p a g e s o n a n i n o d e ( D a v i d H o w e l l s ) [ 6 9 9 9 3 1 ] \r b r > - [ s c s i ] q l a 2 x x x : R a m p d o w n q u e u e d e p t h f o r a t t a c h e d S C S I d e v i c e s w h e n d r i v e r r e s o u r c e s a r e l o w ( C h a d D u p u i s ) [ 8 2 9 7 3 9 ] \r b r > - [ s c s i ] q l a 2 x x x : D e t e r m i n e t h e n u m b e r o f o u t s t a n d i n g c o m m a n d s b a s e d o n a v a i l a b l e r e s o u r c e s ( C h a d D u p u i s ) [ 8 2 9 7 3 9 ] \r b r > - [ s 3 9 0 ] z f c p : r e t u r n e a r l y f r o m s l a v e _ d e s t r o y i f s l a v e _ a l l o c r e t u r n e d e a r l y ( H e n d r i k B r u e c k n e r ) [ 8 7 8 3 7 2 ] \r b r > - [ s c s i ] f c o e : f i x f c o e e n a b l e o n l i n k t o g g l e w h i l e i t i s s t i l l d i s a b l e d ( N e i l H o r m a n ) [ 8 7 5 2 7 1 ] \r b r > - [ s c s i ] L o g t h i n p r o v i s i o n i n g t h r e s h o l d e v e n t ( E w a n M i l n e ) [ 8 4 7 9 9 8 ] \r b r > - [ n e t d r v ] q l g e : N E T I F _ F _ G R O n e e d s t o b e p a r t o f h w _ f e a t u r e s i n s t e a d o f f e a t u r e s ( J o h n G r e e n ) [ 8 4 9 7 4 9 ] \r b r > - [ s 3 9 0 ] q e t h : s e t n e w m a c e v e n i f o l d m a c i s g o n e ( H e n d r i k B r u e c k n e r ) [ 8 8 3 4 5 8 ] \r b r > - [ s 3 9 0 ] q e t h : F i x I P A _ C M D _ Q I P A S S I S T r e t u r n c o d e h a n d l i n g ( H e n d r i k B r u e c k n e r ) [ 8 8 2 7 9 2 ] \r b r > \r b r > [ 2 . 6 . 3 2 - 3 4 9 . e l 6 ] \r b r > - [ r e d h a t ] k a b i : a d d i t i o n a l w h i t e l i s t s y m b o l s f o r R H E L - 6 . 4 ( J i r i O l s a ) [ 8 6 6 4 2 7 ] \r b r > \r b r > [ 2 . 6 . 3 2 - 3 4 8 . e l 6 ] \r b r > - [ i p c ] m q u e u e : P r e v e n t m q _ s e n d / r e c e i v e m e m o r y c o r r u p t i o n ( L a r r y W o o d m a n ) [ 8 8 5 0 3 0 ] \r b r > - [ f s ] n f s : p r e v e n t d e l e g r e t u r n a t t r d e a d l o c k ( D a v i d J e f f e r y ) [ 8 7 0 1 4 2 ] \r b r > - [ n e t d r v ] t g 3 : D o n o t s e t T S S f o r 5 7 1 9 a n d 5 7 2 0 ( J o h n F e e n e y ) [ 8 2 3 3 7 1 ] \r b r > - [ s c s i ] l p f c : U p d a t e l p f c v e r s i o n f o r 8 . 3 . 5 . 8 6 . 1 p d r i v e r r e l e a s e ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x e d s e t t i n g s e q u e n t i a l d e l i v e r y b i t i n a s e r v i c e c l a s s t h a t i s n o t v a l i d ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x e d b o o t f r o m s a n f a i l u r e w h e n S L I 4 F C d e v i c e p r e s e n t e d o n t h e s a m e P C I b u s ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : A d d L O G O s u p p o r t a f t e r A B T S c o m p l i a n c e ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x e d n o t r e p o r t i n g l o g i c a l l i n k s p e e d t o S C S I m i d l a y e r w h e n Q o S n o t o n ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x e d S C S I h o s t c r e a t e s h o w i n g w r o n g l i n k s p e e d o n S L I 3 H B A p o r t s ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x e d k e r n e l w a r n i n g o n s p i n l o c k u s a g e o n s o m e d i s t r i b u t i o n s ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x e d L i n u x g e n e r i c f i r m w a r e d o w n l o a d o n S L I 4 d e v i c e s w i t h l o n g e r m o d u l e n a m e s ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x e r r o r w i t h f a b r i c s e r v i c e p a r a m e t e r s c a u s i n g p e r f o r m a n c e i s s u e s ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x e d m e s s a g e s f o r m i s c o n f i g u r e d p o r t e r r o r s ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x F C P 2 R e t r i e s f o r n o n - r / w c o m m a n d s ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : F i x i n c o r r e c t c o m m e n t i n T 1 0 D I F a t t r i b u t e s ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : C o r r e c t m i s s i n g q u e u e d e s t r o y o n f u n c t i o n r e s e t ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : A d d e d c h e c k i n g B M B X r e g i s t e r f o r R D Y b i t b e f o r e w r i t i n g t h e f i r s t a d d r e s s i n ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s c s i ] l p f c : M i s c c h a n g e s t o o p t i m i z e c r i t i c a l p a t h ( R o b E v e r s ) [ 8 7 7 1 4 9 ] \r b r > - [ s 3 9 0 ] q d i o : f i x k e r n e l p a n i c f o r z f c p 3 1 - b i t ( H e n d r i k B r u e c k n e r ) [ 8 7 8 3 8 0 ] \r b r > - [ s 3 9 0 ] z c r y p t : m s g T y p e 5 0 ( R S A - C R T ) f i x ( H e n d r i k B r u e c k n e r ) [ 8 7 5 9 7 7 ] \r b r > - [ n e t d r v ] i x g b e : f i x u n i n i t i a l i z e d e v e n t . t y p e i n i x g b e _ p t p _ c h e c k _ p p s _ e v e n t ( A n d y G o s p o d a r e k ) [ 8 8 4 3 6 9 ] \r b r > - [ n e t d r v ] i x g b e : ( P T P ) F i x P P S i n t e r r u p t c o d e ( A n d y G o s p o d a r e k ) [ 8 8 4 3 6 9 ] \r b r > - [ n e t d r v ] i x g b e : F i x P T P X 5 4 0 S D P a l i g n m e n t c o d e f o r P P S s i g n a l ( A n d y G o s p o d a r e k ) [ 8 8 4 3 6 9 ] \r b r > - [ s 3 9 0 ] z f c p : s u p p o r t f o r h a r d w a r e d a t a r o u t e r ( H e n d r i k B r u e c k n e r ) [ 8 2 3 0 1 6 ] \r b r > - [ s 3 9 0 ] q d i o : b a s e s u p p o r t f o r h a r d w a r e d a t a r o u t e r w i t h z f c p ( H e n d r i k B r u e c k n e r ) [ 8 2 3 0 1 6 ] \r b r > - [ s 3 9 0 ] q d i o : S p l i t S B A L e n t r y f l a g s ( H e n d r i k B r u e c k n e r ) [ 8 2 3 0 1 6 ] \r b r > - [ n e t ] n e t f i l t e r / i p s e t : C h e c k a n d r e j e c t c r a z y / 0 i n p u t p a r a m e t e r s ( T h o m a s G r a f ) [ 8 8 0 9 2 0 ] \r b r > - [ k e r n e l ] k m o d : m a k e _ _ r e q u e s t _ m o d u l e ( ) k i l l a b l e ( O l e g N e s t e r o v ) [ 8 1 9 5 2 9 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] k m o d : i n t r o d u c e c a l l _ m o d p r o b e ( ) h e l p e r ( O l e g N e s t e r o v ) [ 8 1 9 5 2 9 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] u s e r m o d e h e l p e r : i m p l e m e n t U M H _ K I L L A B L E ( O l e g N e s t e r o v ) [ 8 1 9 5 2 9 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] u s e r m o d e h e l p e r : i n t r o d u c e u m h _ c o m p l e t e ( s u b _ i n f o ) ( O l e g N e s t e r o v ) [ 8 1 9 5 2 9 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] c a l l _ u s e r m o d e h e l p e r : s i m p l i f y / f i x U M H _ N O _ W A I T c a s e ( O l e g N e s t e r o v ) [ 8 1 9 5 2 9 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] w a i t _ f o r _ h e l p e r : S I G C H L D f r o m u s e r - s p a c e c a n l e a d t o u s e - a f t e r - f r e e ( O l e g N e s t e r o v ) [ 8 1 9 5 2 9 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ n e t d r v ] q l g e : B a c k p o r t o f f l o a d f e a t u r e s t o v l a n i n t e r f a c e s ( J o h n G r e e n ) [ 8 4 9 7 4 9 ] \r b r > - [ n e t d r v ] i g b v f : w o r k a r o u n d i 3 5 0 e r r a t u m ( S t e f a n A s s m a n n ) [ 8 7 0 6 3 8 ] / p > \n \n \n b r > h 2 > R e l a t e d C V E s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 2 - 4 5 0 8 . h t m l \" > C V E - 2 0 1 2 - 4 5 0 8 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 1 9 0 . h t m l \" > C V E - 2 0 1 3 - 0 1 9 0 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 2 - 4 5 4 2 . h t m l \" > C V E - 2 0 1 2 - 4 5 4 2 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 3 0 9 . h t m l \" > C V E - 2 0 1 3 - 0 3 0 9 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 3 1 0 . h t m l \" > C V E - 2 0 1 3 - 0 3 1 0 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 3 1 1 . h t m l \" > C V E - 2 0 1 3 - 0 3 1 1 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n b r > h 2 > U p d a t e d P a c k a g e s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r s t y l e = \" c o l o r : # F F 0 0 0 0 ; \" > t d > b > R e l e a s e / A r c h i t e c t u r e / b > t d > b > F i l e n a m e / b > / t d > t d > b > M D 5 s u m / b > / t d > t d > b > S u p e r s e d e d B y A d v i s o r y / b > / t d > / t r > \n t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( i 3 8 6 ) / t d > t d > k e r n e l - 2 . 6 . 3 2 - 3 5 8 . e l 6 . s r c . r p m / t d > t d > 2 1 4 3 6 f d b 5 4 6 3 6 6 4 5 a b 9 1 3 0 9 8 0 8 2 9 6 b d 4 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 3 2 - 3 5 8 . e l 6 . i 6 8 6 . r p m / t d > t d > 7 6 a b 3 a 7 6 8 e 6 1 c e 9 2 9 9 6 2 2 f 1 e 5 8 3 1 d 4 3 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 3 2 - 3 5 8 . e l 6 . i 6 8 6 . r p m / t d > t d > 2 3 0 6 8 d c 3 2 3 7 1 e 7 e e 3 6 1 e e b 0 4 d 9 1 4 d 2 1 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 3 2 - 3 5 8 . e l 6 . i 6 8 6 . r p m / t d > t d > b c 2 6 9 5 a 2 8 7 e 4 5 c 7 9 5 2 0 5 6 a 4 5 3 7 3 6 7 c d b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 3 2 - 3 5 8 . e l 6 . i 6 8 6 . r p m / t d > t d > 7 2 8 0 0 6 3 b a f 2 7 f b 1 4 e 6 3 7 1 7 6 d 7 d 3 b 6 1 5 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 3 2 - 3 5 8 . e l 6 . n o a r c h . r p m / t d > t d > a 9 8 b 0 a 2 a f f 8 6 2 7 5 f 8 c 1 d 7 0 5 0 b 8 1 5 b 5 9 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - f i r m w a r e - 2 . 6 . 3 2 - 3 5 8 . e l 6 . n o a r c h . r p m / t d > t d > 5 8 c b 6 4 8 5 7 2 5 d c 2 a 8 7 5 b a 7 0 8 2 3 d 0 a 2 b 3 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 3 2 - 3 5 8 . e l 6 . i 6 8 6 . r p m / t d > t d > d 9 7 2 a 7 9 e a 6 0 b b 4 f 3 6 b 1 0 5 8 b 8 9 9 e b 2 4 0 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p e r f - 2 . 6 . 3 2 - 3 5 8 . e l 6 . i 6 8 6 . r p m / t d > t d > c c f 7 d 7 7 3 b 3 4 9 7 d 6 2 9 4 7 d c 1 0 9 2 3 b f a d 0 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p y t h o n - p e r f - 2 . 6 . 3 2 - 3 5 8 . e l 6 . i 6 8 6 . r p m / t d > t d > f 8 3 4 7 4 c 9 4 4 f 2 e c b d 3 2 b 0 3 b 9 3 e 6 7 3 d 3 9 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( x 8 6 _ 6 4 ) / t d > t d > k e r n e l - 2 . 6 . 3 2 - 3 5 8 . e l 6 . s r c . r p m / t d > t d > 2 1 4 3 6 f d b 5 4 6 3 6 6 4 5 a b 9 1 3 0 9 8 0 8 2 9 6 b d 4 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 3 2 - 3 5 8 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > b 2 9 d 4 9 d f 1 f 6 e 2 f 8 3 d 5 4 5 a 5 2 0 e 9 0 d 9 b 7 c / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 3 2 - 3 5 8 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > a d c a 5 d c e 8 d 0 b 9 e d 9 8 8 6 4 b f b f 3 e 0 0 9 8 2 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 3 2 - 3 5 8 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 1 6 c 1 d 2 4 6 d 0 9 a 6 c 1 b a 1 1 2 c 2 e 6 7 9 b 2 b 1 2 4 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 3 2 - 3 5 8 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 4 e 4 3 a 6 d 3 a d 4 f d b 2 a 7 f 9 5 6 a 9 e b 7 1 5 1 6 1 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 3 2 - 3 5 8 . e l 6 . n o a r c h . r p m / t d > t d > a 9 8 b 0 a 2 a f f 8 6 2 7 5 f 8 c 1 d 7 0 5 0 b 8 1 5 b 5 9 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - f i r m w a r e - 2 . 6 . 3 2 - 3 5 8 . e l 6 . n o a r c h . r p m / t d > t d > 5 8 c b 6 4 8 5 7 2 5 d c 2 a 8 7 5 b a 7 0 8 2 3 d 0 a 2 b 3 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 3 2 - 3 5 8 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > c 5 0 3 0 a 3 1 a 7 4 3 d 3 9 6 5 c 5 2 e 5 2 a 1 a 9 e 6 5 b 5 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p e r f - 2 . 6 . 3 2 - 3 5 8 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 8 6 8 e 3 9 c 6 4 e e 2 a 0 6 4 c a 2 0 3 a 1 6 2 a 8 9 3 c 2 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p y t h o n - p e r f - 2 . 6 . 3 2 - 3 5 8 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > b 6 7 7 d 0 5 2 9 9 2 5 0 7 2 d 4 9 c 1 c e 7 1 6 6 a d 4 3 8 5 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n \n b r > b r > \n b r > p > \n T h i s p a g e i s g e n e r a t e d a u t o m a t i c a l l y a n d h a s n o t b e e n c h e c k e d f o r e r r o r s o r o m i s s i o n s . F o r c l a r i f i c a t i o n \n o r c o r r e c t i o n s p l e a s e c o n t a c t t h e a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / \" > O r a c l e L i n u x U L N t e a m / a > / p > \n \n \n \n / d i v > \n ! - - \n / d i v > \n - - > \n / d i v > \n / d i v > \n \n \n d i v i d = \" m c 1 6 \" c l a s s = \" m c 1 6 v 0 \" > \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > T e c h n i c a l i n f o r m a t i o n / h 2 > \n u l > \n l i > a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / h a r d w a r e - c e r t i f i c a t i o n s \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x C e r t i f i e d H a r d w a r e / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / l i b r a r y / e l s p - l i f e t i m e - 0 6 9 3 3 8 . p d f \" > O r a c l e L i n u x S u p p o r t e d R e l e a s e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > O r a c l e L i n u x S u p p o r t / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / t e c h n o l o g i e s / l i n u x / O r a c l e L i n u x S u p p o r t / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x S u p p o r t / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / p r e m i e r / s e r v e r s - s t o r a g e / o v e r v i e w / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e P r e m i e r S u p p o r t f o r S y s t e m s / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / a d v a n c e d - c u s t o m e r - s e r v i c e s / o v e r v i e w / \" > A d v a n c e d C u s t o m e r S e r v i c e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 2 \" > \n h 2 > C o n n e c t / h 2 > \n u l > \n l i c l a s s = \" f b i c o n \" > a h r e f = \" h t t p : / / w w w . f a c e b o o k . c o m / o r a c l e l i n u x \" t i t l e = \" F a c e b o o k \" n a m e = \" F a c e b o o k \" t a r g e t = \" _ b l a n k \" i d = \" F a c e b o o k \" > F a c e b o o k / a > / l i > \n l i c l a s s = \" t w i c o n \" > a h r e f = \" h t t p : / / w w w . t w i t t e r . c o m / O r a c l e L i n u x \" t i t l e = \" T w i t t e r \" n a m e = \" T w i t t e r \" t a r g e t = \" _ b l a n k \" i d = \" T w i t t e r \" > T w i t t e r / a > / l i > \n l i c l a s s = \" i n i c o n \" > a h r e f = \" h t t p : / / w w w . l i n k e d i n . c o m / g r o u p s ? g i d = 1 2 0 2 3 8 \" t i t l e = \" L i n k e d I n \" n a m e = \" L i n k e d I n \" t a r g e t = \" _ b l a n k \" i d = \" L i n k e d I n \" > L i n k e d I n / a > / l i > \n l i c l a s s = \" y t i c o n \" > a h r e f = \" h t t p : / / w w w . y o u t u b e . c o m / o r a c l e l i n u x c h a n n e l \" t i t l e = \" Y o u T u b e \" n a m e = \" Y o u T u b e \" t a r g e t = \" _ b l a n k \" i d = \" Y o u T u b e \" > Y o u T u b e / a > / l i > \n l i c l a s s = \" b l o g i c o n \" > a h r e f = \" h t t p : / / b l o g s . o r a c l e . c o m / l i n u x \" t i t l e = \" B l o g \" n a m e = \" B l o g \" > B l o g / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 3 \" > \n h 2 > C o n t a c t U s / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / c o r p o r a t e / c o n t a c t / g l o b a l - 0 7 0 5 1 1 . h t m l \" > G l o b a l c o n t a c t s / a > / l i > \n l i > O r a c l e 1 - 8 0 0 - 6 3 3 - 0 6 9 1 / l i > \n / u l > \n / d i v > \n / d i v > \n / d i v > \n \n d i v i d = \" m c 0 4 \" c l a s s = \" m c 0 4 v 1 \" > \n d i v c l a s s = \" m c 0 4 w 1 \" > \n a h r e f = \" h t t p : / / o r a c l e . c o m \" > i m g s r c = \" / / w w w . o r a c l e i m g . c o m / a s s e t s / m c 0 4 - f o o t e r - l o g o . p n g \" b o r d e r = \" 0 \" a l t = \" s o f t w a r e . h a r d w a r e . c o m p l e t e \" / > / a > \n / d i v > \n \n d i v c l a s s = \" m c 0 4 w 2 \" > \n a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / s u b s c r i b e / i n d e x . h t m l \" > S u b s c r i b e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / e m p l o y m e n t / i n d e x . h t m l \" > C a r e e r s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / c o n t a c t / i n d e x . h t m l \" > C o n t a c t U s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / c o p y r i g h t . h t m l \" > L e g a l N o t i c e s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / t e r m s . h t m l \" > T e r m s o f U s e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / p r i v a c y . h t m l \" > Y o u r P r i v a c y R i g h t s / a > \n / d i v > \n / d i v > \n / d i v > \n / b o d y > \n / h t m l > \n ", "modified": "2013-02-27T00:00:00", "published": "2013-02-27T00:00:00", "id": "ELSA-2013-0496", "href": "http://linux.oracle.com/errata/ELSA-2013-0496.html", "title": "Oracle Linux 6 kernel security and bugfix update", "type": "oraclelinux", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:49:04", "bulletinFamily": "unix", "description": " [2.6.39-400.17.1] \r\n- This is a fix on dlm_clean_master_list() (Xiaowei.Hu) \r\n- RDS: fix rds-ping spinlock recursion (jeff.liu) [Orabug: 16223050] \r\n- vhost: fix length for cross region descriptor (Michael S. Tsirkin) [Orabug: \r\n16387183] {CVE-2013-0311} \r\n- kabifix: block/scsi: Allow request and error handling timeouts to be \r\nspecified (Maxim Uvarov) \r\n- block/scsi: Allow request and error handling timeouts to be specified (Martin \r\nK. Petersen) [Orabug: 16372401] \r\n- [SCSI] Shorten the path length of scsi_cmd_to_driver() (Li Zhong) [Orabug: \r\n16372401] \r\n- Fix NULL dereferences in scsi_cmd_to_driver (Mark Rustad) [Orabug: 16372401] \r\n- SCSI: Fix error handling when no ULD is attached (Martin K. Petersen) \r\n[Orabug: 16372401] \r\n- Handle disk devices which can not process medium access commands (Martin K. \r\nPetersen) [Orabug: 16372401] \r\n- the ac->ac_allow_chain_relink=0 won't disable group relink (Xiaowei.Hu) \r\n[Orabug: 14842737] \r\n- pci: hotplug: fix null dereference in pci_set_payload() (Jerry Snitselaar) \r\n[Orabug: 16345420] \r\n \n[2.6.39-400.16.0] \r\n- epoll: prevent missed events on EPOLL_CTL_MOD (Eric Wong) [Orabug: 16363540] \r\n- rds: this resolved crash while removing rds_rdma module. orabug: 16268201 \r\n(Bang Nguyen) [Orabug: 16268201] \r\n- rds: scheduling while atomic on failover orabug: 16275095 (Bang Nguyen) \r\n[Orabug: 16268201] \r\n- SRP: Revert back to 2.6.39-400.8.0 code (Ajaykumar Hotchandani) [Orabug: \r\n16268201] \r\n- iSER: Revert back to 2.6.39-400.8.0 code (Ajaykumar Hotchandani) [Orabug: \r\n16268201] \r\n \n[2.6.39-400.15.0] \r\n- x86/xen: don't assume %ds is usable in xen_iret for 32-bit PVOPS. (Jan \r\nBeulich) {CVE-2013-0228} \r\n- xen-blkfront: drop the use of llist_for_each_entry_safe (Konrad Rzeszutek \r\nWilk) [Orabug: 16263164] \r\n- Revert 'xen PVonHVM: use E820_Reserved area for shared_info' (Konrad \r\nRzeszutek Wilk) [Orabug: 16297716] \r\n- Revert 'xen/PVonHVM: fix compile warning in init_hvm_pv_info' (Konrad \r\nRzeszutek Wilk) \r\n \n[2.6.39-400.14.0] \r\n- xfs: use shared ilock mode for direct IO writes by default (Dave Chinner) \r\n[Orabug: 16304938] \r\n- sched: fix divide by zero at {thread_group,task}_times (Stanislaw Gruszka) \r\n[Orabug: 15956690] \r\n- Revert 'Revert 'cgroup: notify_on_release may not be triggered in some \r\ncases'' (Maxim Uvarov) \r\n- xen_fmr: Verify XEN platform before running xen_fmr drivers (Yuval Shaia) \r\n[Orabug: 16302435] \r\n- rds: unregister IB event handler on shutdown (Bang Nguyen) [Orabug: 16302435] \r\n- rds: HAIP support child interface (Bang Nguyen) [Orabug: 16302435] \r\n- RDS HAIP misc fixes (Bang Nguyen) [Orabug: 16302435] \r\n- Ignore failover groups if HAIP is disabled (Bang Nguyen) [Orabug: 16302435] \r\n- RDS: RDS rolling upgrade (Saeed Mahameed) [Orabug: 16302435] \r\n- mlx4_core: use correct FMR number of clients according to PRM. (Saeed \r\nMahameed) [Orabug: 16302435] \r\n \n[2.6.39-400.13.0] \r\n- kmod: make __request_module() killable (Oleg Nesterov) [Orabug: 16286305] \r\n{CVE-2012-4398} \r\n- kmod: introduce call_modprobe() helper (Oleg Nesterov) [Orabug: 16286305] \r\n{CVE-2012-4398} \r\n- usermodehelper: implement UMH_KILLABLE (Oleg Nesterov) [Orabug: 16286305] \r\n{CVE-2012-4398} \r\n- usermodehelper: introduce umh_complete(sub_info) (Oleg Nesterov) [Orabug: \r\n16286305] {CVE-2012-4398} \r\n- KVM: x86: invalid opcode oops on SET_SREGS with OSXSAVE bit set \r\n(CVE-2012-4461) (Jerry Snitselaar) [Orabug: 16286290] {CVE-2012-4461} \r\n- exec: do not leave bprm->interp on stack (Kees Cook) [Orabug: 16286267] \r\n{CVE-2012-4530} \r\n- exec: use -ELOOP for max recursion depth (Kees Cook) [Orabug: 16286267] \r\n{CVE-2012-4530} \r\n- xen-pciback: rate limit error messages from xen_pcibk_enable_msi{,x}() (Jan \r\nBeulich) [Orabug: 16243736] {CVE-2013-0231} \r\n- netback: correct netbk_tx_err to handle wrap around. (Ian Campbell) [Orabug: \r\n16243309] {CVE-2013-0216 CVE-2013-0217} \r\n- xen/netback: free already allocated memory on failure in \r\nxen_netbk_get_requests (Ian Campbell) [Orabug: 16243309] {CVE-2013-0216 \r\nCVE-2013-0217} \r\n- xen/netback: don't leak pages on failure in xen_netbk_tx_check_gop. (Ian \r\nCampbell) [Orabug: 16243309] {CVE-2013-0216 CVE-2013-0217} \r\n- xen/netback: shutdown the ring if it contains garbage. (Ian Campbell) \r\n[Orabug: 16243309] {CVE-2013-0216 CVE-2013-0217} \r\n- SCSI: scsi_remove_target: fix softlockup regression on hot remove (Dan \r\nWilliams) [Orabug: 16242926] \r\n \n[2.6.39-400.12.0] \r\n- IB: Add config options for Mellanox driver Xen FMR support. (Ajaykumar \r\nHotchandani) [Orabug: 16234102] \r\n- IB: Enable Xen FMR support for Mellanox driver. (Ajaykumar Hotchandani) \r\n[Orabug: 16234102] \r\n \n[2.6.39-400.11.0] \r\n- cnic: don't use weak dependencies for ipv6 (Jerry Snitselaar) [Orabug: \r\n16207564] \r\n- ext4: remove unaligned AIO warning printk (Eric Sandeen) [Orabug: 14096480] \r\n- SPEC: add block/net modules to list used by installer (Guru Anbalagane) \r\n[Orabug: 14224837] \r\n- dm mpath: add retain_attached_hw_handler feature (Mike Snitzer) [Orabug: \r\n16199397] \r\n- [SCSI] scsi_dh: add scsi_dh_attached_handler_name (Mike Snitzer) [Orabug: \r\n16199397] \r\n- xen/grant-table: Force to use v1 of grants. (Konrad Rzeszutek Wilk) [Oracle- \r\nbug: 16039922] \r\n- xen: netback: handle compound page fragments on transmit. (Ian Campbell) \r\n- xen: Fix stack corruption in xen_failsafe_callback for 32bit PVOPS guests. \r\n(Andrew Cooper) {CVE-2013-0190} \r\n- xen/grant-table: correctly initialize grant table version 1 (Matt Wilson) \r\n \n[2.6.39-400.10.0] \r\n- btrfs: fix incompatible pointer warning (Jerry Snitselaar) \r\n- bnx2x: enable support for ethtool op get_rxfh_indir_size (Jerry Snitselaar) \r\n- Revert 'cgroup: notify_on_release may not be triggered in some cases' (Maxim \r\nUvarov) [Orabug: 16167473] \r\n- mlx4: disable build for i686 (Maxim Uvarov) \r\n \n[2.6.39-400.9.0] \r\n- mlx4_ib: alias_GUID, calculate slave port state in sa query handler \r\n(Ajaykumar Hotchandani) [Orabug: 15997083] \r\n- RDS: Fixes warning while rds-info. spin_lock_irqsave() is changed to \r\nspin_lock_bh(). (Ajaykumar Hotchandani) [Orabug: 15997083] \r\n- mlx4_en: handle HCA events correctly (Ajaykumar Hotchandani) [Orabug: \r\n15997083] \r\n- ixgbevf fix typo in Makefile (Maxim Uvarov) [Orabug: 16168292] \r\n- [patch3/3] kernel config: Mellanox OFED R2, 0080 release (Ajaykumar \r\nHotchandani) [Orabug: 15997083] \r\n- [patch2/3] RDS merge for UEK2 (Ajaykumar Hotchandani) [Orabug: 15997083] \r\n- [patch1/3] Merge for Mellanox OFED R2, 0080 release (Ajaykumar Hotchandani) \r\n[Orabug: 15997083] \r\n \n[2.6.39-400.8.0] \r\n- git-changelog: don't print debug info (Maxim Uvarov) \r\n- spec: remove not used firmwares (Maxim Uvarov) [Orabug: 16048277] \r\n \n[2.6.39-400.7.0] \r\n- git-changelog: search for bug # in merge commit (Maxim Uvarov) \r\n- be2iscsi: Bump the driver version (Jayamohan Kallickal) [Orabug: 16023790] \r\n- be2iscsi: Fix Unrecoverable Error Detection (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- be2iscsi: Fix for MBX timeout issue (Jayamohan Kallickal) [Orabug: 16023790] \r\n- be2iscsi: Fix the copyright information (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- be2iscsi: Fix issue of displaying adapter family. (Jayamohan Kallickal) \r\n[Orabug: 16023790] \r\n- be2iscsi: Fix Task Completion Event handling (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- be2iscsi: Fix session update context with V2 version. (Jayamohan Kallickal) \r\n[Orabug: 16023790] \r\n- be2iscsi: Fix support for V2 version of WRB. (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- be2iscsi: Fix support for handling CQ_CREATE V2 version. (Jayamohan \r\nKallickal) [Orabug: 16023790] \r\n- be2iscsi: Fix max EQ supported by the driver. (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- be2iscsi: Fix driver support for an adapter. (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- be2iscsi: Fix return value and typo. (Jayamohan Kallickal) [Orabug: 16023790] \r\n- be2iscsi: Fix kernel panic in blk_iopoll disable mode. (Jayamohan Kallickal) \r\n[Orabug: 16023790] \r\n- be2iscsi: Issue an FLR when driver is loaded (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- be2iscsi: Display driver name and version in device attribute (Jayamohan \r\nKallickal) [Orabug: 16023790] \r\n- be2iscsi: Fix max supported EQ count to 8. (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- be2iscsi: Fix memory leak in control path of driver (Jayamohan Kallickal) \r\n[Orabug: 16023790] \r\n- be2iscsi: Display Completion Event string instead of Opcode (Jayamohan \r\nKallickal) [Orabug: 16023790] \r\n- be2iscsi: Fix the issue with soft reset. (Jayamohan Kallickal) [Orabug: \r\n16023790] \r\n- netxen: update to qlogic 4.0.80 (Sritej Velaga) [Orabug: 16025025] \r\n- qlge: update to qlogic 1.00.00.31 (Sritej Velaga) [Orabug: 16025042] \r\n- qlcnic: Update to 5.1.27.35 (Sritej Velaga) [Orabug: 16024990] \r\n- [SCSI] scsi_dh_alua: Add fusionio ION LUNs to scsi_dh_alua device list (Mike \r\nChristie) [Orabug: 16081231] \r\n- bonding: fixup typo in rlb mode of bond and bridge fix (Guru Anbalagane) \r\n[Orabug: 16069448] \r\n- qla4xxx: Updated driver version to 5.03.00.01.06.02-uek2 (Tej Parkash) \r\n[Orabug: 16067337] \r\n- qla4xxx: Correct the validation to check in get_sys_info mailbox (Nilesh \r\nJavali) [Orabug: 16067337] \r\n- qla4xxx: Pass correct function param to qla4_8xxx_rd_direct (Vikas Chaudhary) \r\n[Orabug: 16067337] \r\n- qla4xxx: Fix memory corruption issue in qla4xxx_get_ep_fwdb. (Manish \r\nRangankar) [Orabug: 16067337] \r\n- qla4xxx: Allow reset in link down case (Harish Zunjarrao) [Orabug: 16067337] \r\n- qla4xxx: Fix MBOX intr switching from polling to intr mode for ISP83XX (Vikas \r\nChaudhary) [Orabug: 16067337] \r\n- [SCSI] hpsa: change confusing message to be more clear (Mike Miller) [Orabug: \r\n14793661] \r\n- [SCSI] hpsa: retry commands completing with status of UNSOLICITED_ABORT \r\n(Stephen M. Cameron) [Orabug: 14793661] \r\n- [SCSI] hpsa: use ioremap_nocache instead of ioremap (Stephen M. Cameron) \r\n[Orabug: 14793661] \r\n- [SCSI] hpsa: fix incorrect abort diagnostic message (Stephen M. Cameron) \r\n[Orabug: 14793661] \r\n- [SCSI] hpsa: dial down lockup detection during firmware flash (Stephen M. \r\nCameron) [Orabug: 14793661] \r\n- [SCSI] hpsa: add new RAID level '1(ADM)' (Mike Miller) [Orabug: 14793661] \r\n- [SCSI] hpsa: factor out hpsa_free_irqs_and_disable_msix (Stephen M. Cameron) \r\n[Orabug: 14793661] \r\n- [SCSI] hpsa: refine interrupt handler locking for greater concurrency (Matt \r\nGates) [Orabug: 14793661] \r\n- [SCSI] hpsa: use multiple reply queues (Matt Gates) [Orabug: 14793661] \r\n- [SCSI] hpsa: factor out tail calls to next_command() in \r\nprocess_(non)indexed_cmd() (Stephen M. Cameron) [Orabug: 14793661] \r\n- [SCSI] hpsa: do aborts two ways (Stephen M. Cameron) [Orabug: 14793661] \r\n- [SCSI] hpsa: add abort error handler function (Stephen M. Cameron) [Orabug: \r\n14793661] \r\n- [SCSI] hpsa: remove unused parameter from finish_cmd (Stephen M. Cameron) \r\n[Orabug: 14793661] \r\n- [SCSI] hpsa: do not give up retry of driver cmds after only 3 retries \r\n(Stephen M. Cameron) [Orabug: 14793661] \r\n- [SCSI] hpsa: retry driver initiated commands on busy status (Matt Bondurant) \r\n[Orabug: 14793661] \r\n- [SCSI] hpsa: suppress excessively chatty error messages (Stephen M. Cameron) \r\n[Orabug: 14793661] \r\n- [SCSI] hpsa: enable bus master bit after pci_enable_device (Stephen M. \r\nCameron) [Orabug: 14793661] \r\n- [SCSI] hpsa: do not skip disabled devices (Stephen M. Cameron) [Orabug: \r\n14793661] \r\n- [SCSI] hpsa: call pci_disable_device on driver unload (Stephen M. Cameron) \r\n[Orabug: 14793661] \r\n- [SCSI] hpsa: factor out driver name (Stephen M. Cameron) [Orabug: 14793661] \r\n- [SCSI] hpsa: gen8plus Smart Array IDs (Mike Miller) [Orabug: 14793661] \r\n \n[2.6.39-400.6.0] \r\n- qla3xxx: Ensure request/response queue addr writes to the registers (Joe Jin) \r\n[Orabug: 14614290] \r\n- tcp: fix tcp_trim_head() (Eric Dumazet) [Orabug: 14810429] \r\n- mm/hotplug: correctly add new zone to all other nodes' zone lists (Jiang Liu) \r\n[Orabug: 16020976 Bug-db: 14798] {CVE-2012-5517} \r\n- Divide by zero in TCP congestion control Algorit h m . ( J e s p e r D a n g a a r d B r o u e r ) \r b r > [ O r a b u g : 1 6 0 2 0 6 5 6 B u g - d b : 1 4 7 9 8 ] { C V E - 2 0 1 2 - 4 5 6 5 } \r b r > - F i x l e n g t h o f b u f f e r c o p i e d i n _ _ n f s 4 _ g e t _ a c l _ u n c a c h e d ( S a c h i n P r a b h u ) [ B u g - \r b r > d b : 1 4 7 9 8 ] { C V E - 2 0 1 2 - 2 3 7 5 } \r b r > - A v o i d r e a d i n g p a s t b u f f e r w h e n c a l l i n g G E T A C L ( S a c h i n P r a b h u ) [ B u g - d b : 1 4 7 9 8 ] \r b r > { C V E - 2 0 1 2 - 2 3 7 5 } \r b r > - A v o i d b e y o n d b o u n d s c o p y w h i l e c a c h i n g A C L ( S a c h i n P r a b h u ) [ B u g - d b : 1 4 7 9 8 ] \r b r > { C V E - 2 0 1 2 - 2 3 7 5 } \r b r > - M e r g e t a g ' v 2 . 6 . 3 9 - 4 0 0 # b u g 1 6 0 1 1 1 5 4 ' o f g i t : / / c a - g i t . u s . o r a c l e . c o m / l i n u x - \r b r > s n i t s - p u b l i c ( M a x i m U v a r o v ) [ O r a b u g : 1 6 0 1 1 1 5 4 ] \r b r > - q l a 2 x x x : U p d a t e t h e d r i v e r v e r s i o n t o 8 . 0 4 . 0 0 . 1 1 . 3 9 . 0 - k . ( S a u r a v K a s h y a p ) \r b r > - q l a 2 x x x : O b t a i n l o o p b a c k i t e r a t i o n c o u n t f r o m b s g r e q u e s t . ( J o e C a r n u c c i o ) \r b r > - q l a 2 x x x : U p d a t e t h e F T P s i t e r e f e r e n c e s i n t h e d r i v e r s o u r c e s . ( G i r i d h a r \r b r > M a l a v a l i ) \r b r > - q l a 2 x x x : D e b u g I D c o r r e c t i o n s . ( C h a d D u p u i s ) \r b r > - q l a 2 x x x : R e j e c t l o o p b a c k r e q u e s t i f o n e i s a l r e a d y i n p r o g r e s s . ( C h a d D u p u i s ) \r b r > - q l a 2 x x x : P r i n t i g n o r e m e s s a g e w h e n t h e r m a l i s n o t s u p p o r t e d . ( J o e C a r n u c c i o ) \r b r > - q l a 2 x x x : A v o i d n u l l p o i n t e r d e r e f e r e n c e i n s h u t d o w n r o u t i n e . ( M a s a n a r i I i d a ) \r b r > - q l a 2 x x x : G e t V P D i n f o r m a t i o n f r o m c o m m o n l o c a t i o n f o r C N A . ( S a u r a v K a s h y a p ) \r b r > - q l a 2 x x x : C o r r e c t r a c e i n l o o p _ s t a t e a s s i g n m e n t d u r i n g r e s e t h a n d l i n g . ( A n d r e w \r b r > V a s q u e z ) \r b r > - q l a 2 x x x : D i s p l a y t h a t d r i v e r i s o p e r a t i n g i n l e g a c y i n t e r r u p t m o d e . ( S a u r a v \r b r > K a s h y a p ) \r b r > - q l a 2 x x x : F r e e r s p _ d a t a e v e n o n e r r o r i n q l a 2 x 0 0 _ p r o c e s s _ l o o p b a c k ( ) . ( S t e v e \r b r > H o d g s o n ) \r b r > - q l a 2 x x x : D o n t c l e a r d r v a c t i v e o n i o s p a c e c o n f i g f a i l u r e . ( S a u r a v K a s h y a p ) \r b r > - q l a 2 x x x : F i x t y p o i n q l a 2 x x x d r i v e r . ( M a s a n a r i I i d a ) \r b r > - q l a 2 x x x : U p d a t e q l 2 x e x t e n d e d _ e r r o r _ l o g g i n g p a r a m e t e r d e s c r i p t i o n w i t h n e w \r b r > o p t i o n . ( C h a d D u p u i s ) \r b r > - q l a 2 x x x : P a r a m e t e r i z e t h e l i n k s p e e d s t r i n g c o n v e r s i o n f u n c t i o n . ( J o e \r b r > C a r n u c c i o ) \r b r > - q l a 2 x x x : A d d 1 6 G b / s c a s e t o g e t p o r t s p e e d c a p a b i l i t y . ( J o e C a r n u c c i o ) \r b r > - q l a 2 x x x : M o v e m a r k i n g f c p o r t o n l i n e a h e a d o f s e t t i n g i i D M A s p e e d . ( J o e \r b r > C a r n u c c i o ) \r b r > - M e r g e t a g ' v 2 . 6 . 3 9 - 4 0 0 . 5 . 0 # b u g d b 1 3 8 2 6 ' o f c a - g i t . u s . o r a c l e . c o m : l i n u x - m u v a r o v - \r b r > p u b l i c ( M a x i m U v a r o v ) [ B u g - d b : 1 3 8 2 6 ] \r b r > - b e 2 n e t : f i x I N T x I S R f o r i n t e r r u p t b e h a v i o u r o n B E 2 ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : f i x a p o s s i b l e e v e n t s _ g e t ( ) r a c e o n B E 2 ( S a t h y a P e r l a ) \r b r > - n e t : R e m o v e b o g u s d e p e n d e n c i e s o n I N E T ( B e n H u t c h i n g s ) \r b r > - b e 2 n e t : r e m o v e a d a p t e r - > e q _ n e x t _ i d x ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : r e m o v e r o c e o n l a n c e r ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : f i x a c c e s s t o S E M A P H O R E r e g ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : r e - f a c t o r b a r m a p p i n g c o d e ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : d o n o t u s e s l i _ f a m i l y t o i d e n t i f y s k y h a w k - R c h i p ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : f i x w r o n g u s a g e o f a d a p t e r - > g e n e r a t i o n ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : r e m o v e L A N C E R A 0 w o r k a r o u n d ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : F i x s m a t c h w a r n i n g s i n b e _ m a i n . c ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : U p d a t e d r i v e r v e r s i o n ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : F i x s k y h a w k V F P C I D e v i c e I D ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : F i x F W f l a s h i n g o n S k y h a w k - R ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : E n a b l i n g W a k e - o n - L A N i s n o t s u p p o r t e d i n S 5 s t a t e ( P a d m a n a b h \r b r > R a t n a k a r ) \r b r > - b e 2 n e t : F i x V F d r i v e r l o a d o n n e w e r L a n c e r F W ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : F i x u n n e c e s s a r y d e l a y i n P C I E E H ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : F i x i s s u e s i n e r r o r r e c o v e r y d u e t o w r o n g q u e u e s t a t e ( P a d m a n a b h \r b r > R a t n a k a r ) \r b r > - b e 2 n e t : F i x e t h t o o l g e t _ s e t t i n g s o u t p u t f o r V F ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : F i x e r r o r m e s s a g e s w h i l e d r i v e r l o a d f o r V F s ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : F i x c o n f i g u r i n g V L A N f o r V F f o r L a n c e r ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : W a i t t i l l r e s o u r c e s a r e a v a i l a b l e f o r V F i n e r r o r r e c o v e r y ( P a d m a n a b h \r b r > R a t n a k a r ) \r b r > - b e 2 n e t : F i x c h a n g e M A C o p e r a t i o n f o r V F f o r L a n c e r ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : F i x s e t t i n g Q o S f o r V F f o r L a n c e r ( P a d m a n a b h R a t n a k a r ) \r b r > - b e 2 n e t : F i x d r i v e r l o a d f a i l u r e f o r d i f f e r e n t F W c o n f i g s i n L a n c e r ( P a d m a n a b h \r b r > R a t n a k a r ) \r b r > - b e 2 n e t : c r e a t e R S S r i n g s e v e n i n m u l t i - c h a n n e l c o n f i g s ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : s e t m a x i m a l n u m b e r o f d e f a u l t R S S q u e u e s ( Y u v a l M i n t z ) \r b r > - b e 2 n e t : P r o g r a m s e c o n d a r y U C M A C a d d r e s s i n t o M A C f i l t e r ( A j i t K h a p a r d e ) \r b r > - b e 2 n e t : R e m o v e c o d e t h a t s t o p s f u r t h e r a c c e s s t o B E N I C b a s e d o n U E b i t s \r b r > ( A j i t K h a p a r d e ) \r b r > - b e 2 n e t : f i x v f s e n u m e r a t i o n ( I v a n V e c e r a ) \r b r > - b e 2 n e t : f i x u p l o g m e s s a g e s ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : c l e a n u p c o d e r e l a t e d t o b e _ l i n k _ s t a t u s _ q u e r y ( ) ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : f i x w r o n g h a n d l i n g o f b e _ s e t u p ( ) f a i l u r e i n b e _ p r o b e ( ) ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : r e m o v e t y p e a r g u m e n t o f b e _ c m d _ m a c _ a d d r _ q u e r y ( ) ( S a t h y a P e r l a ) \r b r > - R e v e r t ' b e 2 n e t : f i x v f s e n u m e r a t i o n ' ( D a v i d S . M i l l e r ) \r b r > - b e 2 n e t : f i x v f s e n u m e r a t i o n ( I v a n V e c e r a ) \r b r > - b e 2 n e t : u s e P C I e A E R c a p a b i l i t y ( S a t h y a P e r l a ) \r b r > - b e 2 n e t : m o d i f y l o g m s g f o r l a c k o f p r i v i l e g e e r r o r ( V a s u n d h a r a V o l a m ) \r b r > - b e 2 n e t : f i x F W d e f a u l t f o r V F t x - r a t e ( V a s u n d h a r a V o l a m ) \r b r > - b e 2 n e t : f i x m a x V F s r e p o r t e d b y H W ( V a s u n d h a r a V o l a m ) \r b r > - n e t p o l l : r e v e r t 6 b d b 7 f e 3 1 0 4 a n d f i x b e _ p o l l ( ) i n s t e a d ( A m e r i g o W a n g ) \r b r > - S P E C : O L 5 k e r n e l f i r m w a r e r p m d e p e n d s o n a l l o t h e r s f i r m w a r e s ( M a x i m U v a r o v ) \r b r > [ O r a b u g : 1 5 9 8 7 3 3 2 ] \r b r > \r b r > [ 2 . 6 . 3 9 - 4 0 0 . 5 . 0 ] \r b r > - x 8 6 , t s c : F i x S M I i n d u c e d v a r i a t i o n i n q u i c k _ p i t _ c a l i b r a t e ( ) ( L i n u s T o r v a l d s ) \r b r > [ O r a b u g : 1 3 2 5 6 1 6 6 ] \r b r > - x 8 6 , t s c : S k i p T S C s y n c h r o n i z a t i o n c h e c k s f o r t s c = r e l i a b l e ( S u r e s h S i d d h a ) \r b r > [ O r a b u g : 1 3 2 5 6 1 6 6 ] \r b r > - b o n d i n g : r l b m o d e o f b o n d s h o u l d n o t a l t e r A R P o r i g i n a t i n g v i a b r i d g e \r b r > ( z h e n g . l i ) [ O r a b u g : 1 4 6 5 0 9 7 5 ] \r b r > - M e r g e t a g ' v 2 . 6 . 3 9 - 4 0 0 # r d a c ' o f g i t : / / c a - g i t . u s . o r a c l e . c o m / l i n u x - s n i t s - p u b l i c \r b r > ( M a x i m U v a r o v ) \r b r > - [ S C S I ] s c s i _ d h _ r d a c : F i x e r r o r p a t h ( R i c h a r d W e i n b e r g e r ) \r b r > - [ S C S I ] s c s i _ d h _ r d a c : A d d i n g N e t A p p a s a b r a n d n a m e f o r r d a c ( C h a u h a n , V i j a y ) \r b r > - M e r g e t a g ' u e k 2 - m e r g e - 4 0 0 - 3 . 8 - f i x e s - t a g ' o f g i t : / / c a - g i t . u s . o r a c l e . c o m / l i n u x - \r b r > k o n r a d - p u b l i c ( M a x i m U v a r o v ) \r b r > - x e n - b l k f r o n t : h a n d l e b v e c s w i t h p a r t i a l d a t a ( R o g e r P a u M o n n e ) \r b r > - x e n - b l k f r o n t : i m p l e m e n t s a f e v e r s i o n o f l l i s t _ f o r _ e a c h _ e n t r y ( R o g e r P a u \r b r > M o n n e ) \r b r > - x e n - b l k b a c k : i m p l e m e n t s a f e i t e r a t o r f o r t h e l i s t o f p e r s i s t e n t g r a n t s ( R o g e r \r b r > P a u M o n n e ) \r b r > - M e r g e t a g ' u e k 2 - m e r g e - 4 0 0 - 3 . 8 - t a g ' o f g i t : / / c a - g i t . u s . o r a c l e . c o m / l i n u x - \r b r > k o n r a d - p u b l i c ( M a x i m U v a r o v ) \r b r > - M e r g e t a g ' u e k 2 - m e r g e - b a c k p o r t - 3 . 8 ' o f g i t : / / c a - g i t / l i n u x - k o n r a d - p u b l i c i n t o \r b r > u e k 2 - m e r g e - 4 0 0 ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n : a r m : i m p l e m e n t r e m a p i n t e r f a c e s n e e d e d f o r p r i v c m d m a p p i n g s . ( I a n \r b r > C a m p b e l l ) \r b r > - x e n : c o r r e c t l y u s e x e n _ p f n _ t i n r e m a p _ d o m a i n _ m f n _ r a n g e . ( I a n C a m p b e l l ) \r b r > - x e n : a r m : e n a b l e b a l l o o n d r i v e r ( I a n C a m p b e l l ) \r b r > - x e n : b a l l o o n : a l l o w P V M M U i n t e r f a c e s t o b e c o m p i l e d o u t ( I a n C a m p b e l l ) \r b r > - x e n : p r i v c m d : s u p p o r t a u t o t r a n s l a t e d p h y s m a p g u e s t s . ( M u k e s h R a t h o r ) \r b r > - x e n : a d d p a g e s p a r a m e t e r t o x e n _ r e m a p _ d o m a i n _ m f n _ r a n g e ( I a n C a m p b e l l ) \r b r > - x e n / P V o n H V M : f i x c o m p i l e w a r n i n g i n i n i t _ h v m _ p v _ i n f o ( O l a f H e r i n g ) \r b r > - x e n / a c p i : M o v e t h e x e n _ r u n n i n g _ o n _ v e r s i o n _ o r _ l a t e r f u n c t i o n . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / x e n b u s : R e m o v e d u p l i c a t e i n c l u s i o n o f a s m / x e n / h y p e r v i s o r . h ( S a c h i n K a m a t ) \r b r > - x e n / a c p i : F i x c o m p i l e e r r o r b y m i s s i n g d e c l e r a t i o n f o r x e n _ d o m a i n . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / a c p i : r e v e r t p a d c o n f i g c h e c k i n x e n _ c h e c k _ m w a i t ( L i u , J i n s o n g ) \r b r > - x e n / a c p i : A C P I P A D d r i v e r ( L i u , J i n s o n g ) \r b r > - x e n P V o n H V M : u s e E 8 2 0 _ R e s e r v e d a r e a f o r s h a r e d _ i n f o ( O l a f H e r i n g ) \r b r > - x e n - b l k f r o n t : f r e e a l l o c a t e d p a g e ( R o g e r P a u M o n n e ) \r b r > - x e n - b l k b a c k : m o v e f r e e p e r s i s t e n t g r a n t s c o d e ( R o g e r P a u M o n n e ) \r b r > - x e n / b l k b a c k : p e r s i s t e n t - g r a n t s f i x e s ( R o g e r P a u M o n n e ) \r b r > - x e n / b l k b a c k : P e r s i s t e n t g r a n t m a p s f o r x e n b l k d r i v e r s ( R o g e r P a u M o n n e ) \r b r > - x e n / b l k b a c k : C h a n g e x e n _ v b d ' s f l u s h _ s u p p o r t a n d d i s c a r d _ s e c u r e t o h a v e t y p e \r b r > u n s i g n e d i n t , r a t h e r t h a n b o o l ( O l i v e r C h i c k ) \r b r > - x e n / b l k b a c k : u s e k m e m _ c a c h e _ z a l l o c i n s t e a d o f k m e m _ c a c h e _ a l l o c / m e m s e t ( W e i \r b r > Y o n g j u n ) \r b r > - x e n / b l k f r o n t : A d d W A R N t o d e a l w i t h m i s b e h a v i n g b a c k e n d s . ( K o n r a d R z e s z u t e k \r b r > W i l k ) \r b r > - l l i s t - r e t u r n - w h e t h e r - l i s t - i s - e m p t y - b e f o r e - a d d i n g - i n - l l i s t _ a d d - f i x ( A n d r e w \r b r > M o r t o n ) \r b r > - l l i s t : A d d b a c k l l i s t _ a d d _ b a t c h ( ) a n d l l i s t _ d e l _ f i r s t ( ) p r o t o t y p e s ( S t e p h e n \r b r > R o t h w e l l ) \r b r > - l l i s t : R e m o v e c p u _ r e l a x ( ) u s a g e i n c m p x c h g l o o p s ( P e t e r Z i j l s t r a ) \r b r > - l l i s t : A d d l l i s t _ n e x t ( ) ( P e t e r Z i j l s t r a ) \r b r > - l l i s t : R e t u r n w h e t h e r l i s t i s e m p t y b e f o r e a d d i n g i n l l i s t _ a d d ( ) ( H u a n g Y i n g ) \r b r > - l l i s t : M o v e c p u _ r e l a x ( ) t o a f t e r t h e c m p x c h g ( ) ( H u a n g Y i n g ) \r b r > - l l i s t : R e m o v e t h e p l a t f o r m - d e p e n d e n t N M I c h e c k s ( I n g o M o l n a r ) \r b r > - l l i s t : M a k e s o m e l l i s t f u n c t i o n s i n l i n e ( H u a n g Y i n g ) \r b r > - l i b , A d d l o c k - l e s s N U L L t e r m i n a t e d s i n g l e l i s t ( H u a n g Y i n g ) \r b r > - x e n / o p r o f i l e : E x p o s e t h e o p r o f i l e _ a r c h _ e x i t _ f n c p o i n t e r . ( K o n r a d R z e s z u t e k \r b r > W i l k ) \r b r > - x e n / o p r o f i l e : S w i t c h f r o m s y s c o r e _ o p s t o p l a t f o r m _ o p s . ( K o n r a d R z e s z u t e k \r b r > W i l k ) \r b r > - x e n / o p r o f i l e : F i x c o m p i l e i s s u e s w h e n C O N F I G _ X E N i s n o t d e f i n e d . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / o p r o f i l e : T h e a r c h _ v a r i a n t s f o r i n i t / e x e c w e r e n ' t b e i n g c a l l e d . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / o p r o f i l e : C o m p i l e f i x ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / o p r o f i l e : P a t c h f r o m M i c h a e l P e t u l l o ( K o n r a d R z e s z u t e k W i l k ) \r b r > \r b r > [ 2 . 6 . 3 9 - 4 0 0 . 4 . 0 ] \r b r > - M e r g e t a g ' u e k 2 - m e r g e - 4 0 0 - 3 . 7 - t a g ' o f g i t : / / c a - g i t . u s . o r a c l e . c o m / l i n u x - \r b r > k o n r a d - p u b l i c ( M a x i m U v a r o v ) \r b r > - M e r g e t a g ' u e k 2 - m e r g e - b a c k p o r t - 3 . 7 ' o f g i t : / / c a - g i t / l i n u x - k o n r a d - p u b l i c i n t o \r b r > u e k 2 - m e r g e - 4 0 0 ( K o n r a d R z e s z u t e k W i l k ) \r b r > - R e v e r t ' x e n / x 8 6 : W o r k a r o u n d 6 4 - b i t h y p e r v i s o r a n d 3 2 - b i t i n i t i a l d o m a i n . ' a n d \r b r > ' x e n / x 8 6 : U s e m e m b l o c k _ r e s e r v e f o r s e n s i t i v e a r e a s . ' ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / x 8 6 : W o r k a r o u n d 6 4 - b i t h y p e r v i s o r a n d 3 2 - b i t i n i t i a l d o m a i n . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / a r m : F i x c o m p i l e e r r o r s w h e n d r i v e r s a r e c o m p i l e d a s m o d u l e s ( e x p o r t \r b r > m o r e ) . ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : F i x c o m p i l e e r r o r s w h e n d r i v e r s a r e c o m p i l e d a s m o d u l e s . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / g e n e r i c : D i s a b l e f a l l b a c k b u i l d o n A R M . ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / h v m : I f w e f a i l t o f e t c h a n H V M p a r a m e t e r p r i n t o u t w h i c h f l a g i t i s . \r b r > ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / h y p e r c a l l : f i x h y p e r c a l l f a l l b a c k c o d e f o r v e r y o l d h y p e r v i s o r s ( J a n \r b r > B e u l i c h ) \r b r > - x e n / a r m : u s e t h e _ _ H V C m a c r o ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / x e n b u s : f i x o v e r f l o w c h e c k i n x e n b u s _ f i l e _ w r i t e ( ) ( J a n B e u l i c h ) \r b r > - x e n - k b d f r o n t : h a n d l e b a c k e n d C L O S E D w i t h o u t C L O S I N G ( D a v i d V r a b e l ) \r b r > - x e n - f b f r o n t : h a n d l e b a c k e n d C L O S E D w i t h o u t C L O S I N G ( D a v i d V r a b e l ) \r b r > - x e n / g n t d e v : d o n ' t l e a k m e m o r y f r o m I O C T L _ G N T D E V _ M A P _ G R A N T _ R E F ( D a v i d V r a b e l ) \r b r > - x 8 6 : r e m o v e o b s o l e t e c o m m e n t f r o m a s m / x e n / h y p e r v i s o r . h ( O l a f H e r i n g ) \r b r > - x e n : d b g p : F i x w a r n i n g w h e n C O N F I G _ P C I i s n o t e n a b l e d . ( I a n C a m p b e l l ) \r b r > - U S B E H C I / X e n : p r o p a g a t e c o n t r o l l e r r e s e t i n f o r m a t i o n t o h y p e r v i s o r ( J a n \r b r > B e u l i c h ) \r b r > - x e n : a r m : c o m m e n t o n w h y 6 4 - b i t x e n _ p f n _ t i s s a f e e v e n o n 3 2 b i t ( I a n \r b r > C a m p b e l l ) \r b r > - x e n : b a l l o o n : u s e c o r r e c t t y p e f o r f r a m e _ l i s t ( I a n C a m p b e l l ) \r b r > - x e n / x 8 6 : d o n ' t c o r r u p t % e i p w h e n r e t u r n i n g f r o m a s i g n a l h a n d l e r ( D a v i d \r b r > V r a b e l ) \r b r > - x e n : a r m : m a k e p 2 m o p e r a t i o n s N O P s ( I a n C a m p b e l l ) \r b r > - x e n : b a l l o o n : d o n ' t i n c l u d e e 8 2 0 . h ( I a n C a m p b e l l ) \r b r > - x e n : e v e n t s : p i r q _ c h e c k _ e o i _ m a p i s X 8 6 s p e c i f i c ( I a n C a m p b e l l ) \r b r > - x e n : X E N M E M _ t r a n s l a t e _ g p f n _ l i s t w a s r e m o v e a g e s a g o a n d i s u n u s e d . ( I a n \r b r > C a m p b e l l ) \r b r > - x e n : s y s f s : i n c l u d e e r r . h f o r P T R _ E R R e t c ( I a n C a m p b e l l ) \r b r > - x e n : x e n b u s : q u i r k u s e s x 8 6 s p e c i f i c c p u i d ( I a n C a m p b e l l ) \r b r > - x e n / x e n b u s : F i x c o m p i l e w a r n i n g . ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / x 8 6 : r e m o v e d u p l i c a t e d i n c l u d e f r o m e n l i g h t e n . c ( W e i Y o n g j u n ) \r b r > - x e n / p v - o n - h v m k e x e c : a d d q u i r k f o r X e n 3 . 4 a n d s h u t d o w n w a t c h e s . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / b o o t u p : a l l o w { r e a d | w r i t e } _ c r 8 p v o p s c a l l . ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / b o o t u p : a l l o w r e a d _ t s c p c a l l f o r X e n P V g u e s t s . ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n p v - o n - h v m : a d d p f n _ i s _ r a m h e l p e r f o r k d u m p ( O l a f H e r i n g ) \r b r > - x e n / h v c : h a n d l e b a c k e n d C L O S E D w i t h o u t C L O S I N G ( D a v i d V r a b e l ) \r b r > - x e n / x e n _ i n i t i a l _ d o m a i n : c h e c k t h a t x e n _ s t a r t _ i n f o i s i n i t i a l i z e d ( S t e f a n o \r b r > S t a b e l l i n i ) \r b r > - x e n : m a r k x e n _ i n i t _ I R Q _ _ i n i t ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / M a k e f i l e : f i x d o m - y b u i l d ( S t e f a n o S t a b e l l i n i ) \r b r > - M A I N T A I N E R S : a d d m y s e l f a s X e n A R M m a i n t a i n e r ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : c o m p i l e n e t b a c k ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : c o m p i l e b l k f r o n t a n d b l k b a c k ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : i m p l e m e n t a l l o c / f r e e _ x e n b a l l o o n e d _ p a g e s w i t h a l l o c _ p a g e s / k f r e e \r b r > ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : r e c e i v e X e n e v e n t s o n A R M ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : i n i t i a l i z e g r a n t _ t a b l e o n A R M ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : g e t p r i v i l e g e s t a t u s ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : i n t r o d u c e C O N F I G _ X E N o n A R M ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n : d o n o t c o m p i l e m a n a g e , b a l l o o n , p c i , a c p i , p c p u a n d c p u _ h o t p l u g o n A R M \r b r > ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / t m e m : c l e a n u p ( J a n B e u l i c h ) \r b r > - x e n : A d d s e l f b a l l o n i n g m e m o r y r e s e r v a t i o n t u n a b l e . ( J a n a S a o u t ) \r b r > - x e n : c o n s t i f y a l l i n s t a n c e s o f ' s t r u c t a t t r i b u t e _ g r o u p ' ( J a n B e u l i c h ) \r b r > - x e n : F i x s e l f b a l l o o n i n g a n d e n s u r e i t d o e s n ' t g o t o o f a r ( D a n M a g e n h e i m e r ) \r b r > - x e n : s e l f - b a l l o o n n e e d s m o d u l e . h ( R a n d y D u n l a p ) \r b r > - x e n / b a l l o o n : F i x c o m p i l e e r r o r s - m i s s i n g h e a d e r f i l e s . ( K o n r a d R z e s z u t e k \r b r > W i l k ) \r b r > - x e n : t m e m : s e l f - b a l l o o n i n g a n d f r o n t s w a p - s e l f s h r i n k i n g ( D a n M a g e n h e i m e r ) \r b r > - x e n : g r a n t : u s e x e n _ p f n _ t t y p e f o r f r a m e _ l i s t . ( I a n C a m p b e l l ) \r b r > - x e n : s y s f s : f i x b u i l d w a r n i n g . ( I a n C a m p b e l l ) \r b r > - x e n / a r m : I n t r o d u c e x e n _ u l o n g _ t f o r u n s i g n e d l o n g ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n : I n t r o d u c e x e n _ p f n _ t f o r p f n a n d m f n t y p e s ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : X e n d e t e c t i o n a n d s h a r e d _ i n f o p a g e m a p p i n g ( S t e f a n o S t a b e l l i n i ) \r b r > - d o c s : X e n A R M D T b i n d i n g s ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : e m p t y i m p l e m e n t a t i o n o f g r a n t _ t a b l e a r c h s p e c i f i c f u n c t i o n s ( S t e f a n o \r b r > S t a b e l l i n i ) \r b r > - x e n / a r m : s y n c _ b i t o p s ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : p a g e . h d e f i n i t i o n s ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / a r m : h y p e r c a l l s ( S t e f a n o S t a b e l l i n i ) \r b r > - a r m : i n i t i a l X e n s u p p o r t ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / v g a : a d d t h e x e n E F I v i d e o m o d e s u p p o r t ( J a n B e u l i c h ) \r b r > - x e n : a l l o w e n a b l e u s e o f V G A c o n s o l e o n d o m 0 ( J e r e m y F i t z h a r d i n g e ) \r b r > - x e n / p c i f r o n t : U s e X e n - S W I O T L B w h e n i n i t t i n g i f r e q u i r e d . ( K o n r a d R z e s z u t e k \r b r > W i l k ) \r b r > - x e n / s w i o t l b : F o r e a r l y i n i t i a l i z a t i o n , r e t u r n z e r o o n s u c c e s s . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / s w i o t l b : U s e t h e s w i o t l b _ l a t e _ i n i t _ w i t h _ t b l t o i n i t X e n - S W I O T L B l a t e w h e n \r b r > P V P C I i s u s e d . ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / s w i o t l b : M o v e t h e e r r o r s t r i n g s t o i t s o w n f u n c t i o n . ( K o n r a d R z e s z u t e k \r b r > W i l k ) \r b r > - x e n / s w i o t l b : M o v e t h e n r _ t b l d e t e r m i n a t i o n i n i t s o w n f u n c t i o n . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n : U s e c o r r e c t m a s k i n g i n x e n _ s w i o t l b _ a l l o c _ c o h e r e n t . ( R o n n y H e g e w a l d ) \r b r > - x e n / s w i o t l b : U s e p a g e a l i g n m e n t f o r e a r l y b u f f e r a l l o c a t i o n . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - s w i o t l b : E x p o s e s w i o t l b _ n r _ t l b f u n c t i o n t o m o d u l e s ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n - s w i o t l b : W h e n d o i n g c o h e r e n t a l l o c / d e a l l o c c h e c k b e f o r e s w i z z l i n g t h e \r b r > M F N s . ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n - s w i o t l b : f i x p r i n t k a n d p a n i c a r g s ( R a n d y D u n l a p ) \r b r > - x e n - s w i o t l b : F i x w r o n g p a n i c . ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n - s w i o t l b : R e t r y u p t h r e e t i m e s t o a l l o c a t e X e n - S W I O T L B ( K o n r a d R z e s z u t e k \r b r > W i l k ) \r b r > - s w i o t l b : a d d t h e l a t e s w i o t l b i n i t i a l i z a t i o n f u n c t i o n w i t h i o t l b m e m o r y \r b r > ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / s w i o t l b : W i t h m o r e t h a n 4 G B o n 6 4 - b i t , d i s a b l e t h e n a t i v e S W I O T L B . \r b r > ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / s w i o t l b : S i m p l i f y t h e l o g i c . ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / g n d e v : X e n b a c k e n d s u p p o r t f o r p a g e d o u t g r a n t t a r g e t s V 4 . ( A n d r e s L a g a r - \r b r > C a v i l l a ) \r b r > - x e n / a r m : c o m p i l e a n d r u n x e n b u s ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n : c l e a r I R Q _ N O A U T O E N a n d I R Q _ N O R E Q U E S T ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / e v e n t s : f i x u n m a s k _ e v t c h n f o r P V o n H V M g u e s t s ( S t e f a n o S t a b e l l i n i ) \r b r > - x e n / p r i v c m d : C o r r e c t l y r e t u r n s u c c e s s f r o m I O C T L _ P R I V C M D _ M M A P B A T C H ( M a t s \r b r > P e t e r s s o n ) \r b r > - x e n / m m u : U s e X e n s p e c i f i c T L B f l u s h i n s t e a d o f t h e g e n e r i c o n e . ( K o n r a d \r b r > R z e s z u t e k W i l k ) [ O r a c l e - b u g : 1 4 6 3 0 1 7 0 ] \r b r > - x e n / e n l i g h t e n : D i s a b l e M W A I T _ L E A F s o t h a t a c p i - p a d w o n ' t b e l o a d e d . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x 8 6 , a m d , x e n : A v o i d N U L L p o i n t e r p a r a v i r t r e f e r e n c e s ( K o n r a d R z e s z u t e k W i l k ) \r b r > - x e n / s e t u p : f i l t e r A P E R F M P E R F c p u i d f e a t u r e o u t ( A n d r e P r z y w a r a ) \r b r > - x e n / e n l i g h t e n : E x p o s e M W A I T a n d M W A I T _ L E A F i f h y p e r v i s o r O K s i t . ( K o n r a d \r b r > R z e s z u t e k W i l k ) \r b r > - x e n / a c p i : F i x p o t e n t i a l m e m o r y l e a k / p > \n \n \n b r > h 2 > R e l a t e d C V E s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 3 0 9 . h t m l \" > C V E - 2 0 1 3 - 0 3 0 9 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 3 1 0 . h t m l \" > C V E - 2 0 1 3 - 0 3 1 0 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 3 1 1 . h t m l \" > C V E - 2 0 1 3 - 0 3 1 1 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 2 2 8 . h t m l \" > C V E - 2 0 1 3 - 0 2 2 8 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n b r > h 2 > U p d a t e d P a c k a g e s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r s t y l e = \" c o l o r : # F F 0 0 0 0 ; \" > t d > b > R e l e a s e / A r c h i t e c t u r e / b > t d > b > F i l e n a m e / b > / t d > t d > b > M D 5 s u m / b > / t d > t d > b > S u p e r s e d e d B y A d v i s o r y / b > / t d > / t r > \n t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 5 ( i 3 8 6 ) / t d > t d > k e r n e l - u e k - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . s r c . r p m / t d > t d > 2 a 8 2 d c 5 8 f b 8 5 f 4 b 2 6 3 7 d 1 1 d 5 b f 7 c 1 f c 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . i 6 8 6 . r p m / t d > t d > c 8 6 d 7 3 9 4 3 1 1 a a 7 4 4 3 d d 8 3 d b 1 0 2 8 1 1 e 6 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . i 6 8 6 . r p m / t d > t d > b 3 5 b a 6 0 a 3 2 e 9 5 a 6 e 8 d e 2 b 5 c 9 6 3 c a 6 0 8 a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - d e v e l - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . i 6 8 6 . r p m / t d > t d > 4 5 7 1 8 7 8 1 a f f c 2 2 4 8 2 2 c 9 0 d c d d e a 0 5 5 d f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e v e l - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . i 6 8 6 . r p m / t d > t d > 0 e 5 0 f a 2 9 b d 2 8 1 2 8 d c 6 a a 4 5 c 6 e d 1 4 e 6 d a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d o c - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . n o a r c h . r p m / t d > t d > c 0 8 a 0 0 f f 1 7 7 3 a 1 8 f a 6 c 2 9 7 8 6 b 9 b 2 5 c 1 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - f i r m w a r e - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . n o a r c h . r p m / t d > t d > d 7 6 1 5 6 f d 1 9 9 3 d d 1 d 8 b c 7 4 d b e 3 b 7 e 1 b 7 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 5 ( x 8 6 _ 6 4 ) / t d > t d > k e r n e l - u e k - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . s r c . r p m / t d > t d > 2 a 8 2 d c 5 8 f b 8 5 f 4 b 2 6 3 7 d 1 1 d 5 b f 7 c 1 f c 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . x 8 6 _ 6 4 . r p m / t d > t d > 0 d c c d 1 8 8 0 b b e 0 b 0 e d f 4 3 c a a 0 9 9 1 7 c 6 9 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . x 8 6 _ 6 4 . r p m / t d > t d > 7 8 6 b 2 e 2 5 b 5 4 2 4 a c 8 2 6 e 6 e d e 3 5 5 7 5 5 3 9 4 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - d e v e l - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . x 8 6 _ 6 4 . r p m / t d > t d > d 9 0 4 5 6 3 1 0 2 5 c 7 f 8 a 6 8 4 7 3 f e 2 5 9 b a b 2 0 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e v e l - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . x 8 6 _ 6 4 . r p m / t d > t d > b 8 6 f b f f f 2 3 b 8 d 9 4 2 7 e 9 4 0 b 3 1 e d 7 e 6 a 1 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d o c - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . n o a r c h . r p m / t d > t d > c 0 8 a 0 0 f f 1 7 7 3 a 1 8 f a 6 c 2 9 7 8 6 b 9 b 2 5 c 1 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - f i r m w a r e - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 5 u e k . n o a r c h . r p m / t d > t d > d 7 6 1 5 6 f d 1 9 9 3 d d 1 d 8 b c 7 4 d b e 3 b 7 e 1 b 7 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 7 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 7 / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( i 3 8 6 ) / t d > t d > k e r n e l - u e k - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . s r c . r p m / t d > t d > d 5 f 2 7 f 3 2 3 c 7 a e 9 1 a c b 0 5 b d a 4 f a 0 5 6 c 8 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . i 6 8 6 . r p m / t d > t d > 3 1 f 1 a e 8 5 f 3 6 d c e 4 5 7 8 5 d 7 4 e e 5 4 4 b 4 6 e c / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . i 6 8 6 . r p m / t d > t d > 7 0 a e 7 2 b 7 a 7 0 d 9 a 1 5 f 4 7 9 2 2 2 3 3 8 9 0 8 8 9 9 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - d e v e l - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . i 6 8 6 . r p m / t d > t d > 5 d 3 9 d 7 2 e 0 d 3 c 8 6 3 5 e 2 d 8 3 c c e e 3 c 4 0 b 9 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e v e l - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . i 6 8 6 . r p m / t d > t d > e 6 d 5 1 8 e 3 a 4 b e 4 9 b f 9 5 9 2 6 9 4 9 7 2 f b f 9 9 a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d o c - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . n o a r c h . r p m / t d > t d > 8 a 8 b b e 1 a 8 a 0 1 b e 0 4 a c d 2 2 d 4 9 9 e e 1 3 c e 2 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - f i r m w a r e - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . n o a r c h . r p m / t d > t d > 4 c b 8 e 4 3 f a 7 a 7 8 8 0 3 3 a 0 4 b a 8 0 d 5 c b 6 6 7 6 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( x 8 6 _ 6 4 ) / t d > t d > k e r n e l - u e k - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . s r c . r p m / t d > t d > d 5 f 2 7 f 3 2 3 c 7 a e 9 1 a c b 0 5 b d a 4 f a 0 5 6 c 8 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > 4 8 6 9 5 9 3 1 f 3 6 3 8 e 8 d f 3 8 3 f 7 c 5 f 3 f 8 6 6 5 9 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > 4 2 9 5 a 8 f 7 4 8 6 1 8 d d 1 0 5 f 3 f d 9 c c b f 2 2 1 a 2 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e b u g - d e v e l - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > 1 b f 9 5 e 2 4 9 9 7 b c f 7 6 9 6 5 2 b 2 6 4 a 0 7 5 a 3 c c / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d e v e l - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . x 8 6 _ 6 4 . r p m / t d > t d > f 8 e 3 b 7 0 c 7 e e e 5 4 a a 1 a a d f 8 f a 1 b 8 1 7 b e 4 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - d o c - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . n o a r c h . r p m / t d > t d > 8 a 8 b b e 1 a 8 a 0 1 b e 0 4 a c d 2 2 d 4 9 9 e e 1 3 c e 2 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - u e k - f i r m w a r e - 2 . 6 . 3 9 - 4 0 0 . 1 7 . 1 . e l 6 u e k . n o a r c h . r p m / t d > t d > 4 c b 8 e 4 3 f a 7 a 7 8 8 0 3 3 a 0 4 b a 8 0 d 5 c b 6 6 7 6 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 3 6 0 5 . h t m l \" > E L S A - 2 0 1 7 - 3 6 0 5 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n \n b r > b r > \n b r > p > \n T h i s p a g e i s g e n e r a t e d a u t o m a t i c a l l y a n d h a s n o t b e e n c h e c k e d f o r e r r o r s o r o m i s s i o n s . F o r c l a r i f i c a t i o n \n o r c o r r e c t i o n s p l e a s e c o n t a c t t h e a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / \" > O r a c l e L i n u x U L N t e a m / a > / p > \n \n \n \n / d i v > \n ! - - \n / d i v > \n - - > \n / d i v > \n / d i v > \n \n \n d i v i d = \" m c 1 6 \" c l a s s = \" m c 1 6 v 0 \" > \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > T e c h n i c a l i n f o r m a t i o n / h 2 > \n u l > \n l i > a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / h a r d w a r e - c e r t i f i c a t i o n s \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x C e r t i f i e d H a r d w a r e / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / l i b r a r y / e l s p - l i f e t i m e - 0 6 9 3 3 8 . p d f \" > O r a c l e L i n u x S u p p o r t e d R e l e a s e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > O r a c l e L i n u x S u p p o r t / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / t e c h n o l o g i e s / l i n u x / O r a c l e L i n u x S u p p o r t / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x S u p p o r t / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / p r e m i e r / s e r v e r s - s t o r a g e / o v e r v i e w / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e P r e m i e r S u p p o r t f o r S y s t e m s / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / a d v a n c e d - c u s t o m e r - s e r v i c e s / o v e r v i e w / \" > A d v a n c e d C u s t o m e r S e r v i c e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 2 \" > \n h 2 > C o n n e c t / h 2 > \n u l > \n l i c l a s s = \" f b i c o n \" > a h r e f = \" h t t p : / / w w w . f a c e b o o k . c o m / o r a c l e l i n u x \" t i t l e = \" F a c e b o o k \" n a m e = \" F a c e b o o k \" t a r g e t = \" _ b l a n k \" i d = \" F a c e b o o k \" > F a c e b o o k / a > / l i > \n l i c l a s s = \" t w i c o n \" > a h r e f = \" h t t p : / / w w w . t w i t t e r . c o m / O r a c l e L i n u x \" t i t l e = \" T w i t t e r \" n a m e = \" T w i t t e r \" t a r g e t = \" _ b l a n k \" i d = \" T w i t t e r \" > T w i t t e r / a > / l i > \n l i c l a s s = \" i n i c o n \" > a h r e f = \" h t t p : / / w w w . l i n k e d i n . c o m / g r o u p s ? g i d = 1 2 0 2 3 8 \" t i t l e = \" L i n k e d I n \" n a m e = \" L i n k e d I n \" t a r g e t = \" _ b l a n k \" i d = \" L i n k e d I n \" > L i n k e d I n / a > / l i > \n l i c l a s s = \" y t i c o n \" > a h r e f = \" h t t p : / / w w w . y o u t u b e . c o m / o r a c l e l i n u x c h a n n e l \" t i t l e = \" Y o u T u b e \" n a m e = \" Y o u T u b e \" t a r g e t = \" _ b l a n k \" i d = \" Y o u T u b e \" > Y o u T u b e / a > / l i > \n l i c l a s s = \" b l o g i c o n \" > a h r e f = \" h t t p : / / b l o g s . o r a c l e . c o m / l i n u x \" t i t l e = \" B l o g \" n a m e = \" B l o g \" > B l o g / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 3 \" > \n h 2 > C o n t a c t U s / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / c o r p o r a t e / c o n t a c t / g l o b a l - 0 7 0 5 1 1 . h t m l \" > G l o b a l c o n t a c t s / a > / l i > \n l i > O r a c l e 1 - 8 0 0 - 6 3 3 - 0 6 9 1 / l i > \n / u l > \n / d i v > \n / d i v > \n / d i v > \n \n d i v i d = \" m c 0 4 \" c l a s s = \" m c 0 4 v 1 \" > \n d i v c l a s s = \" m c 0 4 w 1 \" > \n a h r e f = \" h t t p : / / o r a c l e . c o m \" > i m g s r c = \" / / w w w . o r a c l e i m g . c o m / a s s e t s / m c 0 4 - f o o t e r - l o g o . p n g \" b o r d e r = \" 0 \" a l t = \" s o f t w a r e . h a r d w a r e . c o m p l e t e \" / > / a > \n / d i v > \n \n d i v c l a s s = \" m c 0 4 w 2 \" > \n a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / s u b s c r i b e / i n d e x . h t m l \" > S u b s c r i b e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / e m p l o y m e n t / i n d e x . h t m l \" > C a r e e r s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / c o n t a c t / i n d e x . h t m l \" > C o n t a c t U s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / c o p y r i g h t . h t m l \" > L e g a l N o t i c e s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / t e r m s . h t m l \" > T e r m s o f U s e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / p r i v a c y . h t m l \" > Y o u r P r i v a c y R i g h t s / a > \n / d i v > \n / d i v > \n / d i v > \n / b o d y > \n / h t m l > \n ", "modified": "2013-02-27T00:00:00", "published": "2013-02-27T00:00:00", "id": "ELSA-2013-2507", "href": "http://linux.oracle.com/errata/ELSA-2013-2507.html", "title": "Unbreakable Enterprise kernel security and bug fix update", "type": "oraclelinux", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:39:55", "bulletinFamily": "unix", "description": "[2.6.32-300.39.4]\r\n- exec: do not leave bprm->interp on stack (Kees Cook) [Orabug: 16286741]\r\n {CVE-2012-4530}\r\n- exec: use -ELOOP for max recursion depth (Kees Cook) [Orabug: 16286741]\r\n {CVE-2012-4530}\r\n \n[2.6.32-300.39.3]\r\n- Xen: Fix stack corruption in xen_failsafe_callback for 32bit PVOPS guests.\r\n (Frediano Ziglio) [Orabug: 16274192] {CVE-2013-0190}", "modified": "2013-02-06T00:00:00", "published": "2013-02-06T00:00:00", "id": "ELSA-2013-2504", "href": "http://linux.oracle.com/errata/ELSA-2013-2504.html", "title": "Unbreakable Enterprise kernel security update", "type": "oraclelinux", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:40:55", "bulletinFamily": "unix", "description": "[2.6.32-400.26.2]\n- mm/hotplug: correctly add new zone to all other nodes' zone lists (Jiang Liu) [Orabug: 16603569] {CVE-2012-5517}\n- ptrace: ptrace_resume() shouldn't wake up !TASK_TRACED thread (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- ptrace: ensure arch_ptrace/ptrace_request can never race with SIGKILL (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- ptrace: introduce signal_wake_up_state() and ptrace_signal_wake_up() (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- Bluetooth: Fix incorrect strncpy() in hidp_setup_hid() (Anderson Lizardo) [Orabug: 16711062] {CVE-2013-0349}\n- dccp: check ccid before dereferencing (Mathias Krause) [Orabug: 16711040] {CVE-2013-1827}\n- USB: io_ti: Fix NULL dereference in chase_port() (Wolfgang Frisch) [Orabug: 16425435] {CVE-2013-1774}\n- keys: fix race with concurrent install_user_keyrings() (David Howells) [Orabug: 16493369] {CVE-2013-1792}\n- KVM: Fix bounds checking in ioapic indirect register reads (CVE-2013-1798) (Andy Honig) [Orabug: 16710937] {CVE-2013-1798}\n- KVM: x86: fix for buffer overflow in handling of MSR_KVM_SYSTEM_TIME (CVE-2013-1796) (Jerry Snitselaar) [Orabug: 16710794] {CVE-2013-1796}\n- net/tun: fix ioctl() based info leaks (Mathias Krause) [Orabug: 16675501] {CVE-2012-6547}\n- atm: fix info leak via getsockname() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546}\n- atm: fix info leak in getsockopt(SO_ATMPVC) (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546}\n- xfrm_user: fix info leak in copy_to_user_tmpl() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537}\n- xfrm_user: fix info leak in copy_to_user_policy() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537}\n- xfrm_user: fix info leak in copy_to_user_state() (Mathias Krause) [Orabug: 16675501] {CVE-2013-6537}\n- xfrm_user: return error pointer instead of NULL #2 (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}\n- xfrm_user: return error pointer instead of NULL (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}", "modified": "2013-04-24T00:00:00", "published": "2013-04-24T00:00:00", "id": "ELSA-2013-2520", "href": "http://linux.oracle.com/errata/ELSA-2013-2520.html", "title": "Unbreakable Enterprise kernel security update", "type": "oraclelinux", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "cve": [{"lastseen": "2016-09-03T17:04:18", "bulletinFamily": "NVD", "description": "block/scsi_ioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restrictions via an SG_IO ioctl call that leverages overlapping opcodes.", "modified": "2013-06-20T23:13:51", "published": "2013-02-28T14:55:01", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4542", "id": "CVE-2012-4542", "type": "cve", "title": "CVE-2012-4542", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-03T17:03:50", "bulletinFamily": "NVD", "description": "Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as uninitialized.", "modified": "2014-01-07T23:32:02", "published": "2012-12-21T06:47:36", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4508", "id": "CVE-2012-4508", "type": "cve", "title": "CVE-2012-4508", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:52:30", "bulletinFamily": "NVD", "description": "arch/x86/include/asm/pgtable.h in the Linux kernel before 3.6.2, when transparent huge pages are used, does not properly support PROT_NONE memory regions, which allows local users to cause a denial of service (system crash) via a crafted application.", "modified": "2013-03-07T23:11:34", "published": "2013-02-21T19:55:01", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0309", "id": "CVE-2013-0309", "title": "CVE-2013-0309", "type": "cve", "cvss": {"score": 4.7, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-03T17:50:37", "bulletinFamily": "NVD", "description": "The xen_failsafe_callback function in Xen for the Linux kernel 2.6.23 and other versions, when running a 32-bit PVOPS guest, allows local users to cause a denial of service (guest crash) by triggering an iret fault, leading to use of an incorrect stack pointer and stack corruption.", "modified": "2013-03-07T23:11:31", "published": "2013-02-12T20:55:03", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0190", "id": "CVE-2013-0190", "title": "CVE-2013-0190", "type": "cve", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-03T17:52:31", "bulletinFamily": "NVD", "description": "The translate_desc function in drivers/vhost/vhost.c in the Linux kernel before 3.7 does not properly handle cross-region descriptors, which allows guest OS users to obtain host OS privileges by leveraging KVM guest OS privileges.", "modified": "2013-08-22T02:48:43", "published": "2013-02-21T19:55:01", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0311", "id": "CVE-2013-0311", "title": "CVE-2013-0311", "type": "cve", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-03T17:52:30", "bulletinFamily": "NVD", "description": "The cipso_v4_validate function in net/ipv4/cipso_ipv4.c in the Linux kernel before 3.4.8 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via an IPOPT_CIPSO IP_OPTIONS setsockopt system call.", "modified": "2013-03-07T23:11:34", "published": "2013-02-21T19:55:01", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0310", "id": "CVE-2013-0310", "title": "CVE-2013-0310", "type": "cve", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "f5": [{"lastseen": "2016-09-26T17:22:52", "bulletinFamily": "software", "description": "Recommended action\n\nIf the previous table lists a version in the **Versions known to be not vulnerable** column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists.\n\nSupplemental Information\n\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents\n * SOL4602: Overview of the F5 security vulnerability response policy\n * SOL4918: Overview of the F5 critical issue hotfix policy\n * SOL167: Downloading software and firmware from F5\n", "modified": "2014-10-27T00:00:00", "published": "2014-10-27T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/15000/700/sol15746.html", "id": "SOL15746", "title": "SOL15746 - Linux kernel vulnerability CVE-2012-4542", "type": "f5", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-26T17:23:01", "bulletinFamily": "software", "description": "Recommended Action\n\nIf the previous table lists a version in the **Versions known to be not vulnerable** column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version in the column, then no upgrade candidate currently exists. \n \nF5 is responding to this vulnerability as determined by the parameters defined in SOL4602: Overview of the F5 security vulnerability response policy. \n \n\n\nSupplemental Information\n\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents\n * SOL4918: Overview of the F5 critical issue hotfix policy\n * SOL167: Downloading software and firmware from F5\n", "modified": "2015-05-27T00:00:00", "published": "2014-10-23T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/15000/700/sol15732.html", "id": "SOL15732", "title": "SOL15732 - Linux kernel vulnerability CVE-2013-0311", "type": "f5", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2018-12-11T19:41:04", "bulletinFamily": "unix", "description": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: A subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nA flaw was found in the way the vhost kernel module handled descriptors\nthat spanned multiple regions. A privileged guest user could use this flaw\nto crash the host or, potentially, escalate their privileges on the host.\n(CVE-2013-0311)\n\nIt was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user could\npotentially use this flaw to write arbitrary data to a LUN that is\npassed-through as read-only. (CVE-2012-4542)\n\nIt was discovered that dnsmasq, when used in combination with certain\nlibvirtd configurations, could incorrectly process network packets from\nnetwork interfaces that were intended to be prohibited. A remote,\nunauthenticated attacker could exploit this flaw to cause a denial of\nservice via DNS amplification attacks. (CVE-2012-3411)\n\nThe CVE-2012-4542 issue was discovered by Paolo Bonzini of Red Hat.\n\nThis updated package provides updated components that include fixes for\nseveral security issues. These issues had no security impact on Red Hat\nEnterprise Virtualization Hypervisor itself, however. The security fixes\nincluded in this update address the following CVE numbers:\n\nCVE-2012-3955 (dhcp issue)\n\nCVE-2011-4355 (gdb issue)\n\nCVE-2012-4508, CVE-2013-0190, CVE-2013-0309, and CVE-2013-0310 (kernel\nissues)\n\nCVE-2012-5536 (openssh issue)\n\nCVE-2011-3148 and CVE-2011-3149 (pam issues)\n\nCVE-2013-0157 (util-linux-ng issue)\n\nThis updated Red Hat Enterprise Virtualization Hypervisor package also\nfixes the following bugs:\n\n* Previously, the Administration Portal would always display the option to\nupgrade the Red Hat Enterprise Virtualization Hypervisor ISO regardless of\nwhether or not the selected host was up-to-date. Now, the VDSM version\ncompatibility is considered and the upgrade message only displays if there\nis an upgrade relevant to the host available. (BZ#853092)\n\n* An out of date version of libvirt was included in the Red Hat Enterprise\nVirtualization Hypervisor 6.4 package. As a result, virtual machines with\nsupported CPU models were not being properly parsed by libvirt and failed\nto start. A more recent version of libvirt has been included in this\nupdated hypervisor package. Virtual machines now start normally.\n(BZ#895078)\n\nAs well, this update adds the following enhancement:\n\n* Hypervisor packages now take advantage of the installonlypkg function\nprovided by yum. This allows for multiple versions of the hypervisor\npackage to be installed on a system concurrently without making changes to\nthe yum configuration as was previously required. (BZ#863579)\n\nThis update includes the ovirt-node build from RHBA-2013:0556:\n\n https://rhn.redhat.com/errata/RHBA-2013-0556.html\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which fixes these issues and adds this\nenhancement.\n", "modified": "2018-06-07T08:59:40", "published": "2013-02-28T05:00:00", "id": "RHSA-2013:0579", "href": "https://access.redhat.com/errata/RHSA-2013:0579", "type": "redhat", "title": "(RHSA-2013:0579) Important: rhev-hypervisor6 security, bug fix, and enhancement update", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:45:05", "bulletinFamily": "unix", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way the vhost kernel module handled descriptors\nthat spanned multiple regions. A privileged guest user in a KVM\n(Kernel-based Virtual Machine) guest could use this flaw to crash the host\nor, potentially, escalate their privileges on the host. (CVE-2013-0311,\nImportant)\n\n* A flaw was found in the way the KVM subsystem handled guests attempting\nto run with the X86_CR4_OSXSAVE CPU feature flag set. On hosts without the\nXSAVE CPU feature, a local, unprivileged user could use this flaw to crash\nthe host system. (The \"grep --color xsave /proc/cpuinfo\" command can be\nused to verify if your system has the XSAVE CPU feature.) (CVE-2012-4461,\nModerate)\n\n* It was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user could\npotentially use this flaw to write arbitrary data to a LUN that is\npassed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A use-after-free flaw was found in the tmpfs implementation. A local user\nable to mount and unmount a tmpfs file system could use this flaw to cause\na denial of service or, potentially, escalate their privileges.\n(CVE-2013-1767, Low)\n\nRed Hat would like to thank Jon Howell for reporting CVE-2012-4461.\nCVE-2012-4542 was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes the following bugs:\n\n* Previously, when open(2) system calls were processed, the GETATTR\nroutine did not check to see if valid attributes were also returned. As a\nresult, the open() call succeeded with invalid attributes instead of\nfailing in such a case. This update adds the missing check, and the open()\ncall succeeds only when valid attributes are returned. (BZ#960409)\n\n* Previously, the fsync(2) system call incorrectly returned the EIO\n(Input/Output) error instead of the ENOSPC (No space left on device) error.\nThis was due to incorrect error handling in the page cache. This problem\nhas been fixed and the correct error value is now returned. (BZ#960418)\n\n* In the RPC code, when a network socket backed up due to high network\ntraffic, a timer was set causing a retransmission, which in turn could\ncause an even larger amount of network traffic to be generated. To prevent\nthis problem, the RPC code now waits for the socket to empty instead of\nsetting the timer. (BZ#960423)\n\n* This update fixes a number of bugs in the be2iscsi driver for\nServerEngines BladeEngine 2 Open iSCSI devices. (BZ#955502)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "modified": "2015-04-24T14:17:46", "published": "2013-05-30T04:00:00", "id": "RHSA-2013:0882", "href": "https://access.redhat.com/errata/RHSA-2013:0882", "type": "redhat", "title": "(RHSA-2013:0882) Important: kernel security and bug fix update", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:44:22", "bulletinFamily": "unix", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way the vhost kernel module handled descriptors\nthat spanned multiple regions. A privileged guest user in a KVM\n(Kernel-based Virtual Machine) guest could use this flaw to crash the host\nor, potentially, escalate their privileges on the host. (CVE-2013-0311,\nImportant)\n\n* A buffer overflow flaw was found in the way UTF-8 characters were\nconverted to UTF-16 in the utf8s_to_utf16s() function of the Linux kernel's\nFAT file system implementation. A local user able to mount a FAT file\nsystem with the \"utf8=1\" option could use this flaw to crash the system or,\npotentially, to escalate their privileges. (CVE-2013-1773, Important)\n\n* A flaw was found in the way KVM handled guest time updates when the\nbuffer the guest registered by writing to the MSR_KVM_SYSTEM_TIME machine\nstate register (MSR) crossed a page boundary. A privileged guest user could\nuse this flaw to crash the host or, potentially, escalate their privileges,\nallowing them to execute arbitrary code at the host kernel level.\n(CVE-2013-1796, Important)\n\n* A potential use-after-free flaw was found in the way KVM handled guest\ntime updates when the GPA (guest physical address) the guest registered by\nwriting to the MSR_KVM_SYSTEM_TIME machine state register (MSR) fell into a\nmovable or removable memory region of the hosting user-space process (by\ndefault, QEMU-KVM) on the host. If that memory region is deregistered from\nKVM using KVM_SET_USER_MEMORY_REGION and the allocated virtual memory\nreused, a privileged guest user could potentially use this flaw to escalate\ntheir privileges on the host. (CVE-2013-1797, Important)\n\n* A flaw was found in the way KVM emulated IOAPIC (I/O Advanced\nProgrammable Interrupt Controller). A missing validation check in the\nioapic_read_indirect() function could allow a privileged guest user to\ncrash the host, or read a substantial portion of host kernel memory.\n(CVE-2013-1798, Important)\n\n* It was found that the default SCSI command filter does not accommodate\ncommands that overlap across device classes. A privileged guest user could\npotentially use this flaw to write arbitrary data to a LUN that is\npassed-through as read-only. (CVE-2012-4542, Moderate)\n\n* A use-after-free flaw was found in the tmpfs implementation. A local user\nable to mount and unmount a tmpfs file system could use this flaw to cause\na denial of service or, potentially, escalate their privileges.\n(CVE-2013-1767, Low)\n\n* A format string flaw was found in the ext3_msg() function in the Linux\nkernel's ext3 file system implementation. A local user who is able to mount\nan ext3 file system could use this flaw to cause a denial of service or,\npotentially, escalate their privileges. (CVE-2013-1848, Low)\n\nRed Hat would like to thank Andrew Honig of Google for reporting the\nCVE-2013-1796, CVE-2013-1797, and CVE-2013-1798 issues. The CVE-2012-4542\nissue was discovered by Paolo Bonzini of Red Hat.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "modified": "2015-04-24T14:19:56", "published": "2013-06-11T04:00:00", "id": "RHSA-2013:0928", "href": "https://access.redhat.com/errata/RHSA-2013:0928", "type": "redhat", "title": "(RHSA-2013:0928) Important: kernel security and bug fix update", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:41:23", "bulletinFamily": "unix", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* An information leak flaw was found in the way Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508, and\nFujitsu for reporting CVE-2013-4299. Upstream acknowledges Dmitry Monakhov\nas the original reporter of CVE-2012-4508.\n\nThis update also fixes the following bugs:\n\n* When the Audit subsystem was under heavy load, it could loop infinitely\nin the audit_log_start() function instead of failing over to the error\nrecovery code. This would cause soft lockups in the kernel. With this\nupdate, the timeout condition in the audit_log_start() function has been\nmodified to properly fail over when necessary. (BZ#1017898)\n\n* When handling Memory Type Range Registers (MTRRs), the\nstop_one_cpu_nowait() function could potentially be executed in parallel\nwith the stop_machine() function, which resulted in a deadlock. The MTRR\nhandling logic now uses the stop_machine() function and makes use of mutual\nexclusion to avoid the aforementioned deadlock. (BZ#1017902)\n\n* Power-limit notification interrupts were enabled by default. This could\nlead to degradation of system performance or even render the system\nunusable on certain platforms, such as Dell PowerEdge servers. Power-limit\nnotification interrupts have been disabled by default and a new kernel\ncommand line parameter \"int_pln_enable\" has been added to allow users to\nobserve these events using the existing system counters. Power-limit\nnotification messages are also no longer displayed on the console.\nThe affected platforms no longer suffer from degraded system performance\ndue to this problem. (BZ#1020519)\n\n* Package level thermal and power limit events are not defined as MCE\nerrors for the x86 architecture. However, the mcelog utility erroneously\nreported these events as MCE errors with the following message:\n\n kernel: [Hardware Error]: Machine check events logged\n\nPackage level thermal and power limit events are no longer reported as MCE\nerrors by mcelog. When these events are triggered, they are now reported\nonly in the respective counters in sysfs (specifically,\n/sys/devices/system/cpu/cpu<number>/thermal_throttle/). (BZ#1021950)\n\n* An insufficiently designed calculation in the CPU accelerator could cause\nan arithmetic overflow in the set_cyc2ns_scale() function if the system\nuptime exceeded 208 days prior to using kexec to boot into a new kernel.\nThis overflow led to a kernel panic on systems using the Time Stamp Counter\n(TSC) clock source, primarily systems using Intel Xeon E5 processors that\ndo not reset TSC on soft power cycles. A patch has been applied to modify\nthe calculation so that this arithmetic overflow and kernel panic can no\nlonger occur under these circumstances. (BZ#1024453)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "modified": "2015-04-24T14:20:13", "published": "2013-11-13T05:00:00", "id": "RHSA-2013:1519", "href": "https://access.redhat.com/errata/RHSA-2013:1519", "type": "redhat", "title": "(RHSA-2013:1519) Important: kernel security and bug fix update", "cvss": {"score": 6.0, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-11T17:46:01", "bulletinFamily": "unix", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* An information leak flaw was found in the way the Linux kernel's device\nmapper subsystem, under certain conditions, interpreted data written to\nsnapshot block devices. An attacker could use this flaw to read data from\ndisk blocks in free space, which are normally inaccessible. (CVE-2013-4299,\nModerate)\n\n* A format string flaw was found in the Linux kernel's block layer.\nA privileged, local user could potentially use this flaw to escalate their\nprivileges to kernel level (ring0). (CVE-2013-2851, Low)\n\nRed Hat would like to thank Theodore Ts'o for reporting CVE-2012-4508,\nFujitsu for reporting CVE-2013-4299, and Kees Cook for reporting\nCVE-2013-2851. Upstream acknowledges Dmitry Monakhov as the original\nreporter of CVE-2012-4508.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "modified": "2015-04-24T14:21:32", "published": "2013-12-05T05:00:00", "id": "RHSA-2013:1783", "href": "https://access.redhat.com/errata/RHSA-2013:1783", "type": "redhat", "title": "(RHSA-2013:1783) Important: kernel security and bug fix update", "cvss": {"score": 6.0, "vector": "AV:LOCAL/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:09:57", "bulletinFamily": "unix", "description": "It was discovered that hypervkvpd, which is distributed in the Linux kernel, was not correctly validating the origin on Netlink messages. An untrusted local user can cause a denial of service of Linux guests in Hyper-V virtualization environments. (CVE-2012-2669)\n\nDmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. (CVE-2012-4508)\n\nAndrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously. (CVE-2013-0190)", "modified": "2013-02-12T00:00:00", "published": "2013-02-12T00:00:00", "id": "USN-1719-1", "href": "https://usn.ubuntu.com/1719-1/", "title": "Linux kernel (Oneiric backport) vulnerabilities", "type": "ubuntu", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:58", "bulletinFamily": "unix", "description": "It was discovered that hypervkvpd, which is distributed in the Linux kernel, was not correctly validating the origin on Netlink messages. An untrusted local user can cause a denial of service of Linux guests in Hyper-V virtualization environments. (CVE-2012-2669)\n\nDmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. (CVE-2012-4508)\n\nFlorian Weimer discovered that hypervkvpd, which is distributed in the Linux kernel, was not correctly validating source addresses of netlink packets. An untrusted local user can cause a denial of service by causing hypervkvpd to exit. (CVE-2012-5532)\n\nAndrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously. (CVE-2013-0190)", "modified": "2013-02-12T00:00:00", "published": "2013-02-12T00:00:00", "id": "USN-1720-1", "href": "https://usn.ubuntu.com/1720-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:10:04", "bulletinFamily": "unix", "description": "Andrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously.", "modified": "2013-02-14T00:00:00", "published": "2013-02-14T00:00:00", "id": "USN-1725-1", "href": "https://usn.ubuntu.com/1725-1/", "title": "Linux kernel vulnerability", "type": "ubuntu", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:38", "bulletinFamily": "unix", "description": "Andrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously.", "modified": "2013-02-19T00:00:00", "published": "2013-02-19T00:00:00", "id": "USN-1728-1", "href": "https://usn.ubuntu.com/1728-1/", "title": "Linux kernel (EC2) vulnerability", "type": "ubuntu", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:15", "bulletinFamily": "unix", "description": "Andrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously. (CVE-2013-0190)\n\nA failure to validate input was discovered in the Linux kernel\u2019s Xen netback (network backend) driver. A user in a guest OS may exploit this flaw to cause a denial of service to the guest OS and other guest domains. (CVE-2013-0216)\n\nA memory leak was discovered in the Linux kernel\u2019s Xen netback (network backend) driver. A user in a guest OS could trigger this flaw to cause a denial of service on the system. (CVE-2013-0217)\n\nA flaw was discovered in the Linux kernel Xen PCI backend driver. If a PCI device is assigned to the guest OS, the guest OS could exploit this flaw to cause a denial of service on the host. (CVE-2013-0231)\n\nA flaw was reported in the permission checks done by the Linux kernel for /dev/cpu/*/msr. A local root user with all capabilities dropped could exploit this flaw to execute code with full root capabilities. (CVE-2013-0268)\n\nTommi Rantala discovered a flaw in the a flaw the Linux kernels handling of datagrams packets when the MSG_PEEK flag is specified. An unprivileged local user could exploit this flaw to cause a denial of service (system hang). (CVE-2013-0290)\n\nA flaw was discovered in the Linux kernel\u2019s vhost driver used to accelerate guest networking in KVM based virtual machines. A privileged guest user could exploit this flaw to crash the host system. (CVE-2013-0311)\n\nA flaw was discovered in the Extended Verification Module (EVM) of the Linux kernel. An unprivileged local user code exploit this flaw to cause a denial of service (system crash). (CVE-2013-0313)\n\nAn information leak was discovered in the Linux kernel\u2019s Bluetooth stack when HIDP (Human Interface Device Protocol) support is enabled. A local unprivileged user could exploit this flaw to cause an information leak from the kernel. (CVE-2013-0349)", "modified": "2013-03-21T00:00:00", "published": "2013-03-21T00:00:00", "id": "USN-1774-1", "href": "https://usn.ubuntu.com/1774-1/", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:32", "bulletinFamily": "unix", "description": "Andrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously. (CVE-2013-0190)\n\nA failure to validate input was discovered in the Linux kernel\u2019s Xen netback (network backend) driver. A user in a guest OS may exploit this flaw to cause a denial of service to the guest OS and other guest domains. (CVE-2013-0216)\n\nA memory leak was discovered in the Linux kernel\u2019s Xen netback (network backend) driver. A user in a guest OS could trigger this flaw to cause a denial of service on the system. (CVE-2013-0217)\n\nA flaw was discovered in the Linux kernel Xen PCI backend driver. If a PCI device is assigned to the guest OS, the guest OS could exploit this flaw to cause a denial of service on the host. (CVE-2013-0231)\n\nA flaw was reported in the permission checks done by the Linux kernel for /dev/cpu/*/msr. A local root user with all capabilities dropped could exploit this flaw to execute code with full root capabilities. (CVE-2013-0268)\n\nTommi Rantala discovered a flaw in the a flaw the Linux kernels handling of datagrams packets when the MSG_PEEK flag is specified. An unprivileged local user could exploit this flaw to cause a denial of service (system hang). (CVE-2013-0290)\n\nA flaw was discovered in the Linux kernel\u2019s vhost driver used to accelerate guest networking in KVM based virtual machines. A privileged guest user could exploit this flaw to crash the host system. (CVE-2013-0311)\n\nA flaw was discovered in the Extended Verification Module (EVM) of the Linux kernel. An unprivileged local user code exploit this flaw to cause a denial of service (system crash). (CVE-2013-0313)\n\nAn information leak was discovered in the Linux kernel\u2019s Bluetooth stack when HIDP (Human Interface Device Protocol) support is enabled. A local unprivileged user could exploit this flaw to cause an information leak from the kernel. (CVE-2013-0349)", "modified": "2013-03-18T00:00:00", "published": "2013-03-18T00:00:00", "id": "USN-1769-1", "href": "https://usn.ubuntu.com/1769-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:10:24", "bulletinFamily": "unix", "description": "Andrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash, or operate erroneously. (CVE-2013-0190)\n\nA failure to validate input was discovered in the Linux kernel\u2019s Xen netback (network backend) driver. A user in a guest OS may exploit this flaw to cause a denial of service to the guest OS and other guest domains. (CVE-2013-0216)\n\nA memory leak was discovered in the Linux kernel\u2019s Xen netback (network backend) driver. A user in a guest OS could trigger this flaw to cause a denial of service on the system. (CVE-2013-0217)\n\nA flaw was discovered in the Linux kernel Xen PCI backend driver. If a PCI device is assigned to the guest OS, the guest OS could exploit this flaw to cause a denial of service on the host. (CVE-2013-0231)\n\nA flaw was reported in the permission checks done by the Linux kernel for /dev/cpu/*/msr. A local root user with all capabilities dropped could exploit this flaw to execute code with full root capabilities. (CVE-2013-0268)\n\nTommi Rantala discovered a flaw in the a flaw the Linux kernels handling of datagrams packets when the MSG_PEEK flag is specified. An unprivileged local user could exploit this flaw to cause a denial of service (system hang). (CVE-2013-0290)\n\nA flaw was discovered in the Linux kernel\u2019s vhost driver used to accelerate guest networking in KVM based virtual machines. A privileged guest user could exploit this flaw to crash the host system. (CVE-2013-0311)\n\nA flaw was discovered in the Extended Verification Module (EVM) of the Linux kernel. An unprivileged local user code exploit this flaw to cause a denial of service (system crash). (CVE-2013-0313)\n\nAn information leak was discovered in the Linux kernel\u2019s Bluetooth stack when HIDP (Human Interface Device Protocol) support is enabled. A local unprivileged user could exploit this flaw to cause an information leak from the kernel. (CVE-2013-0349)", "modified": "2013-03-18T00:00:00", "published": "2013-03-18T00:00:00", "id": "USN-1768-1", "href": "https://usn.ubuntu.com/1768-1/", "title": "Linux kernel (Quantal HWE) vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.5, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:32", "bulletinFamily": "unix", "description": "A flaw was reported in the permission checks done by the Linux kernel for /dev/cpu/*/msr. A local root user with all capabilities dropped could exploit this flaw to execute code with full root capabilities. (CVE-2013-0268)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nA flaw was discovered on the Linux kernel\u2019s VFAT filesystem driver when a disk is mounted with the utf8 option (this is the default on Ubuntu). On a system where disks/images can be auto-mounted or a FAT filesystem is mounted an unprivileged user can exploit the flaw to gain root privileges. (CVE-2013-1773)", "modified": "2013-03-22T00:00:00", "published": "2013-03-22T00:00:00", "id": "USN-1775-1", "href": "https://usn.ubuntu.com/1775-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:47", "bulletinFamily": "unix", "description": "A flaw was found in the Linux kernel\u2019s Reliable Datagram Sockets (RDS) protocol implementation. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2012-2372)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s TUN/TAP device driver. A local user could exploit this flaw to examine part of the kernel\u2019s stack memory. (CVE-2012-6547)\n\nA flaw was found in Linux kernel\u2019s validation of CIPSO (Common IP Security Option) options set from userspace. A local user that can set a socket\u2019s CIPSO options could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0310)", "modified": "2012-09-07T00:00:00", "published": "2012-09-07T00:00:00", "id": "USN-1558-1", "href": "https://usn.ubuntu.com/1558-1/", "title": "Linux kernel (OMAP4) vulnerability", "type": "ubuntu", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:10:27", "bulletinFamily": "unix", "description": "A flaw was found in the Linux kernel\u2019s Reliable Datagram Sockets (RDS) protocol implementation. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2012-2372)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s TUN/TAP device driver. A local user could exploit this flaw to examine part of the kernel\u2019s stack memory. (CVE-2012-6547)\n\nA flaw was found in Linux kernel\u2019s validation of CIPSO (Common IP Security Option) options set from userspace. A local user that can set a socket\u2019s CIPSO options could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0310)", "modified": "2012-09-10T00:00:00", "published": "2012-09-10T00:00:00", "id": "USN-1563-1", "href": "https://usn.ubuntu.com/1563-1/", "title": "Linux kernel (Oneiric backport) vulnerability", "type": "ubuntu", "cvss": {"score": 6.6, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:47", "bulletinFamily": "software", "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-1720-1\r\nFebruary 12, 2013\r\n\r\nlinux vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 11.10\r\n\r\nSummary:\r\n\r\nSeveral security issues were fixed in the kernel.\r\n\r\nSoftware Description:\r\n- linux: Linux kernel\r\n\r\nDetails:\r\n\r\nIt was discovered that hypervkvpd, which is distributed in the Linux\r\nkernel, was not correctly validating the origin on Netlink messages. An\r\nuntrusted local user can cause a denial of service of Linux guests in\r\nHyper-V virtualization environments. &#40;CVE-2012-2669&#41;\r\n\r\nDmitry Monakhov reported a race condition flaw the Linux ext4 filesystem\r\nthat can expose stale data. An unprivileged user could exploit this flaw to\r\ncause an information leak. &#40;CVE-2012-4508&#41;\r\n\r\nFlorian Weimer discovered that hypervkvpd, which is distributed in the\r\nLinux kernel, was not correctly validating source addresses of netlink\r\npackets. An untrusted local user can cause a denial of service by causing\r\nhypervkvpd to exit. &#40;CVE-2012-5532&#41;\r\n\r\nAndrew Cooper of Citrix reported a Xen stack corruption in the Linux\r\nkernel. An unprivileged user in a 32bit PVOPS guest can cause the guest\r\nkernel to crash, or operate erroneously. &#40;CVE-2013-0190&#41;\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 11.10:\r\n linux-image-3.0.0-31-generic 3.0.0-31.48\r\n linux-image-3.0.0-31-generic-pae 3.0.0-31.48\r\n linux-image-3.0.0-31-omap 3.0.0-31.48\r\n linux-image-3.0.0-31-powerpc 3.0.0-31.48\r\n linux-image-3.0.0-31-powerpc-smp 3.0.0-31.48\r\n linux-image-3.0.0-31-powerpc64-smp 3.0.0-31.48\r\n linux-image-3.0.0-31-server 3.0.0-31.48\r\n linux-image-3.0.0-31-virtual 3.0.0-31.48\r\n\r\nAfter a standard system update you need to reboot your computer to make\r\nall the necessary changes.\r\n\r\nATTENTION: Due to an unavoidable ABI change the kernel updates have\r\nbeen given a new version number, which requires you to recompile and\r\nreinstall all third party kernel modules you might have installed. If\r\nyou use linux-restricted-modules, you have to update that package as\r\nwell to get modules which work with the new kernel version. Unless you\r\nmanually uninstalled the standard kernel metapackages &#40;e.g. linux-generic,\r\nlinux-server, linux-powerpc&#41;, a standard system upgrade will automatically\r\nperform this as well.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-1720-1\r\n CVE-2012-2669, CVE-2012-4508, CVE-2012-5532, CVE-2013-0190\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/linux/3.0.0-31.48\r\n\r\n\r\nAttached Message Part\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "modified": "2013-02-14T00:00:00", "published": "2013-02-14T00:00:00", "id": "SECURITYVULNS:DOC:29044", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:29044", "title": "[USN-1720-1] Linux kernel vulnerabilities", "type": "securityvulns", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:09:50", "bulletinFamily": "software", "description": "Privilege escalation, information leak.", "modified": "2013-03-02T00:00:00", "published": "2013-03-02T00:00:00", "id": "SECURITYVULNS:VULN:12888", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12888", "title": "Linux kernel security vulnerabilities", "type": "securityvulns", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "seebug": [{"lastseen": "2017-11-19T17:45:04", "bulletinFamily": "exploit", "description": "BUGTRAQ ID: 58046\r\nCVE(CAN) ID: CVE-2013-0309\r\n\r\nLinux Kernel\u662fLinux\u64cd\u4f5c\u7cfb\u7edf\u7684\u5185\u6838\u3002\r\n\r\n\u4f7f\u7528pmd_present\u7684VM\u4f1a\u8fd4\u56de\u9519\u8bef\u7684PROT_NONE\u8303\u56f4\u503c\uff0c\u5f53\u4f7f\u7528pmd_present\u7684\u4ee3\u7801\u5f97\u5230\u6f0f\u62a5\u540e\uff0c\u5185\u6838\u4f1a\u5d29\u6e83\uff0c\u672c\u5730\u672a\u6388\u6743\u7528\u6237\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u4f7f\u7cfb\u7edf\u5d29\u6e83\u3002\n0\nLinux kernel 2.6.x\n\u5382\u5546\u8865\u4e01\uff1a\r\n\r\nLinux\r\n-----\r\n\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\n\r\nhttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux.git;a=commit;h=027ef6c8", "modified": "2013-02-22T00:00:00", "published": "2013-02-22T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-60638", "id": "SSV:60638", "title": "Linux Kernel mm: thp: pmd_present\u548cPROT_NONE\u672c\u5730\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e", "type": "seebug", "sourceData": "", "cvss": {"score": 4.7, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "sourceHref": ""}], "amazon": [{"lastseen": "2018-10-02T16:55:14", "bulletinFamily": "unix", "description": "**Issue Overview:**\n\nThe xen_failsafe_callback function in Xen for the Linux kernel 2.6.23 and other versions, when running a 32-bit PVOPS guest, allows local users to cause a denial of service (guest crash) by triggering an iret fault, leading to use of an incorrect stack pointer and stack corruption. \n\n \n**Affected Packages:** \n\n\nkernel,nvidia\n\n \n**Issue Correction:** \nRun _yum update kernel nvidia_ to update your system. You will need to reboot your system in order for the new kernel to be running.\n\n \n\n\n**New Packages:**\n \n \n i686: \n kernel-tools-3.2.37-2.47.amzn1.i686 \n kernel-headers-3.2.37-2.47.amzn1.i686 \n kernel-debuginfo-3.2.37-2.47.amzn1.i686 \n kernel-devel-3.2.37-2.47.amzn1.i686 \n kernel-tools-debuginfo-3.2.37-2.47.amzn1.i686 \n kernel-3.2.37-2.47.amzn1.i686 \n kernel-debuginfo-common-i686-3.2.37-2.47.amzn1.i686 \n \n noarch: \n kernel-doc-3.2.37-2.47.amzn1.noarch \n \n src: \n kernel-3.2.37-2.47.amzn1.src \n nvidia-313.18-2012.09.0.amzn1.src \n \n x86_64: \n kernel-debuginfo-common-x86_64-3.2.37-2.47.amzn1.x86_64 \n kernel-devel-3.2.37-2.47.amzn1.x86_64 \n kernel-3.2.37-2.47.amzn1.x86_64 \n kernel-debuginfo-3.2.37-2.47.amzn1.x86_64 \n kernel-tools-debuginfo-3.2.37-2.47.amzn1.x86_64 \n kernel-headers-3.2.37-2.47.amzn1.x86_64 \n kernel-tools-3.2.37-2.47.amzn1.x86_64 \n nvidia-kmod-3.2.37-2.47.amzn1-313.18-2012.09.0.amzn1.x86_64 \n nvidia-313.18-2012.09.0.amzn1.x86_64 \n \n \n", "modified": "2014-09-15T22:27:00", "published": "2014-09-15T22:27:00", "id": "ALAS-2013-154", "href": "https://alas.aws.amazon.com/ALAS-2013-154.html", "title": "Medium: kernel,nvidia", "type": "amazon", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "xen": [{"lastseen": "2016-04-01T21:57:16", "bulletinFamily": "software", "description": "#### ISSUE DESCRIPTION\nxen_failsafe_callback incorrectly sets up its stack if an iret fault is injected by the hypervisor.\n#### IMPACT\nMalicious or buggy unprivileged userspace can cause the guest kernel to crash, or operate erroneously.\n#### VULNERABLE SYSTEMS\nAll 32bit PVOPS versions of Linux are affected, since the introduction of Xen PVOPS support in 2.6.23. Classic-Xen kernels are not vulnerable.\n", "modified": "2013-01-16T14:50:00", "published": "2013-01-16T14:50:00", "href": "http://xenbits.xen.org/xsa/advisory-40.html", "id": "XSA-40", "type": "xen", "title": "Linux stack corruption in xen_failsafe_callback for 32bit PVOPS guests.", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "threatpost": [{"lastseen": "2018-10-06T22:57:26", "bulletinFamily": "info", "description": "The little-known HanJuan exploit kit is delivering attacks targeting the most recent [Adobe Flash Player zero-day vulnerability](<http://threatpost.com/another-flash-zero-day-emerges/110786>). Adobe has yet to produce a patch for the flaw, which researchers at Trustwave said is a use-after-free vulnerability.\n\nThe flaw is the third to hit Flash in the last two weeks; the previous two have been patched by Adobe. A request to Adobe for comment on a patch for this bug was not returned in time for publication.\n\nAdobe confirmed the vulnerability on Monday affecting Flash version 16.0.0.296 and earlier for Windows. The exploitation technique used against this vulnerability, CVE-2015-0313, is similar to another zero-day exploit being served up in the Angler exploit kit, leading Trustwave to surmise it could be the same group behind both vulnerability discoveries and exploits. That [flaw was patched](<http://threatpost.com/adobe-begins-auto-update-patching-of-second-flash-player-zero-day/110640>) last week.\n\n\u201cThe vulnerability is a use-after-free vulnerability caused by a bug in how Flash handles the FlashCC (previously Flash Alchemy) \u2018fast memory access\u2019 feature (domainMemory), when the last is used by flash Workers (Flash threads),\u201d Trustwave said in its [report](<http://blog.spiderlabs.com/2015/02/a-new-zero-day-of-adobe-flash-cve-2015-0313-exploited-in-the-wild.html>) published yesterday.\n\nFrench researcher Kafeine, who found the Flash exploit in Angler, said there seems to be a strong connection between these exploits and the criminal gang behind Angler, which is also delivering Bedep click-fraud malware, and Reveton ransomware.\n\n\u201cWhy you don\u2019t hear that much about ([HanJuan](<http://www.malwaresigs.com/2013/10/14/unknown-ek/>)) is because the redirection chain has really strong filtering on the traffic to avoid most data centers (researchers using VPNs or virtual private servers to analyze malware and exploits),\u201d Kafeine told Threatpost.\n\nKafeine said the payload delivery is \u201cfileless\u201d and uses similar encryption (Xtea) as the Angler exploit; the exploit is dropping Bedep click-fraud malware, similar to CVE-2015-0311, he added.\n\nBoth this exploit and the CVE-2013-0311 exploit gain access to memory using a heap spray technique, Trustwave said. Trustwave said it was able to reproduce an exploit in its lab, and shared that process in its report.\n\nResearchers said the processes under attack support multi-threading in Flash, and the means in which data and objects are shared in memory. Within Flash, it is possible, Trustwave said, to access process memory using fast memory access, or ActionScript, which is achieved by setting memory data to a predefined ByteArray. Trustwave explained that if that ByteArray is freed by another thread, the domainMemory object will hold a pointer to freed memory.\n\n> The Hanjuan Exploit Kit is delivering exploits against the latest Flash zero day. via @Threatpost\n> \n> [Tweet](<https://twitter.com/share?url=https%3A%2F%2Fthreatpost.com%2Flatest-flash-0day-under-attack-possible-ties-to-group-behind-angler-ek%2F110847%2F&text=The+Hanjuan+Exploit+Kit+is+delivering+exploits+against+the+latest+Flash+zero+day.+via+%40Threatpost>)\n\n\u201cSuch a condition is a security risk and is usually classified as a use-after-free vulnerability. Using the reference to a freed memory area, it is possible to use/access the heap memory block directly,\u201d Trustwave said. \u201cThe exploit uses heap spraying to fill this freed memory with Vector Objects and corrupt the size of a given vector setting it to a very large size. This corrupted Vector will later be used to access the entire memory of the browser process and to gain code execution over the machine.\u201d\n\nAdobe on Monday posted an [advisory](<https://helpx.adobe.com/security/products/flash-player/apsa15-02.html>) on CVE-2015-0313, and said it was being [exploited in drive-by downloads and malvertising attacks](<http://threatpost.com/another-flash-zero-day-emerges/110786>). Some big sites were delivering malicious ads redirecting to the exploits, including DailyMotion, Wowhead, Answers.com, and Engage:BDR, among others. Adobe said attackers\u2019 exploits were targeting Windows 8.1 computers and below running Internet Explorer or Firefox.\n\nThis announcement came on the heels of two other warnings from Adobe regarding zero days in Flash. The more serious of the two was being delivered by the Angler Exploit Kit, and was discovered by Kafeine. That exploit used [multiple layers of obfuscation to hide the exploit](<http://threatpost.com/analysis-of-flash-zero-day-shows-layers-of-obfuscation/110674>) from detection.\n", "modified": "2015-04-13T17:21:31", "published": "2015-02-04T10:03:57", "id": "THREATPOST:598790503ACCB1E7323D4862D42346C2", "href": "https://threatpost.com/latest-flash-0day-under-attack-possible-ties-to-group-behind-angler-ek/110847/", "type": "threatpost", "title": "Third Adobe Flash 0Day Under Attack in HanJuan Exploit Kit", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}