local privilege escalation, remote denial of in kernel
2011-01-03T15:33:10
ID SUSE-SA:2011:001 Type suse Reporter Suse Modified 2011-01-03T15:33:10
Description
The openSUSE 11.3 kernel was updated to fix various bugs and security issues. Following security issues have been fixed: CVE-2010-4347: A local user could inject ACPI code into the kernel via the world-writable "custom_debug" file, allowing local privilege escalation.
Solution
There is no known workaround, please install the update packages.
{"openvas": [{"lastseen": "2019-10-09T15:25:49", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-10-07T00:00:00", "published": "2011-01-11T00:00:00", "id": "OPENVAS:1361412562310850157", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310850157", "title": "SuSE Update for kernel SUSE-SA:2011:001", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2011:001\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.850157\");\n script_version(\"2019-10-07T14:34:48+0000\");\n script_tag(name:\"last_modification\", value:\"2019-10-07 14:34:48 +0000 (Mon, 07 Oct 2019)\");\n script_tag(name:\"creation_date\", value:\"2011-01-11 16:07:49 +0100 (Tue, 11 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"SUSE-SA\", value:\"2011-001\");\n script_cve_id(\"CVE-2010-0435\", \"CVE-2010-3067\", \"CVE-2010-3432\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-3861\", \"CVE-2010-3865\", \"CVE-2010-3874\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4082\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4162\", \"CVE-2010-4163\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4169\", \"CVE-2010-4175\", \"CVE-2010-4258\", \"CVE-2010-4347\");\n script_name(\"SuSE Update for kernel SUSE-SA:2011:001\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\", re:\"ssh/login/release=openSUSE11\\.3\");\n script_tag(name:\"impact\", value:\"local privilege escalation, remote denial of service\");\n script_tag(name:\"affected\", value:\"kernel on openSUSE 11.3\");\n script_tag(name:\"insight\", value:\"The openSUSE 11.3 kernel was updated to fix various bugs and security\n issues.\n\n The following security issues have been fixed:\n CVE-2010-4347: A local user could inject ACPI code into the kernel\n via the world-writable 'custom_debug' file, allowing local privilege\n escalation.\n\n CVE-2010-4258: A local attacker could use a Oops (kernel crash) caused\n by other flaws to write a 0 byte to a attacker controlled address\n in the kernel. This could lead to privilege escalation together with\n other issues.\n\n CVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\n could lead to memory corruption in the GDTH driver.\n\n CVE-2010-4165: The do_tcp_setsockopt function in net/ipv4/tcp.c\n in the Linux kernel did not properly restrict TCP_MAXSEG (aka MSS)\n values, which allows local users to cause a denial of service (OOPS)\n via a setsockopt call that specifies a small value, leading to a\n divide-by-zero error or incorrect use of a signed integer.\n\n CVE-2010-4164: A remote (or local) attacker communicating over X.25\n could cause a kernel panic by attempting to negotiate malformed\n facilities.\n\n CVE-2010-4175: A local attacker could cause memory overruns in the\n RDS protocol stack, potentially crashing the kernel. So far it is\n considered not to be exploitable.\n\n CVE-2010-4169: Use-after-free vulnerability in mm/mprotect.c in the\n Linux kernel allowed local users to cause a denial of service via\n vectors involving an mprotect system call.\n\n CVE-2010-3874: A minor heap overflow in the CAN network module\n was fixed. Due to nature of the memory allocator it is likely not\n exploitable.\n\n CVE-2010-4158: A memory information leak in Berkeley packet filter\n rules allowed local attackers to read uninitialized memory of the\n kernel stack.\n\n CVE-2010-4162: A local denial of service in the blockdevice layer\n was fixed.\n\n CVE-2010-4163: By submitting certain I/O requests with 0 length,\n a local user could have caused a kernel panic.\n\n CVE-2010-0435: The Hypervisor in KVM 83, when the Intel VT-x extension\n is enabled, allows guest OS users to cause a denial of service\n (NULL pointer dereference and host OS crash) via vectors related to\n instruction emulation.\n\n CVE-2010-3861: The ethtool_get_rxnfc function in net/core/ethtool.c\n in the Linux kernel did not initialize a certain block of heap memory,\n which allowed local users to obtain potentially sensitive information\n via an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt\n value.\n\n CVE-2010-3442: Multiple integer overflows in the snd_ctl_ne ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\nres = \"\";\n\nif(release == \"openSUSE11.3\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-devel\", rpm:\"kernel-default-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop\", rpm:\"kernel-desktop~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-base\", rpm:\"kernel-desktop-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-devel\", rpm:\"kernel-desktop-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-ec2\", rpm:\"kernel-ec2~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-ec2-base\", rpm:\"kernel-ec2-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-ec2-devel\", rpm:\"kernel-ec2-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-ec2-extra\", rpm:\"kernel-ec2-extra~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae\", rpm:\"kernel-pae~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-base\", rpm:\"kernel-pae-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-devel\", rpm:\"kernel-pae-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace\", rpm:\"kernel-trace~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base\", rpm:\"kernel-trace-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-devel\", rpm:\"kernel-trace-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-base\", rpm:\"kernel-vanilla-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-devel\", rpm:\"kernel-vanilla-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vmi\", rpm:\"kernel-vmi~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vmi-base\", rpm:\"kernel-vmi-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vmi-devel\", rpm:\"kernel-vmi-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-base\", rpm:\"kernel-xen-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-default\", rpm:\"preload-kmp-default~1.1_k2.6.34.7_0.7~19.1.11\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-desktop\", rpm:\"preload-kmp-desktop~1.1_k2.6.34.7_0.7~19.1.11\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2017-12-12T11:19:33", "bulletinFamily": "scanner", "description": "Check for the Version of kernel", "modified": "2017-12-08T00:00:00", "published": "2011-01-11T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=850157", "id": "OPENVAS:850157", "title": "SuSE Update for kernel SUSE-SA:2011:001", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2011:001\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The openSUSE 11.3 kernel was updated to fix various bugs and security\n issues.\n\n Following security issues have been fixed:\n CVE-2010-4347: A local user could inject ACPI code into the kernel\n via the world-writable "custom_debug" file, allowing local privilege\n escalation.\n\n CVE-2010-4258: A local attacker could use a Oops (kernel crash) caused\n by other flaws to write a 0 byte to a attacker controlled address\n in the kernel. This could lead to privilege escalation together with\n other issues.\n\n CVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\n could lead to memory corruption in the GDTH driver.\n\n CVE-2010-4165: The do_tcp_setsockopt function in net/ipv4/tcp.c\n in the Linux kernel did not properly restrict TCP_MAXSEG (aka MSS)\n values, which allows local users to cause a denial of service (OOPS)\n via a setsockopt call that specifies a small value, leading to a\n divide-by-zero error or incorrect use of a signed integer.\n\n CVE-2010-4164: A remote (or local) attacker communicating over X.25\n could cause a kernel panic by attempting to negotiate malformed\n facilities.\n\n CVE-2010-4175: A local attacker could cause memory overruns in the\n RDS protocol stack, potentially crashing the kernel. So far it is\n considered not to be exploitable.\n\n CVE-2010-4169: Use-after-free vulnerability in mm/mprotect.c in the\n Linux kernel allowed local users to cause a denial of service via\n vectors involving an mprotect system call.\n\n CVE-2010-3874: A minor heap overflow in the CAN network module\n was fixed. Due to nature of the memory allocator it is likely not\n exploitable.\n\n CVE-2010-4158: A memory information leak in Berkeley packet filter\n rules allowed local attackers to read uninitialized memory of the\n kernel stack.\n\n CVE-2010-4162: A local denial of service in the blockdevice layer\n was fixed.\n\n CVE-2010-4163: By submitting certain I/O requests with 0 length,\n a local user could have caused a kernel panic.\n\n CVE-2010-0435: The Hypervisor in KVM 83, when the Intel VT-x extension\n is enabled, allows guest OS users to cause a denial of service\n (NULL pointer dereference and host OS crash) via vectors related to\n instruction emulation.\n\n CVE-2010-3861: The ethtool_get_rxnfc function in net/core/ethtool.c\n in the Linux kernel did not initialize a certain block of heap memory,\n which allowed local users to obtain potentially sensitive information\n via an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt\n value.\n\n CVE-2010-3442: Multiple integer overflows in the snd_ctl_ne ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_impact = \"local privilege escalation, remote denial of service\";\ntag_affected = \"kernel on openSUSE 11.3\";\n\n\nif(description)\n{\n script_id(850157);\n script_version(\"$Revision: 8041 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-08 08:28:21 +0100 (Fri, 08 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-11 16:07:49 +0100 (Tue, 11 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2011-001\");\n script_cve_id(\"CVE-2010-0435\", \"CVE-2010-3067\", \"CVE-2010-3432\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-3861\", \"CVE-2010-3865\", \"CVE-2010-3874\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4082\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4162\", \"CVE-2010-4163\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4169\", \"CVE-2010-4175\", \"CVE-2010-4258\", \"CVE-2010-4347\");\n script_name(\"SuSE Update for kernel SUSE-SA:2011:001\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSE11.3\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-devel\", rpm:\"kernel-default-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop\", rpm:\"kernel-desktop~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-base\", rpm:\"kernel-desktop-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-devel\", rpm:\"kernel-desktop-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-ec2\", rpm:\"kernel-ec2~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-ec2-base\", rpm:\"kernel-ec2-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-ec2-devel\", rpm:\"kernel-ec2-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-ec2-extra\", rpm:\"kernel-ec2-extra~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae\", rpm:\"kernel-pae~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-base\", rpm:\"kernel-pae-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-devel\", rpm:\"kernel-pae-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace\", rpm:\"kernel-trace~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base\", rpm:\"kernel-trace-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-devel\", rpm:\"kernel-trace-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-base\", rpm:\"kernel-vanilla-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-devel\", rpm:\"kernel-vanilla-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vmi\", rpm:\"kernel-vmi~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vmi-base\", rpm:\"kernel-vmi-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vmi-devel\", rpm:\"kernel-vmi-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-base\", rpm:\"kernel-xen-base~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.34.7~0.7.1\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-default\", rpm:\"preload-kmp-default~1.1_k2.6.34.7_0.7~19.1.11\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-desktop\", rpm:\"preload-kmp-desktop~1.1_k2.6.34.7_0.7~19.1.11\", rls:\"openSUSE11.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2019-10-09T15:25:12", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-10-07T00:00:00", "published": "2011-01-11T00:00:00", "id": "OPENVAS:1361412562310850156", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310850156", "title": "SuSE Update for kernel SUSE-SA:2011:002", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2011:002\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.850156\");\n script_version(\"2019-10-07T14:34:48+0000\");\n script_tag(name:\"last_modification\", value:\"2019-10-07 14:34:48 +0000 (Mon, 07 Oct 2019)\");\n script_tag(name:\"creation_date\", value:\"2011-01-11 16:07:49 +0100 (Tue, 11 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"SUSE-SA\", value:\"2011-002\");\n script_cve_id(\"CVE-2010-3067\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-3861\", \"CVE-2010-3865\", \"CVE-2010-3874\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4082\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4162\", \"CVE-2010-4163\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4175\", \"CVE-2010-4258\");\n script_name(\"SuSE Update for kernel SUSE-SA:2011:002\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\", re:\"ssh/login/release=openSUSE11\\.2\");\n script_tag(name:\"impact\", value:\"potential local privilege escalation\");\n script_tag(name:\"affected\", value:\"kernel on openSUSE 11.2\");\n script_tag(name:\"insight\", value:\"This update of the openSUSE 11.2 kernel fixes various bugs\n and lots of security issues.\n\n The following security issues have been fixed:\n CVE-2010-4258: A local attacker could use a Oops (kernel crash) caused\n by other flaws to write a 0 byte to a attacker controlled address in the\n kernel. This could lead to privilege escalation together with other issues.\n\n CVE-2010-4160: A overflow in sendto() and recvfrom() routines was fixed\n that could be used by local attackers to potentially crash the kernel\n using some socket families like L2TP.\n\n CVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\n could lead to memory corruption in the GDTH driver.\n\n CVE-2010-4165: The do_tcp_setsockopt function in net/ipv4/tcp.c in the\n Linux kernel did not properly restrict TCP_MAXSEG (aka MSS) values, which\n allows local users to cause a denial of service (OOPS) via a setsockopt\n call that specifies a small value, leading to a divide-by-zero error or\n incorrect use of a signed integer.\n\n CVE-2010-4164: A remote (or local) attacker communicating over X.25\n could cause a kernel panic by attempting to negotiate malformed\n facilities.\n\n CVE-2010-4175: A local attacker could cause memory overruns in the RDS\n protocol stack, potentially crashing the kernel. So far it is considered\n not to be exploitable.\n\n CVE-2010-3874: A minor heap overflow in the CAN network module was fixed.\n Due to nature of the memory allocator it is likely not exploitable.\n\n CVE-2010-3874: A minor heap overflow in the CAN network module was fixed.\n Due to nature of the memory allocator it is likely not exploitable.\n\n CVE-2010-4158: A memory information leak in Berkeley packet filter rules\n allowed local attackers to read uninitialized memory of the kernel stack.\n\n CVE-2010-4162: A local denial of service in the blockdevice layer was fixed.\n\n CVE-2010-4163: By submitting certain I/O requests with 0 length, a local\n user could have caused a kernel panic.\n\n CVE-2010-3861: The ethtool_get_rxnfc function in net/core/ethtool.c\n in the Linux kernel did not initialize a certain block of heap memory,\n which allowed local users to obtain potentially sensitive information via\n an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt value.\n\n CVE-2010-3442: Multiple integer overflows in the snd_ctl_new function\n in sound/core/control.c in the Linux kernel allowed local users to\n cause a denial of service (heap memory corruption) or possibly have\n unspecified other impact via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or\n (2) SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl ca ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\nres = \"\";\n\nif(release == \"openSUSE11.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-devel\", rpm:\"kernel-default-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop\", rpm:\"kernel-desktop~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-base\", rpm:\"kernel-desktop-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-devel\", rpm:\"kernel-desktop-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae\", rpm:\"kernel-pae~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-base\", rpm:\"kernel-pae-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-devel\", rpm:\"kernel-pae-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace\", rpm:\"kernel-trace~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base\", rpm:\"kernel-trace-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-devel\", rpm:\"kernel-trace-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-base\", rpm:\"kernel-vanilla-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-devel\", rpm:\"kernel-vanilla-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-base\", rpm:\"kernel-xen-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-default\", rpm:\"preload-kmp-default~1.1_2.6.31.14_0.6~6.9.39\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-desktop\", rpm:\"preload-kmp-desktop~1.1_2.6.31.14_0.6~6.9.39\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2017-12-12T11:18:45", "bulletinFamily": "scanner", "description": "Check for the Version of kernel", "modified": "2017-12-08T00:00:00", "published": "2011-01-11T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=850156", "id": "OPENVAS:850156", "title": "SuSE Update for kernel SUSE-SA:2011:002", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2011:002\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"This update of the openSUSE 11.2 kernel fixes various bugs\n and lots of security issues.\n\n Following security issues have been fixed:\n CVE-2010-4258: A local attacker could use a Oops (kernel crash) caused\n by other flaws to write a 0 byte to a attacker controlled address in the\n kernel. This could lead to privilege escalation together with other issues.\n\n CVE-2010-4160: A overflow in sendto() and recvfrom() routines was fixed\n that could be used by local attackers to potentially crash the kernel\n using some socket families like L2TP.\n\n CVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\n could lead to memory corruption in the GDTH driver.\n\n CVE-2010-4165: The do_tcp_setsockopt function in net/ipv4/tcp.c in the\n Linux kernel did not properly restrict TCP_MAXSEG (aka MSS) values, which\n allows local users to cause a denial of service (OOPS) via a setsockopt\n call that specifies a small value, leading to a divide-by-zero error or\n incorrect use of a signed integer.\n\n CVE-2010-4164: A remote (or local) attacker communicating over X.25\n could cause a kernel panic by attempting to negotiate malformed\n facilities.\n\n CVE-2010-4175: A local attacker could cause memory overruns in the RDS\n protocol stack, potentially crashing the kernel. So far it is considered\n not to be exploitable.\n\n CVE-2010-3874: A minor heap overflow in the CAN network module was fixed.\n Due to nature of the memory allocator it is likely not exploitable.\n\n CVE-2010-3874: A minor heap overflow in the CAN network module was fixed.\n Due to nature of the memory allocator it is likely not exploitable.\n\n CVE-2010-4158: A memory information leak in Berkeley packet filter rules\n allowed local attackers to read uninitialized memory of the kernel stack.\n\n CVE-2010-4162: A local denial of service in the blockdevice layer was fixed.\n\n CVE-2010-4163: By submitting certain I/O requests with 0 length, a local\n user could have caused a kernel panic.\n\n CVE-2010-3861: The ethtool_get_rxnfc function in net/core/ethtool.c\n in the Linux kernel did not initialize a certain block of heap memory,\n which allowed local users to obtain potentially sensitive information via\n an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt value.\n\n CVE-2010-3442: Multiple integer overflows in the snd_ctl_new function\n in sound/core/control.c in the Linux kernel allowed local users to\n cause a denial of service (heap memory corruption) or possibly have\n unspecified other impact via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or\n (2) SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl ca ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_impact = \"potential local privilege escalation\";\ntag_affected = \"kernel on openSUSE 11.2\";\n\n\nif(description)\n{\n script_id(850156);\n script_version(\"$Revision: 8041 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-08 08:28:21 +0100 (Fri, 08 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-11 16:07:49 +0100 (Tue, 11 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2011-002\");\n script_cve_id(\"CVE-2010-3067\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-3861\", \"CVE-2010-3865\", \"CVE-2010-3874\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4082\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4162\", \"CVE-2010-4163\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4175\", \"CVE-2010-4258\");\n script_name(\"SuSE Update for kernel SUSE-SA:2011:002\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSE11.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-devel\", rpm:\"kernel-default-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop\", rpm:\"kernel-desktop~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-base\", rpm:\"kernel-desktop-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-devel\", rpm:\"kernel-desktop-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae\", rpm:\"kernel-pae~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-base\", rpm:\"kernel-pae-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-devel\", rpm:\"kernel-pae-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace\", rpm:\"kernel-trace~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base\", rpm:\"kernel-trace-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-devel\", rpm:\"kernel-trace-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-base\", rpm:\"kernel-vanilla-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-devel\", rpm:\"kernel-vanilla-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-base\", rpm:\"kernel-xen-base~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.31.14~0.6.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-default\", rpm:\"preload-kmp-default~1.1_2.6.31.14_0.6~6.9.39\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-desktop\", rpm:\"preload-kmp-desktop~1.1_2.6.31.14_0.6~6.9.39\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:55:57", "bulletinFamily": "scanner", "description": "Check for the Version of kernel", "modified": "2017-07-10T00:00:00", "published": "2011-01-31T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=880459", "id": "OPENVAS:880459", "title": "CentOS Update for kernel CESA-2011:0162 centos4 i386", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2011:0162 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n \n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n \n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to "/dev/gdth" on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n \n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n \n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n \n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n \n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242; Vegard\n Nossum for reporting CVE-2010-4249; Vasiliy Kulikov for reporting\n CVE-2010-3876; Kees Cook for reporting CVE-2010-4072; and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n \n This update also fixes the following bugs:\n \n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n \n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. This caused problems with the filtering code and frames were\n getting dropped before they were received by list ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"kernel on CentOS 4\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-January/017245.html\");\n script_id(880459);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-31 15:15:14 +0100 (Mon, 31 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:0162\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_name(\"CentOS Update for kernel CESA-2011:0162 centos4 i386\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem\", rpm:\"kernel-hugemem~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem-devel\", rpm:\"kernel-hugemem-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-27T10:55:18", "bulletinFamily": "scanner", "description": "Check for the Version of kernel", "modified": "2017-07-12T00:00:00", "published": "2011-01-21T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=870380", "id": "OPENVAS:870380", "title": "RedHat Update for kernel RHSA-2011:0162-01", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for kernel RHSA-2011:0162-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n \n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n \n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to "/dev/gdth" on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n \n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n \n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n \n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n \n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242; Vegard\n Nossum for reporting CVE-2010-4249; Vasiliy Kulikov for reporting\n CVE-2010-3876; Kees Cook for reporting CVE-2010-4072; and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n \n This update also fixes the following bugs:\n \n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n \n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. T ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"kernel on Red Hat Enterprise Linux AS version 4,\n Red Hat Enterprise Linux ES version 4,\n Red Hat Enterprise Linux WS version 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-January/msg00015.html\");\n script_id(870380);\n script_version(\"$Revision: 6685 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:44:46 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-21 14:59:01 +0100 (Fri, 21 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"RHSA\", value: \"2011:0162-01\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_name(\"RedHat Update for kernel RHSA-2011:0162-01\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem\", rpm:\"kernel-hugemem~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem-devel\", rpm:\"kernel-hugemem-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp\", rpm:\"kernel-largesmp~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp-devel\", rpm:\"kernel-largesmp-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-11T11:07:33", "bulletinFamily": "scanner", "description": "Check for the Version of kernel", "modified": "2018-01-10T00:00:00", "published": "2012-07-30T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881399", "id": "OPENVAS:881399", "title": "CentOS Update for kernel CESA-2011:0162 centos4 x86_64", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2011:0162 centos4 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n \n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n \n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to "/dev/gdth" on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n \n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n \n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n \n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n \n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242; Vegard\n Nossum for reporting CVE-2010-4249; Vasiliy Kulikov for reporting\n CVE-2010-3876; Kees Cook for reporting CVE-2010-4072; and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n \n This update also fixes the following bugs:\n \n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n \n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. This caused problems with the filtering code and frames were\n getting dropped before they were received by list ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"kernel on CentOS 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-January/017246.html\");\n script_id(881399);\n script_version(\"$Revision: 8352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-10 08:01:57 +0100 (Wed, 10 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:44:54 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\",\n \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\",\n \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:0162\");\n script_name(\"CentOS Update for kernel CESA-2011:0162 centos4 x86_64\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp\", rpm:\"kernel-largesmp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp-devel\", rpm:\"kernel-largesmp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:38:35", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2012-07-30T00:00:00", "id": "OPENVAS:1361412562310881399", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881399", "title": "CentOS Update for kernel CESA-2011:0162 centos4 x86_64", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2011:0162 centos4 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2011-January/017246.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881399\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:44:54 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\",\n \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\",\n \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name:\"CESA\", value:\"2011:0162\");\n script_name(\"CentOS Update for kernel CESA-2011:0162 centos4 x86_64\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS4\");\n script_tag(name:\"affected\", value:\"kernel on CentOS 4\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"insight\", value:\"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n\n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n\n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to '/dev/gdth' on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n\n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n\n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n\n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n\n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242, Vegard\n Nossum for reporting CVE-2010-4249, Vasiliy Kulikov for reporting\n CVE-2010-3876, Kees Cook for reporting CVE-2010-4072, and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n\n This update also fixes the following bugs:\n\n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n\n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. This caused problems with the filtering code and frames were\n getting dropped before they were received by list ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp\", rpm:\"kernel-largesmp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp-devel\", rpm:\"kernel-largesmp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:39:26", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2011-01-31T00:00:00", "id": "OPENVAS:1361412562310880459", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310880459", "title": "CentOS Update for kernel CESA-2011:0162 centos4 i386", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2011:0162 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2011-January/017245.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.880459\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-31 15:15:14 +0100 (Mon, 31 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name:\"CESA\", value:\"2011:0162\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_name(\"CentOS Update for kernel CESA-2011:0162 centos4 i386\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS4\");\n script_tag(name:\"affected\", value:\"kernel on CentOS 4\");\n script_tag(name:\"insight\", value:\"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n\n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n\n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to '/dev/gdth' on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n\n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n\n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n\n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n\n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242, Vegard\n Nossum for reporting CVE-2010-4249, Vasiliy Kulikov for reporting\n CVE-2010-3876, Kees Cook for reporting CVE-2010-4072, and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n\n This update also fixes the following bugs:\n\n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n\n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. This caused problems with the filtering code and frames were\n getting dropped before they were received by list ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem\", rpm:\"kernel-hugemem~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem-devel\", rpm:\"kernel-hugemem-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2017-12-12T11:18:45", "bulletinFamily": "scanner", "description": "Check for the Version of kernel", "modified": "2017-12-08T00:00:00", "published": "2011-02-16T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=850159", "id": "OPENVAS:850159", "title": "SuSE Update for kernel SUSE-SA:2011:008", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2011:008\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"This patch updates the SUSE Linux Enterprise Server 9 kernel to fix\n various security issues and some bugs.\n\n Following security issues were fixed:\n CVE-2010-4242: The hci_uart_tty_open function in the HCI UART driver\n (drivers/bluetooth/hci_ldisc.c) in the Linux kernel did not verify\n whether the tty has a write operation, which allowed local users\n to cause a denial of service (NULL pointer dereference) via vectors\n related to the Bluetooth driver.\n\n CVE-2010-4527: The load_mixer_volumes function in sound/oss/soundcard.c\n in the OSS sound subsystem in the Linux kernel incorrectly expected\n that a certain name field ends with a '\\0' character, which allowed\n local users to conduct buffer overflow attacks and gain privileges,\n or possibly obtain sensitive information from kernel memory, via a\n SOUND_MIXER_SETLEVELS ioctl call.\n\n CVE-2010-4529: Integer underflow in the irda_getsockopt function in\n net/irda/af_irda.c in the Linux kernel on platforms other than x86\n allowed local users to obtain potentially sensitive information from\n kernel heap memory via an IRLMP_ENUMDEVICES getsockopt call.\n\n CVE-2010-4342: The aun_incoming function in net/econet/af_econet.c in\n the Linux kernel, when Econet is enabled, allowed remote attackers\n to cause a denial of service (NULL pointer dereference and OOPS)\n by sending an Acorn Universal Networking (AUN) packet over UDP.\n\n CVE-2010-2946: fs/jfs/xattr.c in the Linux kernel did not properly\n handle a certain legacy format for storage of extended attributes,\n which might have allowed local users by bypass intended xattr namespace\n restrictions via an "os2." substring at the beginning of a name.\n\n CVE-2010-3848: Stack-based buffer overflow in the econet_sendmsg\n function in net/econet/af_econet.c in the Linux kernel, when an\n econet address is configured, allowed local users to gain privileges\n by providing a large number of iovec structures.\n\n CVE-2010-3849: The econet_sendmsg function in net/econet/af_econet.c\n in the Linux kernel, when an econet address is configured, allowed\n local users to cause a denial of service (NULL pointer dereference\n and OOPS) via a sendmsg call that specifies a NULL value for the\n remote address field.\n\n CVE-2010-3850: The ec_dev_ioctl function in net/econet/af_econet.c\n in the Linux kernel does not require the CAP_NET_ADMIN capability,\n which allowed local users to bypass intended access restrictions and\n configure econet addresses via an SIOCSIFADDR ioctl call.\n\n CVE-2010-4258: The do_exit function in kernel/exit.c in the Linux\n ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_impact = \"local privilege escalation, remote denial of service\";\ntag_affected = \"kernel on SUSE SLES 9\";\n\n\nif(description)\n{\n script_id(850159);\n script_version(\"$Revision: 8041 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-08 08:28:21 +0100 (Fri, 08 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-02-16 14:19:17 +0100 (Wed, 16 Feb 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2011-008\");\n script_cve_id(\"CVE-2010-2946\", \"CVE-2010-3067\", \"CVE-2010-3310\", \"CVE-2010-3442\", \"CVE-2010-3848\", \"CVE-2010-3849\", \"CVE-2010-3850\", \"CVE-2010-3873\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4081\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4164\", \"CVE-2010-4242\", \"CVE-2010-4258\", \"CVE-2010-4342\", \"CVE-2010-4527\", \"CVE-2010-4529\");\n script_name(\"SuSE Update for kernel SUSE-SA:2011:008\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"SLES9.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.5~7.325\", rls:\"SLES9.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.5~7.325\", rls:\"SLES9.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source\", rpm:\"kernel-source~2.6.5~7.325\", rls:\"SLES9.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.5~7.325\", rls:\"SLES9.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.5~7.325\", rls:\"SLES9.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-kmp\", rpm:\"xen-kmp~3.0.4_2.6.5_7.325~0.2\", rls:\"SLES9.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2020-04-01T02:44:22", "bulletinFamily": "scanner", "description": "The openSUSE 11.3 kernel was updated to fix various bugs and security\nissues.\n\nFollowing security issues have been fixed: CVE-2010-4347: A local user\ncould inject ACPI code into the kernel via the world-writable\n", "modified": "2020-04-02T00:00:00", "id": "SUSE_11_3_KERNEL-101215.NASL", "href": "https://www.tenable.com/plugins/nessus/75553", "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update kernel-3709.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(75553);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2019/10/25 13:36:39\");\n\n script_cve_id(\"CVE-2010-0435\", \"CVE-2010-3067\", \"CVE-2010-3432\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-3861\", \"CVE-2010-3865\", \"CVE-2010-3874\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4082\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4162\", \"CVE-2010-4163\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4169\", \"CVE-2010-4175\", \"CVE-2010-4258\", \"CVE-2010-4347\");\n\n script_name(english:\"openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1)\");\n script_summary(english:\"Check for the kernel-3709 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The openSUSE 11.3 kernel was updated to fix various bugs and security\nissues.\n\nFollowing security issues have been fixed: CVE-2010-4347: A local user\ncould inject ACPI code into the kernel via the world-writable\n'custom_debug' file, allowing local privilege escalation.\n\nCVE-2010-4258: A local attacker could use a Oops (kernel crash) caused\nby other flaws to write a 0 byte to a attacker controlled address in\nthe kernel. This could lead to privilege escalation together with\nother issues.\n\nCVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\ncould lead to memory corruption in the GDTH driver.\n\nCVE-2010-4165: The do_tcp_setsockopt function in net/ipv4/tcp.c in the\nLinux kernel did not properly restrict TCP_MAXSEG (aka MSS) values,\nwhich allows local users to cause a denial of service (OOPS) via a\nsetsockopt call that specifies a small value, leading to a\ndivide-by-zero error or incorrect use of a signed integer.\n\nCVE-2010-4164: A remote (or local) attacker communicating over X.25\ncould cause a kernel panic by attempting to negotiate malformed\nfacilities.\n\nCVE-2010-4175: A local attacker could cause memory overruns in the RDS\nprotocol stack, potentially crashing the kernel. So far it is\nconsidered not to be exploitable.\n\nCVE-2010-4169: Use-after-free vulnerability in mm/mprotect.c in the\nLinux kernel allwed local users to cause a denial of service via\nvectors involving an mprotect system call.\n\nCVE-2010-3874: A minor heap overflow in the CAN network module was\nfixed. Due to nature of the memory allocator it is likely not\nexploitable.\n\nCVE-2010-4158: A memory information leak in berkely packet filter\nrules allowed local attackers to read uninitialized memory of the\nkernel stack.\n\nCVE-2010-4162: A local denial of service in the blockdevice layer was\nfixed.\n\nCVE-2010-4163: By submitting certain I/O requests with 0 length, a\nlocal user could have caused a kernel panic.\n\nCVE-2010-0435: The Hypervisor in KVM 83, when the Intel VT-x extension\nis enabled, allows guest OS users to cause a denial of service (NULL\npointer dereference and host OS crash) via vectors related to\ninstruction emulation.\n\nCVE-2010-3861: The ethtool_get_rxnfc function in net/core/ethtool.c in\nthe Linux kernel did not initialize a certain block of heap memory,\nwhich allowed local users to obtain potentially sensitive information\nvia an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt\nvalue.\n\nCVE-2010-3442: Multiple integer overflows in the snd_ctl_new function\nin sound/core/control.c in the Linux kernel allowed local users to\ncause a denial of service (heap memory corruption) or possibly have\nunspecified other impact via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or\n(2) SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call.\n\nCVE-2010-3437: A range checking overflow in pktcdvd ioctl was fixed.\n\nCVE-2010-4078: The sisfb_ioctl function in\ndrivers/video/sis/sis_main.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\nan FBIOGET_VBLANK ioctl call.\n\nCVE-2010-4080: The snd_hdsp_hwdep_ioctl function in\nsound/pci/rme9652/hdsp.c in the Linux kernel did not initialize a\ncertain structure, which allowed local users to obtain potentially\nsensitive information from kernel stack memory via an\nSNDRV_HDSP_IOCTL_GET_CONFIG_INFO ioctl call.\n\nCVE-2010-4081: The snd_hdspm_hwdep_ioctl function in\nsound/pci/rme9652/hdspm.c in the Linux kernel did not initialize a\ncertain structure, which allowed local users to obtain potentially\nsensitive information from kernel stack memory via an\nSNDRV_HDSPM_IOCTL_GET_CONFIG_INFO ioctl call.\n\nCVE-2010-4082: The viafb_ioctl_get_viafb_info function in\ndrivers/video/via/ioctl.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\na VIAFB_GET_INFO ioctl call.\n\nCVE-2010-4073: The ipc subsystem in the Linux kernel did not\ninitialize certain structures, which allowed local users to obtain\npotentially sensitive information from kernel stack memory via vectors\nrelated to the (1) compat_sys_semctl, (2) compat_sys_msgctl, and (3)\ncompat_sys_shmctl functions in ipc/compat.c; and the (4)\ncompat_sys_mq_open and (5) compat_sys_mq_getsetattr functions in\nipc/compat_mq.c.\n\nCVE-2010-4072: The copy_shmid_to_user function in ipc/shm.c in the\nLinux kernel did not initialize a certain structure, which allowed\nlocal users to obtain potentially sensitive information from kernel\nstack memory via vectors related to the shmctl system call and the\n'old shm interface.'\n\nCVE-2010-4083: The copy_semid_to_user function in ipc/sem.c in the\nLinux kernel did not initialize a certain structure, which allowed\nlocal users to obtain potentially sensitive information from kernel\nstack memory via a (1) IPC_INFO, (2) SEM_INFO, (3) IPC_STAT, or (4)\nSEM_STAT command in a semctl system call.\n\nCVE-2010-3432: The sctp_packet_config function in net/sctp/output.c in\nthe Linux kernel performed extraneous initializations of packet data\nstructures, which allowed remote attackers to cause a denial of\nservice (panic) via a certain sequence of SCTP traffic.\n\nCVE-2010-3067: Integer overflow in the do_io_submit function in\nfs/aio.c in the Linux kernel allowed local users to cause a denial of\nservice or possibly have unspecified other impact via crafted use of\nthe io_submit system call.\n\nCVE-2010-3865: A iovec integer overflow in RDS sockets was fixed which\ncould lead to local attackers gaining kernel privileges.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=547887\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=584028\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=628591\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=629901\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=629908\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=641811\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=641983\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642043\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642311\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642312\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642484\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642486\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=645659\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=649187\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=650128\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651218\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652563\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652939\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652945\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653258\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653260\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653930\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=654581\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655215\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655839\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657350\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=659076\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2011-01/msg00002.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-ec2-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-ec2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-ec2-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vmi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vmi-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vmi-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:preload-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:preload-kmp-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/12/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.3\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-debug-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-debug-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-debug-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-default-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-default-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-default-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-desktop-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-desktop-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-desktop-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-ec2-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-ec2-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-ec2-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-ec2-extra-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-pae-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-pae-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-pae-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-source-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-source-vanilla-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-syms-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-trace-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-trace-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-trace-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-vanilla-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-vanilla-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-vanilla-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-vmi-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-vmi-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-vmi-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-xen-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-xen-base-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"kernel-xen-devel-2.6.34.7-0.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"preload-kmp-default-1.1_k2.6.34.7_0.7-19.1.11\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"preload-kmp-desktop-1.1_k2.6.34.7_0.7-19.1.11\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-01T02:44:16", "bulletinFamily": "scanner", "description": "This update of the openSUSE 11.2 kernel fixes various bugs and lots of\nsecurity issues.\n\nFollowing security issues have been fixed: CVE-2010-4258: A local\nattacker could use a Oops (kernel crash) caused by other flaws to\nwrite a 0 byte to a attacker controlled address in the kernel. This\ncould lead to privilege escalation together with other issues.\n\nCVE-2010-4160: A overflow in sendto() and recvfrom() routines was\nfixed that could be used by local attackers to potentially crash the\nkernel using some socket families like L2TP.\n\nCVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\ncould lead to memory corruption in the GDTH driver.\n\nCVE-2010-4165: The do_tcp_setsockopt function in net/ipv4/tcp.c in the\nLinux kernel did not properly restrict TCP_MAXSEG (aka MSS) values,\nwhich allows local users to cause a denial of service (OOPS) via a\nsetsockopt call that specifies a small value, leading to a\ndivide-by-zero error or incorrect use of a signed integer.\n\nCVE-2010-4164: A remote (or local) attacker communicating over X.25\ncould cause a kernel panic by attempting to negotiate malformed\nfacilities.\n\nCVE-2010-4175: A local attacker could cause memory overruns in the RDS\nprotocol stack, potentially crashing the kernel. So far it is\nconsidered not to be exploitable.\n\nCVE-2010-3874: A minor heap overflow in the CAN network module was\nfixed. Due to nature of the memory allocator it is likely not\nexploitable.\n\nCVE-2010-3874: A minor heap overflow in the CAN network module was\nfixed. Due to nature of the memory allocator it is likely not\nexploitable.\n\nCVE-2010-4158: A memory information leak in berkely packet filter\nrules allowed local attackers to read uninitialized memory of the\nkernel stack.\n\nCVE-2010-4162: A local denial of service in the blockdevice layer was\nfixed.\n\nCVE-2010-4163: By submitting certain I/O requests with 0 length, a\nlocal user could have caused a kernel panic.\n\nCVE-2010-3861: The ethtool_get_rxnfc function in net/core/ethtool.c in\nthe Linux kernel did not initialize a certain block of heap memory,\nwhich allowed local users to obtain potentially sensitive information\nvia an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt\nvalue.\n\nCVE-2010-3442: Multiple integer overflows in the snd_ctl_new function\nin sound/core/control.c in the Linux kernel allowed local users to\ncause a denial of service (heap memory corruption) or possibly have\nunspecified other impact via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or\n(2) SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call.\n\nCVE-2010-3437: A range checking overflow in pktcdvd ioctl was fixed.\n\nCVE-2010-4078: The sisfb_ioctl function in\ndrivers/video/sis/sis_main.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\nan FBIOGET_VBLANK ioctl call.\n\nCVE-2010-4080: The snd_hdsp_hwdep_ioctl function in\nsound/pci/rme9652/hdsp.c in the Linux kernel did not initialize a\ncertain structure, which allowed local users to obtain potentially\nsensitive information from kernel stack memory via an\nSNDRV_HDSP_IOCTL_GET_CONFIG_INFO ioctl call.\n\nCVE-2010-4081: The snd_hdspm_hwdep_ioctl function in\nsound/pci/rme9652/hdspm.c in the Linux kernel did not initialize a\ncertain structure, which allowed local users to obtain potentially\nsensitive information from kernel stack memory via an\nSNDRV_HDSPM_IOCTL_GET_CONFIG_INFO ioctl call.\n\nCVE-2010-4082: The viafb_ioctl_get_viafb_info function in\ndrivers/video/via/ioctl.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\na VIAFB_GET_INFO ioctl call.\n\nCVE-2010-3067: Integer overflow in the do_io_submit function in\nfs/aio.c in the Linux kernel allowed local users to cause a denial of\nservice or possibly have unspecified other impact via crafted use of\nthe io_submit system call.\n\nCVE-2010-3865: A iovec integer overflow in RDS sockets was fixed which\ncould lead to local attackers gaining kernel privileges.", "modified": "2020-04-02T00:00:00", "id": "SUSE_11_2_KERNEL-DEBUG-101215.NASL", "href": "https://www.tenable.com/plugins/nessus/53741", "published": "2011-05-05T00:00:00", "title": "openSUSE Security Update : kernel-debug (openSUSE-SU-2011:0003-1)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update kernel-debug-3706.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53741);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/10/25 13:36:38\");\n\n script_cve_id(\"CVE-2010-3067\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-3861\", \"CVE-2010-3865\", \"CVE-2010-3874\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4082\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4162\", \"CVE-2010-4163\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4175\", \"CVE-2010-4258\");\n\n script_name(english:\"openSUSE Security Update : kernel-debug (openSUSE-SU-2011:0003-1)\");\n script_summary(english:\"Check for the kernel-debug-3706 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update of the openSUSE 11.2 kernel fixes various bugs and lots of\nsecurity issues.\n\nFollowing security issues have been fixed: CVE-2010-4258: A local\nattacker could use a Oops (kernel crash) caused by other flaws to\nwrite a 0 byte to a attacker controlled address in the kernel. This\ncould lead to privilege escalation together with other issues.\n\nCVE-2010-4160: A overflow in sendto() and recvfrom() routines was\nfixed that could be used by local attackers to potentially crash the\nkernel using some socket families like L2TP.\n\nCVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\ncould lead to memory corruption in the GDTH driver.\n\nCVE-2010-4165: The do_tcp_setsockopt function in net/ipv4/tcp.c in the\nLinux kernel did not properly restrict TCP_MAXSEG (aka MSS) values,\nwhich allows local users to cause a denial of service (OOPS) via a\nsetsockopt call that specifies a small value, leading to a\ndivide-by-zero error or incorrect use of a signed integer.\n\nCVE-2010-4164: A remote (or local) attacker communicating over X.25\ncould cause a kernel panic by attempting to negotiate malformed\nfacilities.\n\nCVE-2010-4175: A local attacker could cause memory overruns in the RDS\nprotocol stack, potentially crashing the kernel. So far it is\nconsidered not to be exploitable.\n\nCVE-2010-3874: A minor heap overflow in the CAN network module was\nfixed. Due to nature of the memory allocator it is likely not\nexploitable.\n\nCVE-2010-3874: A minor heap overflow in the CAN network module was\nfixed. Due to nature of the memory allocator it is likely not\nexploitable.\n\nCVE-2010-4158: A memory information leak in berkely packet filter\nrules allowed local attackers to read uninitialized memory of the\nkernel stack.\n\nCVE-2010-4162: A local denial of service in the blockdevice layer was\nfixed.\n\nCVE-2010-4163: By submitting certain I/O requests with 0 length, a\nlocal user could have caused a kernel panic.\n\nCVE-2010-3861: The ethtool_get_rxnfc function in net/core/ethtool.c in\nthe Linux kernel did not initialize a certain block of heap memory,\nwhich allowed local users to obtain potentially sensitive information\nvia an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt\nvalue.\n\nCVE-2010-3442: Multiple integer overflows in the snd_ctl_new function\nin sound/core/control.c in the Linux kernel allowed local users to\ncause a denial of service (heap memory corruption) or possibly have\nunspecified other impact via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or\n(2) SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call.\n\nCVE-2010-3437: A range checking overflow in pktcdvd ioctl was fixed.\n\nCVE-2010-4078: The sisfb_ioctl function in\ndrivers/video/sis/sis_main.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\nan FBIOGET_VBLANK ioctl call.\n\nCVE-2010-4080: The snd_hdsp_hwdep_ioctl function in\nsound/pci/rme9652/hdsp.c in the Linux kernel did not initialize a\ncertain structure, which allowed local users to obtain potentially\nsensitive information from kernel stack memory via an\nSNDRV_HDSP_IOCTL_GET_CONFIG_INFO ioctl call.\n\nCVE-2010-4081: The snd_hdspm_hwdep_ioctl function in\nsound/pci/rme9652/hdspm.c in the Linux kernel did not initialize a\ncertain structure, which allowed local users to obtain potentially\nsensitive information from kernel stack memory via an\nSNDRV_HDSPM_IOCTL_GET_CONFIG_INFO ioctl call.\n\nCVE-2010-4082: The viafb_ioctl_get_viafb_info function in\ndrivers/video/via/ioctl.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\na VIAFB_GET_INFO ioctl call.\n\nCVE-2010-3067: Integer overflow in the do_io_submit function in\nfs/aio.c in the Linux kernel allowed local users to cause a denial of\nservice or possibly have unspecified other impact via crafted use of\nthe io_submit system call.\n\nCVE-2010-3865: A iovec integer overflow in RDS sockets was fixed which\ncould lead to local attackers gaining kernel privileges.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642043\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642311\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642484\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642486\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=645659\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=649187\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=650128\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651218\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652563\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652939\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652945\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653258\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653260\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=654581\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657350\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2011-01/msg00001.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel-debug packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:preload-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:preload-kmp-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/12/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/05/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-debug-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-debug-base-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-debug-devel-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-default-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-default-base-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-default-devel-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-desktop-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-desktop-base-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-desktop-devel-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-pae-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-pae-base-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-pae-devel-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-source-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-source-vanilla-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-syms-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-trace-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-trace-base-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-trace-devel-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-vanilla-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-vanilla-base-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-vanilla-devel-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-xen-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-xen-base-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-xen-devel-2.6.31.14-0.6.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"preload-kmp-default-1.1_2.6.31.14_0.6-6.9.39\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"preload-kmp-desktop-1.1_2.6.31.14_0.6-6.9.39\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel-debug / kernel-debug-base / kernel-debug-devel / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-01T02:44:48", "bulletinFamily": "scanner", "description": "The SUSE Linux Enterprise 11 Service Pack 1 kernel was updated to\n2.6.32.27 and fixes various bugs and security issues.\n\nThe following security issues were fixed :\n\n - A local attacker could use a Oops (kernel crash) caused\n by other flaws to write a 0 byte to a attacker\n controlled address in the kernel. This could lead to\n privilege escalation together with other issues.\n (CVE-2010-4258)\n\n - A overflow in sendto() and recvfrom() routines was fixed\n that could be used by local attackers to potentially\n crash the kernel using some socket families like L2TP.\n (CVE-2010-4160)\n\n - A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\n could lead to memory corruption in the GDTH driver.\n (CVE-2010-4157)\n\n - The do_tcp_setsockopt function in net/ipv4/tcp.c in the\n Linux kernel did not properly restrict TCP_MAXSEG (aka\n MSS) values, which allowed local users to cause a denial\n of service (OOPS) via a setsockopt call that specifies a\n small value, leading to a divide-by-zero error or\n incorrect use of a signed integer. (CVE-2010-4165)\n\n - A remote (or local) attacker communicating over X.25\n could cause a kernel panic by attempting to negotiate\n malformed facilities. (CVE-2010-4164)\n\n - A local attacker could cause memory overruns in the RDS\n protocol stack, potentially crashing the kernel. So far\n it is considered not to be exploitable. (CVE-2010-4175)\n\n - Use-after-free vulnerability in mm/mprotect.c in the\n Linux kernel allwed local users to cause a denial of\n service via vectors involving an mprotect system call.\n (CVE-2010-4169)\n\n - A minor heap overflow in the CAN network module was\n fixed. Due to nature of the memory allocator it is\n likely not exploitable. (CVE-2010-3874)\n\n - A memory information leak in berkely packet filter rules\n allowed local attackers to read uninitialized memory of\n the kernel stack. (CVE-2010-4158)\n\n - A local denial of service in the blockdevice layer was\n fixed. (CVE-2010-4162)\n\n - By submitting certain I/O requests with 0 length, a\n local user could have caused a kernel panic.\n (CVE-2010-4163)\n\n - The ethtool_get_rxnfc function in net/core/ethtool.c in\n the Linux kernel did not initialize a certain block of\n heap memory, which allowed local users to obtain\n potentially sensitive information via an\n ETHTOOL_GRXCLSRLALL ethtool command with a large\n info.rule_cnt value. (CVE-2010-3861)\n\n - arch/x86/kvm/x86.c in the Linux kernel did not\n initialize certain structure members, which allowed\n local users to obtain potentially sensitive information\n from kernel stack memory via read operations on the\n /dev/kvm device. (CVE-2010-3881)\n\n - A range checking overflow in pktcdvd ioctl was fixed.\n (CVE-2010-3437)\n\n - The viafb_ioctl_get_viafb_info function in\n drivers/video/via/ioctl.c in the Linux kernel did not\n properly initialize a certain structure member, which\n allowed local users to obtain potentially sensitive\n information from kernel stack memory via a\n VIAFB_GET_INFO ioctl call. (CVE-2010-4082)\n\n - The ipc subsystem in the Linux kernel did not initialize\n certain structures, which allowed local users to obtain\n potentially sensitive information from kernel stack\n memory via vectors related to the (1) compat_sys_semctl,\n (2) compat_sys_msgctl, and (3) compat_sys_shmctl\n functions in ipc/compat.c; and the (4)\n compat_sys_mq_open and (5) compat_sys_mq_getsetattr\n functions in ipc/compat_mq.c. (CVE-2010-4073)\n\n - The copy_shmid_to_user function in ipc/shm.c in the\n Linux kernel did not initialize a certain structure,\n which allowed local users to obtain potentially\n sensitive information from kernel stack memory via\n vectors related to the shmctl system call and the ", "modified": "2020-04-02T00:00:00", "id": "SUSE_11_KERNEL-110104.NASL", "href": "https://www.tenable.com/plugins/nessus/51614", "published": "2011-01-21T00:00:00", "title": "SuSE 11.1 Security Update : Linux kernel (SAT Patch Numbers 3760 / 3762 / 3763)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51614);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2019/10/25 13:36:42\");\n\n script_cve_id(\"CVE-2010-3437\", \"CVE-2010-3861\", \"CVE-2010-3874\", \"CVE-2010-3881\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4082\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4162\", \"CVE-2010-4163\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4169\", \"CVE-2010-4175\", \"CVE-2010-4258\");\n\n script_name(english:\"SuSE 11.1 Security Update : Linux kernel (SAT Patch Numbers 3760 / 3762 / 3763)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The SUSE Linux Enterprise 11 Service Pack 1 kernel was updated to\n2.6.32.27 and fixes various bugs and security issues.\n\nThe following security issues were fixed :\n\n - A local attacker could use a Oops (kernel crash) caused\n by other flaws to write a 0 byte to a attacker\n controlled address in the kernel. This could lead to\n privilege escalation together with other issues.\n (CVE-2010-4258)\n\n - A overflow in sendto() and recvfrom() routines was fixed\n that could be used by local attackers to potentially\n crash the kernel using some socket families like L2TP.\n (CVE-2010-4160)\n\n - A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\n could lead to memory corruption in the GDTH driver.\n (CVE-2010-4157)\n\n - The do_tcp_setsockopt function in net/ipv4/tcp.c in the\n Linux kernel did not properly restrict TCP_MAXSEG (aka\n MSS) values, which allowed local users to cause a denial\n of service (OOPS) via a setsockopt call that specifies a\n small value, leading to a divide-by-zero error or\n incorrect use of a signed integer. (CVE-2010-4165)\n\n - A remote (or local) attacker communicating over X.25\n could cause a kernel panic by attempting to negotiate\n malformed facilities. (CVE-2010-4164)\n\n - A local attacker could cause memory overruns in the RDS\n protocol stack, potentially crashing the kernel. So far\n it is considered not to be exploitable. (CVE-2010-4175)\n\n - Use-after-free vulnerability in mm/mprotect.c in the\n Linux kernel allwed local users to cause a denial of\n service via vectors involving an mprotect system call.\n (CVE-2010-4169)\n\n - A minor heap overflow in the CAN network module was\n fixed. Due to nature of the memory allocator it is\n likely not exploitable. (CVE-2010-3874)\n\n - A memory information leak in berkely packet filter rules\n allowed local attackers to read uninitialized memory of\n the kernel stack. (CVE-2010-4158)\n\n - A local denial of service in the blockdevice layer was\n fixed. (CVE-2010-4162)\n\n - By submitting certain I/O requests with 0 length, a\n local user could have caused a kernel panic.\n (CVE-2010-4163)\n\n - The ethtool_get_rxnfc function in net/core/ethtool.c in\n the Linux kernel did not initialize a certain block of\n heap memory, which allowed local users to obtain\n potentially sensitive information via an\n ETHTOOL_GRXCLSRLALL ethtool command with a large\n info.rule_cnt value. (CVE-2010-3861)\n\n - arch/x86/kvm/x86.c in the Linux kernel did not\n initialize certain structure members, which allowed\n local users to obtain potentially sensitive information\n from kernel stack memory via read operations on the\n /dev/kvm device. (CVE-2010-3881)\n\n - A range checking overflow in pktcdvd ioctl was fixed.\n (CVE-2010-3437)\n\n - The viafb_ioctl_get_viafb_info function in\n drivers/video/via/ioctl.c in the Linux kernel did not\n properly initialize a certain structure member, which\n allowed local users to obtain potentially sensitive\n information from kernel stack memory via a\n VIAFB_GET_INFO ioctl call. (CVE-2010-4082)\n\n - The ipc subsystem in the Linux kernel did not initialize\n certain structures, which allowed local users to obtain\n potentially sensitive information from kernel stack\n memory via vectors related to the (1) compat_sys_semctl,\n (2) compat_sys_msgctl, and (3) compat_sys_shmctl\n functions in ipc/compat.c; and the (4)\n compat_sys_mq_open and (5) compat_sys_mq_getsetattr\n functions in ipc/compat_mq.c. (CVE-2010-4073)\n\n - The copy_shmid_to_user function in ipc/shm.c in the\n Linux kernel did not initialize a certain structure,\n which allowed local users to obtain potentially\n sensitive information from kernel stack memory via\n vectors related to the shmctl system call and the 'old\n shm interface.'. (CVE-2010-4072)\n\n - The copy_semid_to_user function in ipc/sem.c in the\n Linux kernel did not initialize a certain structure,\n which allowed local users to obtain potentially\n sensitive information from kernel stack memory via a (1)\n IPC_INFO, (2) SEM_INFO, (3) IPC_STAT, or (4) SEM_STAT\n command in a semctl system call. (CVE-2010-4083)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=595215\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=602838\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=615630\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=628180\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=636672\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=637542\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=638258\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=639803\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=640878\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=641105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=641811\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642043\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642314\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642486\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=643173\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=643477\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=645659\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=646226\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=646542\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=646702\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=646908\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=647567\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=648112\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=648701\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=649187\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=649548\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=650067\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=650185\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=650487\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=650748\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651066\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651218\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651596\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652024\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652293\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652563\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652842\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652939\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652945\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653148\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653258\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653260\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653266\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653800\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653930\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=654150\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=654530\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=654581\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=654701\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=654837\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=654967\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655027\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655278\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=656471\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657324\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657350\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657412\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657415\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657976\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=658464\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=658829\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=659144\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3437.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3861.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3874.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3881.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4072.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4073.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4082.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4083.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4157.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4158.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4160.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4162.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4163.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4164.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4165.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4169.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4175.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4258.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Apply SAT patch number 3760 / 3762 / 3763 as appropriate.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:btrfs-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:btrfs-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:btrfs-kmp-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:ext4dev-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:ext4dev-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:ext4dev-kmp-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:hyper-v-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:hyper-v-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-default-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-default-man\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-desktop-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-ec2-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-pae-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-pae-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-pae-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-trace-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-trace-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-xen-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:kernel-xen-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/01/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/01/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, \"SuSE 11.1\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"btrfs-kmp-default-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"btrfs-kmp-pae-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"btrfs-kmp-xen-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"hyper-v-kmp-default-0_2.6.32.27_0.2-0.8.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"hyper-v-kmp-pae-0_2.6.32.27_0.2-0.8.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-default-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-default-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-default-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-default-extra-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-desktop-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-pae-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-pae-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-pae-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-pae-extra-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-source-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-syms-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-xen-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-xen-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-xen-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"i586\", reference:\"kernel-xen-extra-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"btrfs-kmp-default-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"btrfs-kmp-xen-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"hyper-v-kmp-default-0_2.6.32.27_0.2-0.8.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-default-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-default-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-default-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-default-extra-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-desktop-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-source-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-syms-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-xen-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-xen-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-xen-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:1, cpu:\"x86_64\", reference:\"kernel-xen-extra-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"btrfs-kmp-default-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"ext4dev-kmp-default-0_2.6.32.27_0.2-7.3.29\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"kernel-default-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"kernel-default-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"kernel-default-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"kernel-source-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"kernel-syms-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"kernel-trace-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"kernel-trace-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"kernel-trace-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"btrfs-kmp-pae-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"btrfs-kmp-xen-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"ext4dev-kmp-pae-0_2.6.32.27_0.2-7.3.29\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"ext4dev-kmp-xen-0_2.6.32.27_0.2-7.3.29\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"hyper-v-kmp-default-0_2.6.32.27_0.2-0.8.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"hyper-v-kmp-pae-0_2.6.32.27_0.2-0.8.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"kernel-ec2-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"kernel-ec2-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"kernel-pae-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"kernel-pae-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"kernel-pae-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"kernel-xen-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"kernel-xen-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"i586\", reference:\"kernel-xen-devel-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"s390x\", reference:\"kernel-default-man-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"x86_64\", reference:\"btrfs-kmp-xen-0_2.6.32.27_0.2-0.3.29\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"x86_64\", reference:\"ext4dev-kmp-xen-0_2.6.32.27_0.2-7.3.29\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"x86_64\", reference:\"hyper-v-kmp-default-0_2.6.32.27_0.2-0.8.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"x86_64\", reference:\"kernel-ec2-2.6.32.27-0.2.4\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"x86_64\", reference:\"kernel-ec2-base-2.6.32.27-0.2.4\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"x86_64\", reference:\"kernel-xen-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"x86_64\", reference:\"kernel-xen-base-2.6.32.27-0.2.2\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, cpu:\"x86_64\", reference:\"kernel-xen-devel-2.6.32.27-0.2.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-01T02:44:10", "bulletinFamily": "scanner", "description": "This security update of the openSUSE 11.1 kernel updates the kernel to\n2.6.27.56 and fixes various security issues and other bugs.\n\nFollowing security issues were fixed by this update: CVE-2010-2963: A\nproblem in the compat ioctl handling in video4linux allowed local\nattackers with a video device plugged in to gain privileges on x86_64\nsystems.\n\nCVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\ncould lead to memory corruption in the GDTH driver.\n\nCVE-2010-4164: A remote (or local) attacker communicating over X.25\ncould cause a kernel panic by attempting to negotiate malformed\nfacilities.\n\nCVE-2010-3874: A minor heap overflow in the CAN network module was\nfixed. Due to nature of the memory allocator it is likely not\nexploitable.\n\nCVE-2010-4158: A memory information leak in berkely packet filter\nrules allowed local attackers to read uninitialized memory of the\nkernel stack.\n\nCVE-2010-4162: A local denial of service in the blockdevice layer was\nfixed.\n\nCVE-2010-3437: A range checking overflow in pktcdvd ioctl was fixed.\n\nCVE-2010-4078: The sisfb_ioctl function in\ndrivers/video/sis/sis_main.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\nan FBIOGET_VBLANK ioctl call.\n\nCVE-2010-4082: The viafb_ioctl_get_viafb_info function in\ndrivers/video/via/ioctl.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\na VIAFB_GET_INFO ioctl call.\n\nCVE-2010-4073: The ipc subsystem in the Linux kernel did not\ninitialize certain structures, which allowed local users to obtain\npotentially sensitive information from kernel stack memory via vectors\nrelated to the (1) compat_sys_semctl, (2) compat_sys_msgctl, and (3)\ncompat_sys_shmctl functions in ipc/compat.c; and the (4)\ncompat_sys_mq_open and (5) compat_sys_mq_getsetattr functions in\nipc/compat_mq.c.\n\nCVE-2010-4072: The copy_shmid_to_user function in ipc/shm.c in the\nLinux kernel did not initialize a certain structure, which allowed\nlocal users to obtain potentially sensitive information from kernel\nstack memory via vectors related to the shmctl system call and the\n", "modified": "2020-04-02T00:00:00", "id": "SUSE_11_1_KERNEL-101202.NASL", "href": "https://www.tenable.com/plugins/nessus/53670", "published": "2011-05-05T00:00:00", "title": "openSUSE Security Update : kernel (openSUSE-SU-2010:1047-1)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update kernel-3619.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53670);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2019/10/25 13:36:38\");\n\n script_cve_id(\"CVE-2010-2963\", \"CVE-2010-3067\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-3874\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4082\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4162\", \"CVE-2010-4164\");\n\n script_name(english:\"openSUSE Security Update : kernel (openSUSE-SU-2010:1047-1)\");\n script_summary(english:\"Check for the kernel-3619 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This security update of the openSUSE 11.1 kernel updates the kernel to\n2.6.27.56 and fixes various security issues and other bugs.\n\nFollowing security issues were fixed by this update: CVE-2010-2963: A\nproblem in the compat ioctl handling in video4linux allowed local\nattackers with a video device plugged in to gain privileges on x86_64\nsystems.\n\nCVE-2010-4157: A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\ncould lead to memory corruption in the GDTH driver.\n\nCVE-2010-4164: A remote (or local) attacker communicating over X.25\ncould cause a kernel panic by attempting to negotiate malformed\nfacilities.\n\nCVE-2010-3874: A minor heap overflow in the CAN network module was\nfixed. Due to nature of the memory allocator it is likely not\nexploitable.\n\nCVE-2010-4158: A memory information leak in berkely packet filter\nrules allowed local attackers to read uninitialized memory of the\nkernel stack.\n\nCVE-2010-4162: A local denial of service in the blockdevice layer was\nfixed.\n\nCVE-2010-3437: A range checking overflow in pktcdvd ioctl was fixed.\n\nCVE-2010-4078: The sisfb_ioctl function in\ndrivers/video/sis/sis_main.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\nan FBIOGET_VBLANK ioctl call.\n\nCVE-2010-4082: The viafb_ioctl_get_viafb_info function in\ndrivers/video/via/ioctl.c in the Linux kernel did not properly\ninitialize a certain structure member, which allowed local users to\nobtain potentially sensitive information from kernel stack memory via\na VIAFB_GET_INFO ioctl call.\n\nCVE-2010-4073: The ipc subsystem in the Linux kernel did not\ninitialize certain structures, which allowed local users to obtain\npotentially sensitive information from kernel stack memory via vectors\nrelated to the (1) compat_sys_semctl, (2) compat_sys_msgctl, and (3)\ncompat_sys_shmctl functions in ipc/compat.c; and the (4)\ncompat_sys_mq_open and (5) compat_sys_mq_getsetattr functions in\nipc/compat_mq.c.\n\nCVE-2010-4072: The copy_shmid_to_user function in ipc/shm.c in the\nLinux kernel did not initialize a certain structure, which allowed\nlocal users to obtain potentially sensitive information from kernel\nstack memory via vectors related to the shmctl system call and the\n'old shm interface.'\n\nCVE-2010-4083: The copy_semid_to_user function in ipc/sem.c in the\nLinux kernel did not initialize a certain structure, which allowed\nlocal users to obtain potentially sensitive information from kernel\nstack memory via a (1) IPC_INFO, (2) SEM_INFO, (3) IPC_STAT, or (4)\nSEM_STAT command in a semctl system call.\n\nCVE-2010-3067: Integer overflow in the do_io_submit function in\nfs/aio.c in the Linux kernel allowed local users to cause a denial of\nservice or possibly have unspecified other impact via crafted use of\nthe io_submit system call.\n\nCVE-2010-3442: Multiple integer overflows in the snd_ctl_new function\nin sound/core/control.c in the Linux kernel allowed local users to\ncause a denial of service (heap memory corruption) or possibly have\nunspecified other impact via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or\n(2) SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call.\n\nCVE-2010-4080: The snd_hdsp_hwdep_ioctl function in\nsound/pci/rme9652/hdsp.c in the Linux kernel did not initialize a\ncertain structure, which allowed local users to obtain potentially\nsensitive information from kernel stack memory via an\nSNDRV_HDSP_IOCTL_GET_CONFIG_INFO ioctl call.\n\nCVE-2010-4081: The snd_hdspm_hwdep_ioctl function in\nsound/pci/rme9652/hdspm.c in the Linux kernel did not initialize a\ncertain structure, which allowed local users to obtain potentially\nsensitive information from kernel stack memory via an\nSNDRV_HDSPM_IOCTL_GET_CONFIG_INFO ioctl call.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=595215\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642302\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642311\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642312\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642314\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642484\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=642486\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=643477\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=645659\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=646045\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651218\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651356\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=651626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652563\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652940\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=652945\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653260\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2010-12/msg00026.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/12/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/05/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-debug-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-debug-base-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-debug-extra-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-default-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-default-base-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-default-extra-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-pae-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-pae-base-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-pae-extra-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-source-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-syms-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-trace-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-trace-base-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-trace-extra-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-vanilla-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-xen-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-xen-base-2.6.27.56-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.1\", reference:\"kernel-xen-extra-2.6.27.56-0.1.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel-debug / kernel-debug-base / kernel-debug-extra / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-01T03:08:14", "bulletinFamily": "scanner", "description": "This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes\nseveral security issues and bugs.\n\nThe following security issues were fixed :\n\n - Multiple integer overflows in the snd_ctl_new function\n in sound/core/control.c in the Linux kernel before\n 2.6.36-rc5-next-20100929 allow local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a crafted (1)\n SNDRV_CTL_IOCTL_ELEM_ADD or (2)\n SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call. (CVE-2010-3442)\n\n - Integer signedness error in the pkt_find_dev_from_minor\n function in drivers/block/pktcdvd.c in the Linux kernel\n before 2.6.36-rc6 allows local users to obtain sensitive\n information from kernel memory or cause a denial of\n service (invalid pointer dereference and system crash)\n via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl\n call. (CVE-2010-3437)\n\n - Uninitialized stack memory disclosure in the\n FBIOGET_VBLANK ioctl in the sis and ivtv drivers could\n leak kernel memory to userspace. (CVE-2010-4078)\n\n - Uninitialized stack memory disclosure in the rme9652\n ALSA driver could leak kernel memory to userspace.\n (CVE-2010-4080 / CVE-2010-4081)\n\n - Uninitialized stack memory disclosure in the SystemV IPC\n handling functions could leak kernel memory to\n userspace. (CVE-2010-4073 / CVE-2010-4072 /\n CVE-2010-4083)\n\n - Integer overflow in the do_io_submit function in\n fs/aio.c in the Linux kernel allowed local users to\n cause a denial of service or possibly have unspecified\n other impact via crafted use of the io_submit system\n call. (CVE-2010-3067)\n\n - Multiple integer signedness errors in net/rose/af_rose.c\n in the Linux kernel allowed local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a rose_getname\n function call, related to the rose_bind and rose_connect\n functions. (CVE-2010-3310)\n\n - The xfs_swapext function in fs/xfs/xfs_dfrag.c in the\n Linux kernel did not properly check the file descriptors\n passed to the SWAPEXT ioctl, which allowed local users\n to leverage write access and obtain read access by\n swapping one file into another file. (CVE-2010-2226)\n\n - fs/jfs/xattr.c in the Linux kernel did not properly\n handle a certain legacy format for storage of extended\n attributes, which might have allowed local users by\n bypass intended xattr namespace restrictions via an\n ", "modified": "2020-04-02T00:00:00", "id": "SUSE_KERNEL-7257.NASL", "href": "https://www.tenable.com/plugins/nessus/51158", "published": "2010-12-14T00:00:00", "title": "SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7257)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51158);\n script_version (\"1.8\");\n script_cvs_date(\"Date: 2019/10/25 13:36:40\");\n\n script_cve_id(\"CVE-2010-2226\", \"CVE-2010-2248\", \"CVE-2010-2942\", \"CVE-2010-2946\", \"CVE-2010-3067\", \"CVE-2010-3086\", \"CVE-2010-3310\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4162\", \"CVE-2010-4164\");\n\n script_name(english:\"SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7257)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes\nseveral security issues and bugs.\n\nThe following security issues were fixed :\n\n - Multiple integer overflows in the snd_ctl_new function\n in sound/core/control.c in the Linux kernel before\n 2.6.36-rc5-next-20100929 allow local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a crafted (1)\n SNDRV_CTL_IOCTL_ELEM_ADD or (2)\n SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call. (CVE-2010-3442)\n\n - Integer signedness error in the pkt_find_dev_from_minor\n function in drivers/block/pktcdvd.c in the Linux kernel\n before 2.6.36-rc6 allows local users to obtain sensitive\n information from kernel memory or cause a denial of\n service (invalid pointer dereference and system crash)\n via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl\n call. (CVE-2010-3437)\n\n - Uninitialized stack memory disclosure in the\n FBIOGET_VBLANK ioctl in the sis and ivtv drivers could\n leak kernel memory to userspace. (CVE-2010-4078)\n\n - Uninitialized stack memory disclosure in the rme9652\n ALSA driver could leak kernel memory to userspace.\n (CVE-2010-4080 / CVE-2010-4081)\n\n - Uninitialized stack memory disclosure in the SystemV IPC\n handling functions could leak kernel memory to\n userspace. (CVE-2010-4073 / CVE-2010-4072 /\n CVE-2010-4083)\n\n - Integer overflow in the do_io_submit function in\n fs/aio.c in the Linux kernel allowed local users to\n cause a denial of service or possibly have unspecified\n other impact via crafted use of the io_submit system\n call. (CVE-2010-3067)\n\n - Multiple integer signedness errors in net/rose/af_rose.c\n in the Linux kernel allowed local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a rose_getname\n function call, related to the rose_bind and rose_connect\n functions. (CVE-2010-3310)\n\n - The xfs_swapext function in fs/xfs/xfs_dfrag.c in the\n Linux kernel did not properly check the file descriptors\n passed to the SWAPEXT ioctl, which allowed local users\n to leverage write access and obtain read access by\n swapping one file into another file. (CVE-2010-2226)\n\n - fs/jfs/xattr.c in the Linux kernel did not properly\n handle a certain legacy format for storage of extended\n attributes, which might have allowed local users by\n bypass intended xattr namespace restrictions via an\n 'os2.' substring at the beginning of a name.\n (CVE-2010-2946)\n\n - The actions implementation in the network queueing\n functionality in the Linux kernel did not properly\n initialize certain structure members when performing\n dump operations, which allowed local users to obtain\n potentially sensitive information from kernel memory via\n vectors related to (1) the tcf_gact_dump function in\n net/sched/act_gact.c, (2) the tcf_mirred_dump function\n in net/sched/act_mirred.c, (3) the tcf_nat_dump function\n in net/sched/act_nat.c, (4) the tcf_simp_dump function\n in net/sched/act_simple.c, and (5) the tcf_skbedit_dump\n function in net/sched/act_skbedit.c. (CVE-2010-2942)\n\n - fs/cifs/cifssmb.c in the CIFS implementation in the\n Linux kernel allowed remote attackers to cause a denial\n of service (panic) via an SMB response packet with an\n invalid CountHigh value, as demonstrated by a response\n from an OS/2 server, related to the CIFSSMBWrite and\n CIFSSMBWrite2 functions. (CVE-2010-2248)\n\n - A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\n could lead to memory corruption in the GDTH driver.\n (CVE-2010-4157)\n\n - A remote (or local) attacker communicating over X.25\n could cause a kernel panic by attempting to negotiate\n malformed facilities. (CVE-2010-4164)\n\n - A missing lock prefix in the x86 futex code could be\n used by local attackers to cause a denial of service.\n (CVE-2010-3086)\n\n - A memory information leak in berkely packet filter rules\n allowed local attackers to read uninitialized memory of\n the kernel stack. (CVE-2010-4158)\n\n - A local denial of service in the blockdevice layer was\n fixed. (CVE-2010-4162)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2226.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2248.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2942.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2946.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3067.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3086.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3310.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3437.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3442.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4072.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4073.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4078.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4080.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4081.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4083.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4157.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4158.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4162.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4164.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 7257.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/12/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2019 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"i586\", reference:\"kernel-bigsmp-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"i586\", reference:\"kernel-default-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"i586\", reference:\"kernel-smp-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"i586\", reference:\"kernel-source-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"i586\", reference:\"kernel-syms-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"i586\", reference:\"kernel-xen-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"i586\", reference:\"kernel-xenpae-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-bigsmp-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-debug-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-default-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-kdump-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-kdumppae-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-smp-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-source-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-syms-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-vmi-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-vmipae-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-xen-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"i586\", reference:\"kernel-xenpae-2.6.16.60-0.74.7\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-01T03:08:14", "bulletinFamily": "scanner", "description": "This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes\nseveral security issues and bugs.\n\nThe following security issues were fixed :\n\n - Multiple integer overflows in the snd_ctl_new function\n in sound/core/control.c in the Linux kernel before\n 2.6.36-rc5-next-20100929 allow local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a crafted (1)\n SNDRV_CTL_IOCTL_ELEM_ADD or (2)\n SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call. (CVE-2010-3442)\n\n - Integer signedness error in the pkt_find_dev_from_minor\n function in drivers/block/pktcdvd.c in the Linux kernel\n before 2.6.36-rc6 allows local users to obtain sensitive\n information from kernel memory or cause a denial of\n service (invalid pointer dereference and system crash)\n via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl\n call. (CVE-2010-3437)\n\n - Uninitialized stack memory disclosure in the\n FBIOGET_VBLANK ioctl in the sis and ivtv drivers could\n leak kernel memory to userspace. (CVE-2010-4078)\n\n - Uninitialized stack memory disclosure in the rme9652\n ALSA driver could leak kernel memory to userspace.\n (CVE-2010-4080 / CVE-2010-4081)\n\n - Uninitialized stack memory disclosure in the SystemV IPC\n handling functions could leak kernel memory to\n userspace. (CVE-2010-4073 / CVE-2010-4072 /\n CVE-2010-4083)\n\n - Integer overflow in the do_io_submit function in\n fs/aio.c in the Linux kernel allowed local users to\n cause a denial of service or possibly have unspecified\n other impact via crafted use of the io_submit system\n call. (CVE-2010-3067)\n\n - Multiple integer signedness errors in net/rose/af_rose.c\n in the Linux kernel allowed local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a rose_getname\n function call, related to the rose_bind and rose_connect\n functions. (CVE-2010-3310)\n\n - The xfs_swapext function in fs/xfs/xfs_dfrag.c in the\n Linux kernel did not properly check the file descriptors\n passed to the SWAPEXT ioctl, which allowed local users\n to leverage write access and obtain read access by\n swapping one file into another file. (CVE-2010-2226)\n\n - fs/jfs/xattr.c in the Linux kernel did not properly\n handle a certain legacy format for storage of extended\n attributes, which might have allowed local users by\n bypass intended xattr namespace restrictions via an\n ", "modified": "2020-04-02T00:00:00", "id": "SUSE_KERNEL-7261.NASL", "href": "https://www.tenable.com/plugins/nessus/59153", "published": "2012-05-17T00:00:00", "title": "SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7261)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(59153);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2019/10/25 13:36:40\");\n\n script_cve_id(\"CVE-2010-2226\", \"CVE-2010-2248\", \"CVE-2010-2942\", \"CVE-2010-2946\", \"CVE-2010-3067\", \"CVE-2010-3086\", \"CVE-2010-3310\", \"CVE-2010-3437\", \"CVE-2010-3442\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4078\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4162\", \"CVE-2010-4164\");\n\n script_name(english:\"SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7261)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes\nseveral security issues and bugs.\n\nThe following security issues were fixed :\n\n - Multiple integer overflows in the snd_ctl_new function\n in sound/core/control.c in the Linux kernel before\n 2.6.36-rc5-next-20100929 allow local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a crafted (1)\n SNDRV_CTL_IOCTL_ELEM_ADD or (2)\n SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call. (CVE-2010-3442)\n\n - Integer signedness error in the pkt_find_dev_from_minor\n function in drivers/block/pktcdvd.c in the Linux kernel\n before 2.6.36-rc6 allows local users to obtain sensitive\n information from kernel memory or cause a denial of\n service (invalid pointer dereference and system crash)\n via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl\n call. (CVE-2010-3437)\n\n - Uninitialized stack memory disclosure in the\n FBIOGET_VBLANK ioctl in the sis and ivtv drivers could\n leak kernel memory to userspace. (CVE-2010-4078)\n\n - Uninitialized stack memory disclosure in the rme9652\n ALSA driver could leak kernel memory to userspace.\n (CVE-2010-4080 / CVE-2010-4081)\n\n - Uninitialized stack memory disclosure in the SystemV IPC\n handling functions could leak kernel memory to\n userspace. (CVE-2010-4073 / CVE-2010-4072 /\n CVE-2010-4083)\n\n - Integer overflow in the do_io_submit function in\n fs/aio.c in the Linux kernel allowed local users to\n cause a denial of service or possibly have unspecified\n other impact via crafted use of the io_submit system\n call. (CVE-2010-3067)\n\n - Multiple integer signedness errors in net/rose/af_rose.c\n in the Linux kernel allowed local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a rose_getname\n function call, related to the rose_bind and rose_connect\n functions. (CVE-2010-3310)\n\n - The xfs_swapext function in fs/xfs/xfs_dfrag.c in the\n Linux kernel did not properly check the file descriptors\n passed to the SWAPEXT ioctl, which allowed local users\n to leverage write access and obtain read access by\n swapping one file into another file. (CVE-2010-2226)\n\n - fs/jfs/xattr.c in the Linux kernel did not properly\n handle a certain legacy format for storage of extended\n attributes, which might have allowed local users by\n bypass intended xattr namespace restrictions via an\n 'os2.' substring at the beginning of a name.\n (CVE-2010-2946)\n\n - The actions implementation in the network queueing\n functionality in the Linux kernel did not properly\n initialize certain structure members when performing\n dump operations, which allowed local users to obtain\n potentially sensitive information from kernel memory via\n vectors related to (1) the tcf_gact_dump function in\n net/sched/act_gact.c, (2) the tcf_mirred_dump function\n in net/sched/act_mirred.c, (3) the tcf_nat_dump function\n in net/sched/act_nat.c, (4) the tcf_simp_dump function\n in net/sched/act_simple.c, and (5) the tcf_skbedit_dump\n function in net/sched/act_skbedit.c. (CVE-2010-2942)\n\n - fs/cifs/cifssmb.c in the CIFS implementation in the\n Linux kernel allowed remote attackers to cause a denial\n of service (panic) via an SMB response packet with an\n invalid CountHigh value, as demonstrated by a response\n from an OS/2 server, related to the CIFSSMBWrite and\n CIFSSMBWrite2 functions. (CVE-2010-2248)\n\n - A 32bit vs 64bit integer mismatch in gdth_ioctl_alloc\n could lead to memory corruption in the GDTH driver.\n (CVE-2010-4157)\n\n - A remote (or local) attacker communicating over X.25\n could cause a kernel panic by attempting to negotiate\n malformed facilities. (CVE-2010-4164)\n\n - A missing lock prefix in the x86 futex code could be\n used by local attackers to cause a denial of service.\n (CVE-2010-3086)\n\n - A memory information leak in berkely packet filter rules\n allowed local attackers to read uninitialized memory of\n the kernel stack. (CVE-2010-4158)\n\n - A local denial of service in the blockdevice layer was\n fixed. (CVE-2010-4162)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2226.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2248.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2942.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2946.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3067.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3086.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3310.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3437.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3442.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4072.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4073.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4078.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4080.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4081.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4083.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4157.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4158.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4162.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4164.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 7261.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/05/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"x86_64\", reference:\"kernel-default-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"x86_64\", reference:\"kernel-smp-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"x86_64\", reference:\"kernel-source-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"x86_64\", reference:\"kernel-syms-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:3, cpu:\"x86_64\", reference:\"kernel-xen-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"x86_64\", reference:\"kernel-debug-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"x86_64\", reference:\"kernel-default-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"x86_64\", reference:\"kernel-kdump-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"x86_64\", reference:\"kernel-smp-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"x86_64\", reference:\"kernel-source-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"x86_64\", reference:\"kernel-syms-2.6.16.60-0.74.7\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:3, cpu:\"x86_64\", reference:\"kernel-xen-2.6.16.60-0.74.7\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-01T03:08:43", "bulletinFamily": "scanner", "description": "Gleb Napatov discovered that KVM did not correctly check certain\nprivileged operations. A local attacker with access to a guest kernel\ncould exploit this to crash the host system, leading to a denial of\nservice. (CVE-2010-0435)\n\nDan Rosenberg discovered that the Linux kernel TIPC implementation\ncontained multiple integer signedness errors. A local attacker could\nexploit this to gain root privileges. (CVE-2010-3859)\n\nDan Rosenberg discovered that the Linux kernel X.25 implementation\nincorrectly parsed facilities. A remote attacker could exploit this to\ncrash the kernel, leading to a denial of service. (CVE-2010-3873)\n\nDan Rosenberg discovered that the CAN protocol on 64bit systems did\nnot correctly calculate the size of certain buffers. A local attacker\ncould exploit this to crash the system or possibly execute arbitrary\ncode as the root user. (CVE-2010-3874)\n\nVasiliy Kulikov discovered that kvm did not correctly clear memory. A\nlocal attacker could exploit this to read portions of the kernel\nstack, leading to a loss of privacy. (CVE-2010-3881)\n\nDan Rosenberg discovered that IPC structures were not correctly\ninitialized on 64bit systems. A local attacker could exploit this to\nread kernel stack memory, leading to a loss of privacy.\n(CVE-2010-4073)\n\nDan Rosenberg discovered that the ivtv V4L driver did not correctly\ninitialize certian structures. A local attacker could exploit this to\nread kernel stack memory, leading to a loss of privacy.\n(CVE-2010-4079)\n\nDan Rosenberg discovered that the semctl syscall did not correctly\nclear kernel memory. A local attacker could exploit this to read\nkernel stack memory, leading to a loss of privacy. (CVE-2010-4083)\n\nDan Rosenberg discovered that the socket filters did not correctly\ninitialize structure memory. A local attacker could create malicious\nfilters to read portions of kernel stack memory, leading to a loss of\nprivacy. (CVE-2010-4158)\n\nDan Rosenberg discovered that the Linux kernel L2TP implementation\ncontained multiple integer signedness errors. A local attacker could\nexploit this to to crash the kernel, or possibly gain root privileges.\n(CVE-2010-4160)\n\nDan Rosenberg discovered that certain iovec operations did not\ncalculate page counts correctly. A local attacker could exploit this\nto crash the system, leading to a denial of service. (CVE-2010-4162)\n\nDan Rosenberg discovered multiple flaws in the X.25 facilities\nparsing. If a system was using X.25, a remote attacker could exploit\nthis to crash the system, leading to a denial of service.\n(CVE-2010-4164)\n\nSteve Chen discovered that setsockopt did not correctly check MSS\nvalues. A local attacker could make a specially crafted socket call to\ncrash the system, leading to a denial of service. (CVE-2010-4165)\n\nDave Jones discovered that the mprotect system call did not correctly\nhandle merged VMAs. A local attacker could exploit this to crash the\nsystem, leading to a denial of service. (CVE-2010-4169)\n\nDan Rosenberg discovered that the RDS protocol did not correctly check\nioctl arguments. A local attacker could exploit this to crash the\nsystem, leading to a denial of service. (CVE-2010-4175)\n\nBrad Spengler discovered that the kernel did not correctly account for\nuserspace memory allocations during exec() calls. A local attacker\ncould exploit this to consume all system memory, leading to a denial\nof service. (CVE-2010-4243)\n\nVegard Nossum discovered that memory garbage collection was not\nhandled correctly for active sockets. A local attacker could exploit\nthis to allocate all available kernel memory, leading to a denial of\nservice. (CVE-2010-4249)\n\nIt was discovered that named pipes did not correctly handle certain\nfcntl calls. A local attacker could exploit this to crash the system,\nleading to a denial of service. (CVE-2010-4256)\n\nNelson Elhage discovered that the kernel did not correctly handle\nprocess cleanup after triggering a recoverable kernel bug. If a local\nattacker were able to trigger certain kinds of kernel bugs, they could\ncreate a specially crafted process to gain root privileges.\n(CVE-2010-4258).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "modified": "2020-04-02T00:00:00", "id": "UBUNTU_USN-1054-1.NASL", "href": "https://www.tenable.com/plugins/nessus/51847", "published": "2011-02-02T00:00:00", "title": "Ubuntu 10.04 LTS / 10.10 : linux, linux-ec2 vulnerabilities (USN-1054-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1054-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51847);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2019/09/19 12:54:26\");\n\n script_cve_id(\"CVE-2010-0435\", \"CVE-2010-3859\", \"CVE-2010-3873\", \"CVE-2010-3874\", \"CVE-2010-3881\", \"CVE-2010-4073\", \"CVE-2010-4079\", \"CVE-2010-4083\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4162\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4169\", \"CVE-2010-4175\", \"CVE-2010-4243\", \"CVE-2010-4249\", \"CVE-2010-4256\", \"CVE-2010-4258\");\n script_xref(name:\"USN\", value:\"1054-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS / 10.10 : linux, linux-ec2 vulnerabilities (USN-1054-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Gleb Napatov discovered that KVM did not correctly check certain\nprivileged operations. A local attacker with access to a guest kernel\ncould exploit this to crash the host system, leading to a denial of\nservice. (CVE-2010-0435)\n\nDan Rosenberg discovered that the Linux kernel TIPC implementation\ncontained multiple integer signedness errors. A local attacker could\nexploit this to gain root privileges. (CVE-2010-3859)\n\nDan Rosenberg discovered that the Linux kernel X.25 implementation\nincorrectly parsed facilities. A remote attacker could exploit this to\ncrash the kernel, leading to a denial of service. (CVE-2010-3873)\n\nDan Rosenberg discovered that the CAN protocol on 64bit systems did\nnot correctly calculate the size of certain buffers. A local attacker\ncould exploit this to crash the system or possibly execute arbitrary\ncode as the root user. (CVE-2010-3874)\n\nVasiliy Kulikov discovered that kvm did not correctly clear memory. A\nlocal attacker could exploit this to read portions of the kernel\nstack, leading to a loss of privacy. (CVE-2010-3881)\n\nDan Rosenberg discovered that IPC structures were not correctly\ninitialized on 64bit systems. A local attacker could exploit this to\nread kernel stack memory, leading to a loss of privacy.\n(CVE-2010-4073)\n\nDan Rosenberg discovered that the ivtv V4L driver did not correctly\ninitialize certian structures. A local attacker could exploit this to\nread kernel stack memory, leading to a loss of privacy.\n(CVE-2010-4079)\n\nDan Rosenberg discovered that the semctl syscall did not correctly\nclear kernel memory. A local attacker could exploit this to read\nkernel stack memory, leading to a loss of privacy. (CVE-2010-4083)\n\nDan Rosenberg discovered that the socket filters did not correctly\ninitialize structure memory. A local attacker could create malicious\nfilters to read portions of kernel stack memory, leading to a loss of\nprivacy. (CVE-2010-4158)\n\nDan Rosenberg discovered that the Linux kernel L2TP implementation\ncontained multiple integer signedness errors. A local attacker could\nexploit this to to crash the kernel, or possibly gain root privileges.\n(CVE-2010-4160)\n\nDan Rosenberg discovered that certain iovec operations did not\ncalculate page counts correctly. A local attacker could exploit this\nto crash the system, leading to a denial of service. (CVE-2010-4162)\n\nDan Rosenberg discovered multiple flaws in the X.25 facilities\nparsing. If a system was using X.25, a remote attacker could exploit\nthis to crash the system, leading to a denial of service.\n(CVE-2010-4164)\n\nSteve Chen discovered that setsockopt did not correctly check MSS\nvalues. A local attacker could make a specially crafted socket call to\ncrash the system, leading to a denial of service. (CVE-2010-4165)\n\nDave Jones discovered that the mprotect system call did not correctly\nhandle merged VMAs. A local attacker could exploit this to crash the\nsystem, leading to a denial of service. (CVE-2010-4169)\n\nDan Rosenberg discovered that the RDS protocol did not correctly check\nioctl arguments. A local attacker could exploit this to crash the\nsystem, leading to a denial of service. (CVE-2010-4175)\n\nBrad Spengler discovered that the kernel did not correctly account for\nuserspace memory allocations during exec() calls. A local attacker\ncould exploit this to consume all system memory, leading to a denial\nof service. (CVE-2010-4243)\n\nVegard Nossum discovered that memory garbage collection was not\nhandled correctly for active sockets. A local attacker could exploit\nthis to allocate all available kernel memory, leading to a denial of\nservice. (CVE-2010-4249)\n\nIt was discovered that named pipes did not correctly handle certain\nfcntl calls. A local attacker could exploit this to crash the system,\nleading to a denial of service. (CVE-2010-4256)\n\nNelson Elhage discovered that the kernel did not correctly handle\nprocess cleanup after triggering a recoverable kernel bug. If a local\nattacker were able to trigger certain kinds of kernel bugs, they could\ncreate a specially crafted process to gain root privileges.\n(CVE-2010-4258).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/1054-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-ec2-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-ec2-source-2.6.32\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-preempt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-libc-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.32\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.35\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-tools-2.6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-tools-common\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.10\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2010/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/02/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/02/02\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2011-2019 Canonical, Inc. / NASL script (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(10\\.04|10\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04 / 10.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2010-0435\", \"CVE-2010-3859\", \"CVE-2010-3873\", \"CVE-2010-3874\", \"CVE-2010-3881\", \"CVE-2010-4073\", \"CVE-2010-4079\", \"CVE-2010-4083\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4162\", \"CVE-2010-4164\", \"CVE-2010-4165\", \"CVE-2010-4169\", \"CVE-2010-4175\", \"CVE-2010-4243\", \"CVE-2010-4249\", \"CVE-2010-4256\", \"CVE-2010-4258\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-1054-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-doc\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-ec2-doc\", pkgver:\"2.6.32-312.24\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-ec2-source-2.6.32\", pkgver:\"2.6.32-312.24\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-headers-2.6.32-28\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-headers-2.6.32-28-386\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-headers-2.6.32-28-generic\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-headers-2.6.32-28-generic-pae\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-headers-2.6.32-28-preempt\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-headers-2.6.32-28-server\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-headers-2.6.32-312\", pkgver:\"2.6.32-312.24\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-headers-2.6.32-312-ec2\", pkgver:\"2.6.32-312.24\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-28-386\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-28-generic\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-28-generic-pae\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-28-lpia\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-28-preempt\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-28-server\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-28-versatile\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-28-virtual\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-312-ec2\", pkgver:\"2.6.32-312.24\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-libc-dev\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-source-2.6.32\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-tools-2.6.32-28\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-tools-common\", pkgver:\"2.6.32-28.55\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-doc\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-headers-2.6.35-25\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-headers-2.6.35-25-generic\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-headers-2.6.35-25-generic-pae\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-headers-2.6.35-25-server\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-headers-2.6.35-25-virtual\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-image-2.6.35-25-generic\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-image-2.6.35-25-generic-pae\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-image-2.6.35-25-server\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-image-2.6.35-25-versatile\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-image-2.6.35-25-virtual\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-libc-dev\", pkgver:\"2.6.35-1025.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-source-2.6.35\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-tools-2.6.35-25\", pkgver:\"2.6.35-25.44\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"linux-tools-common\", pkgver:\"2.6.35-25.44\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-doc / linux-ec2-doc / linux-ec2-source-2.6.32 / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-01T07:17:20", "bulletinFamily": "scanner", "description": "Fixes multiple security bugs. All users should update to this version.\n\nAlso fixes :\n\n - Stall on boot on some systems with TPM devices.\n (RHBZ#530393)\n\n - Hard lockups with Radeon RV350 devices. (RHBZ#631310)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "modified": "2020-04-02T00:00:00", "id": "FEDORA_2010-18983.NASL", "href": "https://www.tenable.com/plugins/nessus/51374", "published": "2010-12-26T00:00:00", "title": "Fedora 13 : kernel-2.6.34.7-66.fc13 (2010-18983)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2010-18983.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51374);\n script_version(\"1.16\");\n script_cvs_date(\"Date: 2019/08/02 13:32:32\");\n\n script_cve_id(\"CVE-2010-2962\", \"CVE-2010-2963\", \"CVE-2010-3442\", \"CVE-2010-3698\", \"CVE-2010-3705\", \"CVE-2010-3874\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4162\", \"CVE-2010-4169\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_bugtraq_id(43701, 43787, 44067, 44242, 44500, 44648, 44661, 44758, 44793, 44861, 45037, 45159);\n script_xref(name:\"FEDORA\", value:\"2010-18983\");\n\n script_name(english:\"Fedora 13 : kernel-2.6.34.7-66.fc13 (2010-18983)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Fixes multiple security bugs. All users should update to this version.\n\nAlso fixes :\n\n - Stall on boot on some systems with TPM devices.\n (RHBZ#530393)\n\n - Hard lockups with Radeon RV350 devices. (RHBZ#631310)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=637688\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=638478\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=639879\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=640036\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=642465\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=649695\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=651147\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=651671\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=651698\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=652529\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=656756\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=659567\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2010-December/052513.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c3b42422\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:13\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2010/10/04\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/12/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/12/26\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^13([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 13.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC13\", reference:\"kernel-2.6.34.7-66.fc13\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 8.3, "vector": "AV:A/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-04-01T02:43:54", "bulletinFamily": "scanner", "description": "This patch updates the SUSE Linux Enterprise Server 9 kernel to fix\nvarious security issues and some bugs.\n\nThe following security issues were fixed :\n\n - The hci_uart_tty_open function in the HCI UART driver\n (drivers/bluetooth/hci_ldisc.c) in the Linux kernel did\n not verify whether the tty has a write operation, which\n allowed local users to cause a denial of service (NULL\n pointer dereference) via vectors related to the\n Bluetooth driver. (CVE-2010-4242)\n\n - The load_mixer_volumes function in sound/oss/soundcard.c\n in the OSS sound subsystem in the Linux kernel\n incorrectly expected that a certain name field ends with\n a ", "modified": "2020-04-02T00:00:00", "id": "SUSE9_12672.NASL", "href": "https://www.tenable.com/plugins/nessus/51953", "published": "2011-02-11T00:00:00", "title": "SuSE9 Security Update : the Linux kernel (YOU Patch Number 12672)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51953);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/10/25 13:36:40\");\n\n script_cve_id(\"CVE-2010-2946\", \"CVE-2010-3067\", \"CVE-2010-3310\", \"CVE-2010-3442\", \"CVE-2010-3848\", \"CVE-2010-3849\", \"CVE-2010-3850\", \"CVE-2010-3873\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4081\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4164\", \"CVE-2010-4242\", \"CVE-2010-4258\", \"CVE-2010-4342\", \"CVE-2010-4527\", \"CVE-2010-4529\");\n\n script_name(english:\"SuSE9 Security Update : the Linux kernel (YOU Patch Number 12672)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 9 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This patch updates the SUSE Linux Enterprise Server 9 kernel to fix\nvarious security issues and some bugs.\n\nThe following security issues were fixed :\n\n - The hci_uart_tty_open function in the HCI UART driver\n (drivers/bluetooth/hci_ldisc.c) in the Linux kernel did\n not verify whether the tty has a write operation, which\n allowed local users to cause a denial of service (NULL\n pointer dereference) via vectors related to the\n Bluetooth driver. (CVE-2010-4242)\n\n - The load_mixer_volumes function in sound/oss/soundcard.c\n in the OSS sound subsystem in the Linux kernel\n incorrectly expected that a certain name field ends with\n a '\\0' character, which allowed local users to conduct\n buffer overflow attacks and gain privileges, or possibly\n obtain sensitive information from kernel memory, via a\n SOUND_MIXER_SETLEVELS ioctl call. (CVE-2010-4527)\n\n - Integer underflow in the irda_getsockopt function in\n net/irda/af_irda.c in the Linux kernel on platforms\n other than x86 allowed local users to obtain potentially\n sensitive information from kernel heap memory via an\n IRLMP_ENUMDEVICES getsockopt call. (CVE-2010-4529)\n\n - The aun_incoming function in net/econet/af_econet.c in\n the Linux kernel, when Econet is enabled, allowed remote\n attackers to cause a denial of service (NULL pointer\n dereference and OOPS) by sending an Acorn Universal\n Networking (AUN) packet over UDP. (CVE-2010-4342)\n\n - fs/jfs/xattr.c in the Linux kernel did not properly\n handle a certain legacy format for storage of extended\n attributes, which might have allowed local users by\n bypass intended xattr namespace restrictions via an\n 'os2.' substring at the beginning of a name.\n (CVE-2010-2946)\n\n - Stack-based buffer overflow in the econet_sendmsg\n function in net/econet/af_econet.c in the Linux kernel,\n when an econet address is configured, allowed local\n users to gain privileges by providing a large number of\n iovec structures. (CVE-2010-3848)\n\n - The econet_sendmsg function in net/econet/af_econet.c in\n the Linux kernel, when an econet address is configured,\n allowed local users to cause a denial of service (NULL\n pointer dereference and OOPS) via a sendmsg call that\n specifies a NULL value for the remote address field.\n (CVE-2010-3849)\n\n - The ec_dev_ioctl function in net/econet/af_econet.c in\n the Linux kernel does not require the CAP_NET_ADMIN\n capability, which allowed local users to bypass intended\n access restrictions and configure econet addresses via\n an SIOCSIFADDR ioctl call. (CVE-2010-3850)\n\n - The do_exit function in kernel/exit.c in the Linux\n kernel did not properly handle a KERNEL_DS get_fs value,\n which allowed local users to bypass intended access_ok\n restrictions, overwrite arbitrary kernel memory\n locations, and gain privileges by leveraging a (1) BUG,\n (2) NULL pointer dereference, or (3) page fault, as\n demonstrated by vectors involving the clear_child_tid\n feature and the splice system call. (CVE-2010-4258)\n\n - Multiple integer overflows in the (1) pppol2tp_sendmsg\n function in net/l2tp/l2tp_ppp.c, and the (2)\n l2tp_ip_sendmsg function in net/l2tp/l2tp_ip.c, in the\n PPPoL2TP and IPoL2TP implementations in the Linux kernel\n allowed local users to cause a denial of service (heap\n memory corruption and panic) or possibly gain privileges\n via a crafted sendto call. (CVE-2010-4160)\n\n - Integer overflow in the ioc_general function in\n drivers/scsi/gdth.c in the Linux kernel on 64-bit\n platforms allowed local users to cause a denial of\n service (memory corruption) or possibly have unspecified\n other impact via a large argument in an ioctl call.\n (CVE-2010-4157)\n\n - Multiple integer underflows in the x25_parse_facilities\n function in net/x25/x25_facilities.c in the Linux kernel\n allowed remote attackers to cause a denial of service\n (system crash) via malformed X.25 (1) X25_FAC_CLASS_A,\n (2) X25_FAC_CLASS_B, (3) X25_FAC_CLASS_C, or (4)\n X25_FAC_CLASS_D facility data, a different vulnerability\n than CVE-2010-3873. (CVE-2010-4164)\n\n - The sk_run_filter function in net/core/filter.c in the\n Linux kernel did not check whether a certain memory\n location has been initialized before executing a (1)\n BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which\n allowed local users to obtain potentially sensitive\n information from kernel stack memory via a crafted\n socket filter. (CVE-2010-4158)\n\n - Multiple integer overflows in the snd_ctl_new function\n in sound/core/control.c in the Linux kernel allowed\n local users to cause a denial of service (heap memory\n corruption) or possibly have unspecified other impact\n via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or (2)\n SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call. (CVE-2010-3442)\n\n - The snd_hdspm_hwdep_ioctl function in\n sound/pci/rme9652/hdspm.c in the Linux kernel did not\n initialize a certain structure, which allowed local\n users to obtain potentially sensitive information from\n kernel stack memory via an\n SNDRV_HDSPM_IOCTL_GET_CONFIG_INFO ioctl call.\n (CVE-2010-4081)\n\n - The ipc subsystem in the Linux kernel did not initialize\n certain structures, which allowed local users to obtain\n potentially sensitive information from kernel stack\n memory via vectors related to the (1) compat_sys_semctl,\n (2) compat_sys_msgctl, and (3) compat_sys_shmctl\n functions in ipc/compat.c; and the (4)\n compat_sys_mq_open and (5) compat_sys_mq_getsetattr\n functions in ipc/compat_mq.c. (CVE-2010-4073)\n\n - The copy_shmid_to_user function in ipc/shm.c in the\n Linux kernel did not initialize a certain structure,\n which allowed local users to obtain potentially\n sensitive information from kernel stack memory via\n vectors related to the shmctl system call and the 'old\n shm interface.'. (CVE-2010-4072)\n\n - The copy_semid_to_user function in ipc/sem.c in the\n Linux kernel did not initialize a certain structure,\n which allowed local users to obtain potentially\n sensitive information from kernel stack memory via a (1)\n IPC_INFO, (2) SEM_INFO, (3) IPC_STAT, or (4) SEM_STAT\n command in a semctl system call. (CVE-2010-4083)\n\n - Integer overflow in the do_io_submit function in\n fs/aio.c in the Linux kernel allowed local users to\n cause a denial of service or possibly have unspecified\n other impact via crafted use of the io_submit system\n call. (CVE-2010-3067)\n\n - Multiple integer signedness errors in net/rose/af_rose.c\n in the Linux kernel allowed local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a rose_getname\n function call, related to the rose_bind and rose_connect\n functions. (CVE-2010-3310)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2946.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3067.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3310.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3442.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3848.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3849.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3850.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3873.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4072.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4073.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4081.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4083.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4157.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4158.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4160.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4164.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4242.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4258.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4342.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4527.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4529.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply YOU patch number 12672.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/02/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/02/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 9 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-bigsmp-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-debug-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-default-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-smp-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-source-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-syms-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-um-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-xen-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"kernel-xenpae-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"um-host-install-initrd-1.0-48.38\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"um-host-kernel-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"i586\", reference:\"xen-kmp-3.0.4_2.6.5_7.325-0.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-01T02:43:54", "bulletinFamily": "scanner", "description": "This patch updates the SUSE Linux Enterprise Server 9 kernel to fix\nvarious security issues and some bugs.\n\nThe following security issues were fixed :\n\n - The hci_uart_tty_open function in the HCI UART driver\n (drivers/bluetooth/hci_ldisc.c) in the Linux kernel did\n not verify whether the tty has a write operation, which\n allowed local users to cause a denial of service (NULL\n pointer dereference) via vectors related to the\n Bluetooth driver. (CVE-2010-4242)\n\n - The load_mixer_volumes function in sound/oss/soundcard.c\n in the OSS sound subsystem in the Linux kernel\n incorrectly expected that a certain name field ends with\n a ", "modified": "2020-04-02T00:00:00", "id": "SUSE9_12677.NASL", "href": "https://www.tenable.com/plugins/nessus/58229", "published": "2012-04-23T00:00:00", "title": "SuSE9 Security Update : the Linux kernel (YOU Patch Number 12677)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(58229);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2019/10/25 13:36:40\");\n\n script_cve_id(\"CVE-2010-2946\", \"CVE-2010-3067\", \"CVE-2010-3310\", \"CVE-2010-3442\", \"CVE-2010-3848\", \"CVE-2010-3849\", \"CVE-2010-3850\", \"CVE-2010-3873\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4081\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4160\", \"CVE-2010-4164\", \"CVE-2010-4242\", \"CVE-2010-4258\", \"CVE-2010-4342\", \"CVE-2010-4527\", \"CVE-2010-4529\");\n\n script_name(english:\"SuSE9 Security Update : the Linux kernel (YOU Patch Number 12677)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 9 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This patch updates the SUSE Linux Enterprise Server 9 kernel to fix\nvarious security issues and some bugs.\n\nThe following security issues were fixed :\n\n - The hci_uart_tty_open function in the HCI UART driver\n (drivers/bluetooth/hci_ldisc.c) in the Linux kernel did\n not verify whether the tty has a write operation, which\n allowed local users to cause a denial of service (NULL\n pointer dereference) via vectors related to the\n Bluetooth driver. (CVE-2010-4242)\n\n - The load_mixer_volumes function in sound/oss/soundcard.c\n in the OSS sound subsystem in the Linux kernel\n incorrectly expected that a certain name field ends with\n a '\\0' character, which allowed local users to conduct\n buffer overflow attacks and gain privileges, or possibly\n obtain sensitive information from kernel memory, via a\n SOUND_MIXER_SETLEVELS ioctl call. (CVE-2010-4527)\n\n - Integer underflow in the irda_getsockopt function in\n net/irda/af_irda.c in the Linux kernel on platforms\n other than x86 allowed local users to obtain potentially\n sensitive information from kernel heap memory via an\n IRLMP_ENUMDEVICES getsockopt call. (CVE-2010-4529)\n\n - The aun_incoming function in net/econet/af_econet.c in\n the Linux kernel, when Econet is enabled, allowed remote\n attackers to cause a denial of service (NULL pointer\n dereference and OOPS) by sending an Acorn Universal\n Networking (AUN) packet over UDP. (CVE-2010-4342)\n\n - fs/jfs/xattr.c in the Linux kernel did not properly\n handle a certain legacy format for storage of extended\n attributes, which might have allowed local users by\n bypass intended xattr namespace restrictions via an\n 'os2.' substring at the beginning of a name.\n (CVE-2010-2946)\n\n - Stack-based buffer overflow in the econet_sendmsg\n function in net/econet/af_econet.c in the Linux kernel,\n when an econet address is configured, allowed local\n users to gain privileges by providing a large number of\n iovec structures. (CVE-2010-3848)\n\n - The econet_sendmsg function in net/econet/af_econet.c in\n the Linux kernel, when an econet address is configured,\n allowed local users to cause a denial of service (NULL\n pointer dereference and OOPS) via a sendmsg call that\n specifies a NULL value for the remote address field.\n (CVE-2010-3849)\n\n - The ec_dev_ioctl function in net/econet/af_econet.c in\n the Linux kernel does not require the CAP_NET_ADMIN\n capability, which allowed local users to bypass intended\n access restrictions and configure econet addresses via\n an SIOCSIFADDR ioctl call. (CVE-2010-3850)\n\n - The do_exit function in kernel/exit.c in the Linux\n kernel did not properly handle a KERNEL_DS get_fs value,\n which allowed local users to bypass intended access_ok\n restrictions, overwrite arbitrary kernel memory\n locations, and gain privileges by leveraging a (1) BUG,\n (2) NULL pointer dereference, or (3) page fault, as\n demonstrated by vectors involving the clear_child_tid\n feature and the splice system call. (CVE-2010-4258)\n\n - Multiple integer overflows in the (1) pppol2tp_sendmsg\n function in net/l2tp/l2tp_ppp.c, and the (2)\n l2tp_ip_sendmsg function in net/l2tp/l2tp_ip.c, in the\n PPPoL2TP and IPoL2TP implementations in the Linux kernel\n allowed local users to cause a denial of service (heap\n memory corruption and panic) or possibly gain privileges\n via a crafted sendto call. (CVE-2010-4160)\n\n - Integer overflow in the ioc_general function in\n drivers/scsi/gdth.c in the Linux kernel on 64-bit\n platforms allowed local users to cause a denial of\n service (memory corruption) or possibly have unspecified\n other impact via a large argument in an ioctl call.\n (CVE-2010-4157)\n\n - Multiple integer underflows in the x25_parse_facilities\n function in net/x25/x25_facilities.c in the Linux kernel\n allowed remote attackers to cause a denial of service\n (system crash) via malformed X.25 (1) X25_FAC_CLASS_A,\n (2) X25_FAC_CLASS_B, (3) X25_FAC_CLASS_C, or (4)\n X25_FAC_CLASS_D facility data, a different vulnerability\n than CVE-2010-3873. (CVE-2010-4164)\n\n - The sk_run_filter function in net/core/filter.c in the\n Linux kernel did not check whether a certain memory\n location has been initialized before executing a (1)\n BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which\n allowed local users to obtain potentially sensitive\n information from kernel stack memory via a crafted\n socket filter. (CVE-2010-4158)\n\n - Multiple integer overflows in the snd_ctl_new function\n in sound/core/control.c in the Linux kernel allowed\n local users to cause a denial of service (heap memory\n corruption) or possibly have unspecified other impact\n via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or (2)\n SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call. (CVE-2010-3442)\n\n - The snd_hdspm_hwdep_ioctl function in\n sound/pci/rme9652/hdspm.c in the Linux kernel did not\n initialize a certain structure, which allowed local\n users to obtain potentially sensitive information from\n kernel stack memory via an\n SNDRV_HDSPM_IOCTL_GET_CONFIG_INFO ioctl call.\n (CVE-2010-4081)\n\n - The ipc subsystem in the Linux kernel did not initialize\n certain structures, which allowed local users to obtain\n potentially sensitive information from kernel stack\n memory via vectors related to the (1) compat_sys_semctl,\n (2) compat_sys_msgctl, and (3) compat_sys_shmctl\n functions in ipc/compat.c; and the (4)\n compat_sys_mq_open and (5) compat_sys_mq_getsetattr\n functions in ipc/compat_mq.c. (CVE-2010-4073)\n\n - The copy_shmid_to_user function in ipc/shm.c in the\n Linux kernel did not initialize a certain structure,\n which allowed local users to obtain potentially\n sensitive information from kernel stack memory via\n vectors related to the shmctl system call and the 'old\n shm interface.'. (CVE-2010-4072)\n\n - The copy_semid_to_user function in ipc/sem.c in the\n Linux kernel did not initialize a certain structure,\n which allowed local users to obtain potentially\n sensitive information from kernel stack memory via a (1)\n IPC_INFO, (2) SEM_INFO, (3) IPC_STAT, or (4) SEM_STAT\n command in a semctl system call. (CVE-2010-4083)\n\n - Integer overflow in the do_io_submit function in\n fs/aio.c in the Linux kernel allowed local users to\n cause a denial of service or possibly have unspecified\n other impact via crafted use of the io_submit system\n call. (CVE-2010-3067)\n\n - Multiple integer signedness errors in net/rose/af_rose.c\n in the Linux kernel allowed local users to cause a\n denial of service (heap memory corruption) or possibly\n have unspecified other impact via a rose_getname\n function call, related to the rose_bind and rose_connect\n functions. (CVE-2010-3310)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-2946.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3067.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3310.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3442.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3848.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3849.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3850.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-3873.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4072.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4073.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4081.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4083.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4157.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4158.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4160.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4164.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4242.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4258.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4342.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4527.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4529.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply YOU patch number 12677.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/02/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/04/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 9 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SUSE9\", cpu:\"x86_64\", reference:\"kernel-default-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"x86_64\", reference:\"kernel-smp-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"x86_64\", reference:\"kernel-source-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"x86_64\", reference:\"kernel-syms-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"x86_64\", reference:\"kernel-xen-2.6.5-7.325\")) flag++;\nif (rpm_check(release:\"SUSE9\", cpu:\"x86_64\", reference:\"xen-kmp-3.0.4_2.6.5_7.325-0.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "suse": [{"lastseen": "2016-09-04T12:09:51", "bulletinFamily": "unix", "description": "This update of the openSUSE 11.2 kernel fixes various bugs and lots of security issues.\n#### Solution\nThere is no known workaround, please install the update packages.", "modified": "2011-01-03T15:33:25", "published": "2011-01-03T15:33:25", "id": "SUSE-SA:2011:002", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html", "type": "suse", "title": "potential local privilege escalation in kernel", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:05:08", "bulletinFamily": "unix", "description": "The SUSE Linux Enterprise 11 Service Pack 1 kernel was updated to 2.6.32.27 and fixes various bugs and security issues.\n#### Solution\nThere is no known workaround, please install the update packages.", "modified": "2011-01-14T16:35:40", "published": "2011-01-14T16:35:40", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html", "id": "SUSE-SA:2011:004", "type": "suse", "title": "local privilege escalation in kernel", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:14:17", "bulletinFamily": "unix", "description": "This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes several security issues and bugs.\n#### Solution\nThere is no known workaround, please install the update packages.", "modified": "2010-12-14T13:42:46", "published": "2010-12-14T13:42:46", "id": "SUSE-SA:2010:060", "href": "http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html", "title": "remote denial of service in kernel", "type": "suse", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:15:22", "bulletinFamily": "unix", "description": "This update to the SUSE Linux Enterprise 11 SP 1 Realtime Extension kernel brings various bug and lots of security fixes.\n#### Solution\nPlease install the updated packages.", "modified": "2011-02-07T11:58:56", "published": "2011-02-07T11:58:56", "id": "SUSE-SA:2011:007", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html", "type": "suse", "title": "remote denial of service, local privilege in kernel-rt", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:25:43", "bulletinFamily": "unix", "description": "This patch updates the SUSE Linux Enterprise Server 9 kernel to fix various security issues and some bugs.\n#### Solution\nThere is no known workaround, please install the update packages.", "modified": "2011-02-11T13:07:24", "published": "2011-02-11T13:07:24", "id": "SUSE-SA:2011:008", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html", "type": "suse", "title": "local privilege escalation, remote denial of in kernel", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "cve": [{"lastseen": "2019-05-29T18:10:32", "bulletinFamily": "NVD", "description": "Integer overflow in the rds_cmsg_rdma_args function (net/rds/rdma.c) in Linux kernel 2.6.35 allows local users to cause a denial of service (crash) and possibly trigger memory corruption via a crafted Reliable Datagram Sockets (RDS) request, a different vulnerability than CVE-2010-3865.", "modified": "2017-08-17T01:33:00", "id": "CVE-2010-4175", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4175", "published": "2011-01-11T03:00:00", "title": "CVE-2010-4175", "type": "cve", "cvss": {"score": 4.9, "vector": "AV:L/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:10:32", "bulletinFamily": "NVD", "description": "Use-after-free vulnerability in mm/mprotect.c in the Linux kernel before 2.6.37-rc2 allows local users to cause a denial of service via vectors involving an mprotect system call.", "modified": "2017-08-17T01:33:00", "id": "CVE-2010-4169", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4169", "published": "2010-11-22T13:00:00", "title": "CVE-2010-4169", "type": "cve", "cvss": {"score": 4.9, "vector": "AV:L/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:10:31", "bulletinFamily": "NVD", "description": "Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the Linux kernel before 2.6.36.1 on 64-bit platforms allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large argument in an ioctl call.", "modified": "2018-10-10T20:07:00", "id": "CVE-2010-4157", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4157", "published": "2010-12-10T19:00:00", "title": "CVE-2010-4157", "type": "cve", "cvss": {"score": 6.0, "vector": "AV:L/AC:H/Au:S/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:10:30", "bulletinFamily": "NVD", "description": "Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and system crash) via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl call.", "modified": "2012-03-19T04:00:00", "id": "CVE-2010-3437", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3437", "published": "2010-10-04T21:00:00", "title": "CVE-2010-3437", "type": "cve", "cvss": {"score": 6.6, "vector": "AV:L/AC:L/Au:N/C:C/I:N/A:C"}}, {"lastseen": "2019-05-29T18:10:31", "bulletinFamily": "NVD", "description": "The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain memory location has been initialized before executing a (1) BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which allows local users to obtain potentially sensitive information from kernel stack memory via a crafted socket filter.", "modified": "2018-10-10T20:07:00", "id": "CVE-2010-4158", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4158", "published": "2010-12-30T19:00:00", "title": "CVE-2010-4158", "type": "cve", "cvss": {"score": 2.1, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:10:31", "bulletinFamily": "NVD", "description": "The snd_hdsp_hwdep_ioctl function in sound/pci/rme9652/hdsp.c in the Linux kernel before 2.6.36-rc6 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via an SNDRV_HDSP_IOCTL_GET_CONFIG_INFO ioctl call.", "modified": "2018-10-10T20:06:00", "id": "CVE-2010-4080", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4080", "published": "2010-11-30T22:14:00", "title": "CVE-2010-4080", "type": "cve", "cvss": {"score": 1.9, "vector": "AV:L/AC:M/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:10:31", "bulletinFamily": "NVD", "description": "The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a VIAFB_GET_INFO ioctl call.", "modified": "2012-03-19T04:00:00", "id": "CVE-2010-4082", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4082", "published": "2010-11-30T22:14:00", "title": "CVE-2010-4082", "type": "cve", "cvss": {"score": 1.9, "vector": "AV:L/AC:M/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:10:32", "bulletinFamily": "NVD", "description": "The do_exit function in kernel/exit.c in the Linux kernel before 2.6.36.2 does not properly handle a KERNEL_DS get_fs value, which allows local users to bypass intended access_ok restrictions, overwrite arbitrary kernel memory locations, and gain privileges by leveraging a (1) BUG, (2) NULL pointer dereference, or (3) page fault, as demonstrated by vectors involving the clear_child_tid feature and the splice system call.", "modified": "2013-09-13T06:38:00", "id": "CVE-2010-4258", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4258", "published": "2010-12-30T19:00:00", "title": "CVE-2010-4258", "type": "cve", "cvss": {"score": 6.2, "vector": "AV:L/AC:H/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:10:31", "bulletinFamily": "NVD", "description": "The sisfb_ioctl function in drivers/video/sis/sis_main.c in the Linux kernel before 2.6.36-rc6 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FBIOGET_VBLANK ioctl call.", "modified": "2012-03-19T04:00:00", "id": "CVE-2010-4078", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4078", "published": "2010-11-29T16:00:00", "title": "CVE-2010-4078", "type": "cve", "cvss": {"score": 1.9, "vector": "AV:L/AC:M/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:10:31", "bulletinFamily": "NVD", "description": "The ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize a certain block of heap memory, which allows local users to obtain potentially sensitive information via an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt value, a different vulnerability than CVE-2010-2478.", "modified": "2012-03-19T04:00:00", "id": "CVE-2010-3861", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3861", "published": "2010-12-10T19:00:00", "title": "CVE-2010-3861", "type": "cve", "cvss": {"score": 2.1, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:N"}}], "redhat": [{"lastseen": "2019-08-13T18:46:59", "bulletinFamily": "unix", "description": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* Missing sanity checks in the Intel i915 driver in the Linux kernel could\nallow a local, unprivileged user to escalate their privileges.\n(CVE-2010-2962, Important)\n\n* A flaw in sctp_packet_config() in the Linux kernel's Stream Control\nTransmission Protocol (SCTP) implementation could allow a remote attacker\nto cause a denial of service. (CVE-2010-3432, Important)\n\n* A missing integer overflow check in snd_ctl_new() in the Linux kernel's\nsound subsystem could allow a local, unprivileged user on a 32-bit system\nto cause a denial of service or escalate their privileges. (CVE-2010-3442,\nImportant)\n\n* A flaw in sctp_auth_asoc_get_hmac() in the Linux kernel's SCTP\nimplementation. When iterating through the hmac_ids array, it did not reset\nthe last id element if it was out of range. This could allow a remote\nattacker to cause a denial of service. (CVE-2010-3705, Important)\n\n* Missing sanity checks in setup_arg_pages() in the Linux kernel. When\nmaking the size of the argument and environment area on the stack very\nlarge, it could trigger a BUG_ON(), resulting in a local denial of service.\n(CVE-2010-3858, Moderate)\n\n* A flaw in ethtool_get_rxnfc() in the Linux kernel's ethtool IOCTL\nhandler. When it is called with a large info.rule_cnt, it could allow a\nlocal user to cause an information leak. (CVE-2010-3861, Moderate)\n\n* A flaw in bcm_connect() in the Linux kernel's Controller Area Network\n(CAN) Broadcast Manager. On 64-bit systems, writing the socket address may\noverflow the procname character array. (CVE-2010-3874, Moderate)\n\n* A flaw in inet_csk_diag_dump() in the Linux kernel's module for\nmonitoring the sockets of INET transport protocols. By sending a netlink\nmessage with certain bytecode, a local, unprivileged user could cause a\ndenial of service. (CVE-2010-3880, Moderate)\n\n* Missing sanity checks in gdth_ioctl_alloc() in the gdth driver in the\nLinux kernel, could allow a local user with access to \"/dev/gdth\" on a\n64-bit system to cause a denial of service or escalate their privileges.\n(CVE-2010-4157, Moderate)\n\n* A use-after-free flaw in the mprotect() system call could allow a local,\nunprivileged user to cause a local denial of service. (CVE-2010-4169,\nModerate)\n\n* Missing initialization flaws in the Linux kernel could lead to\ninformation leaks. (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073,\nCVE-2010-4074, CVE-2010-4075, CVE-2010-4077, CVE-2010-4079, CVE-2010-4080,\nCVE-2010-4082, CVE-2010-4083, CVE-2010-4158, Low)\n\nRed Hat would like to thank Kees Cook for reporting CVE-2010-2962,\nCVE-2010-3861, and CVE-2010-4072; Dan Rosenberg for reporting\nCVE-2010-3442, CVE-2010-3705, CVE-2010-3874, CVE-2010-4073, CVE-2010-4074,\nCVE-2010-4075, CVE-2010-4077, CVE-2010-4079, CVE-2010-4080, CVE-2010-4082,\nCVE-2010-4083, and CVE-2010-4158; Brad Spengler for reporting\nCVE-2010-3858; Nelson Elhage for reporting CVE-2010-3880; and Vasiliy\nKulikov for reporting CVE-2010-3876.\n\nBug fixes:\n\n* A vulnerability in the 32-bit compatibility code for the VIDIOCSMICROCODE\nIOCTL in the Video4Linux implementation. It does not affect Red Hat\nEnterprise MRG, but as a preventive measure, this update removes the code.\nRed Hat would like to thank Kees Cook for reporting this vulnerability.\n(BZ#642469)\n\n* The kernel-rt spec file was missing the crypto, drm, generated, and trace\nheader directories when generating the kernel-rt-devel package, resulting\nin out-of-tree modules failing to build. (BZ#608784)\n\n* On computers without a supported Performance Monitoring Unit, a crash\nwould occur when running the \"perf top\" command, and occasionally other\nperf commands. perf software events are now marked as IRQ safe to avoid\nthis crash. (BZ#647434)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "modified": "2019-03-22T23:44:26", "published": "2010-12-08T05:00:00", "id": "RHSA-2010:0958", "href": "https://access.redhat.com/errata/RHSA-2010:0958", "type": "redhat", "title": "(RHSA-2010:0958) Important: kernel-rt security and bug fix update", "cvss": {"score": 8.3, "vector": "AV:A/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-08-13T18:45:58", "bulletinFamily": "unix", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A heap overflow flaw was found in the Linux kernel's Transparent\nInter-Process Communication protocol (TIPC) implementation. A local,\nunprivileged user could use this flaw to escalate their privileges.\n(CVE-2010-3859, Important)\n\n* Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\nin the Linux kernel. A local user with access to \"/dev/gdth\" on a 64-bit\nsystem could use these flaws to cause a denial of service or escalate their\nprivileges. (CVE-2010-4157, Moderate)\n\n* A NULL pointer dereference flaw was found in the Bluetooth HCI UART\ndriver in the Linux kernel. A local, unprivileged user could use this flaw\nto cause a denial of service. (CVE-2010-4242, Moderate)\n\n* A flaw was found in the Linux kernel's garbage collector for AF_UNIX\nsockets. A local, unprivileged user could use this flaw to trigger a\ndenial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n\n* Missing initialization flaws were found in the Linux kernel. A local,\nunprivileged user could use these flaws to cause information leaks.\n(CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\nCVE-2010-4083, CVE-2010-4158, Low)\n\nRed Hat would like to thank Alan Cox for reporting CVE-2010-4242; Vegard\nNossum for reporting CVE-2010-4249; Vasiliy Kulikov for reporting\nCVE-2010-3876; Kees Cook for reporting CVE-2010-4072; and Dan Rosenberg for\nreporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\nCVE-2010-4158.\n\nThis update also fixes the following bugs:\n\n* A flaw was found in the Linux kernel where, if used in conjunction with\nanother flaw that can result in a kernel Oops, could possibly lead to\nprivilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\nsysctl panic_on_oops variable is turned on by default. However, as a\npreventive measure if the variable is turned off by an administrator, this\nupdate addresses the issue. Red Hat would like to thank Nelson Elhage for\nreporting this vulnerability. (BZ#659568)\n\n* On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\nachieved by using page-based sk_buff buffers without any packet split. The\nentire frame data is copied to the page(s) rather than some to the\nskb->data area and some to the page(s) when performing a typical\npacket-split. This caused problems with the filtering code and frames were\ngetting dropped before they were received by listening applications. This\nbug could eventually lead to the IP address being released and not being\nable to be re-acquired from DHCP if the MTU (Maximum Transfer Unit) was\nchanged (for an affected interface using the e1000e driver). With this\nupdate, frames are no longer dropped and an IP address is correctly\nre-acquired after a previous release. (BZ#664667)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "modified": "2017-09-08T12:20:25", "published": "2011-01-18T05:00:00", "id": "RHSA-2011:0162", "href": "https://access.redhat.com/errata/RHSA-2011:0162", "type": "redhat", "title": "(RHSA-2011:0162) Important: kernel security and bug fix update", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-08-13T18:45:25", "bulletinFamily": "unix", "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* A flaw in sctp_packet_config() in the Linux kernel's Stream Control\nTransmission Protocol (SCTP) implementation could allow a remote attacker\nto cause a denial of service. (CVE-2010-3432, Important)\n\n* A missing integer overflow check in snd_ctl_new() in the Linux kernel's\nsound subsystem could allow a local, unprivileged user on a 32-bit system\nto cause a denial of service or escalate their privileges. (CVE-2010-3442,\nImportant)\n\nRed Hat would like to thank Dan Rosenberg for reporting CVE-2010-3442.\n\nBug fixes:\n\n* Forward time drift was observed on virtual machines using PM\ntimer-based kernel tick accounting and running on KVM or the Microsoft\nHyper-V Server hypervisor. Virtual machines that were booted with the\ndivider=x kernel parameter set to a value greater than 1 and that showed\nthe following in the kernel boot messages were subject to this issue:\n\ntime.c: Using PM based timekeeping\n\nFine grained accounting for the PM timer is introduced which eliminates\nthis issue. However, this fix uncovered a bug in the Xen hypervisor,\npossibly causing backward time drift. If this erratum is installed in Xen\nHVM guests that meet the aforementioned conditions, it is recommended that\nthe host use kernel-xen-2.6.18-194.26.1.el5 or newer, which includes a fix\n(BZ#641915) for the backward time drift. (BZ#629237)\n\n* With multipath enabled, systems would occasionally halt when the\ndo_cciss_request function was used. This was caused by wrongly-generated\nrequests. Additional checks have been added to avoid the aforementioned\nissue. (BZ#640193)\n\n* A Sun X4200 system equipped with a QLogic HBA spontaneously rebooted and\nlogged a Hyper-Transport Sync Flood Error to the system event log. A\nMaximum Memory Read Byte Count restriction was added to fix this bug.\n(BZ#640919)\n\n* For an active/backup bonding network interface with VLANs on top of it,\nwhen a link failed over, it took a minute for the multicast domain to be\nrejoined. This was caused by the driver not sending any IGMP join packets.\nThe driver now sends IGMP join packets and the multicast domain is rejoined\nimmediately. (BZ#641002)\n\n* Replacing a disk and trying to rebuild it afterwards caused the system to\npanic. When a domain validation request for a hot plugged drive was sent,\nthe mptscsi driver did not validate its existence. This could result in the\ndriver accessing random memory and causing the crash. A check has been\nadded that describes the newly-added device and reloads the iocPg3 data\nfrom the firmware if needed. (BZ#641137)\n\n* An attempt to create a VLAN interface on a bond of two bnx2 adapters in\ntwo switch configurations resulted in a soft lockup after a few seconds.\nThis was caused by an incorrect use of a bonding pointer. With this update,\nsoft lockups no longer occur and creating a VLAN interface works as\nexpected. (BZ#641254)\n\n* Erroneous pointer checks could have caused a kernel panic. This was due\nto a critical value not being copied when a network buffer was duplicated\nand consumed by multiple portions of the kernel's network stack. Fixing the\ncopy operation resolved this bug. (BZ#642746)\n\n* A typo in a variable name caused it to be dereferenced in either mkdir()\nor create() which could cause a kernel panic. (BZ#643342)\n\n* SCSI high level drivers can submit SCSI commands which would never be\ncompleted when the device was offline. This was caused by a missing\ncallback for the request to complete the given command. SCSI requests are\nnow terminated by calling their callback when a device is offline.\n(BZ#644816)\n\n* A kernel panic could have occurred on systems due to a recursive lock in\nthe 3c59x driver. Recursion is now avoided and this kernel panic no longer\noccurs. (BZ#648407)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "modified": "2017-09-08T11:55:39", "published": "2010-12-01T05:00:00", "id": "RHSA-2010:0936", "href": "https://access.redhat.com/errata/RHSA-2010:0936", "type": "redhat", "title": "(RHSA-2010:0936) Important: kernel security and bug fix update", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-08-13T18:47:07", "bulletinFamily": "unix", "description": "* Buffer overflow in eCryptfs. When /dev/ecryptfs has world writable\npermissions (which it does not, by default, on Red Hat Enterprise Linux 6),\na local, unprivileged user could use this flaw to cause a denial of service\nor possibly escalate their privileges. (CVE-2010-2492, Important)\n\n* Integer overflow in the RDS protocol implementation could allow a local,\nunprivileged user to cause a denial of service or escalate their\nprivileges. (CVE-2010-3865, Important)\n\n* Missing boundary checks in the PPP over L2TP sockets implementation could\nallow a local, unprivileged user to cause a denial of service or escalate\ntheir privileges. (CVE-2010-4160, Important)\n\n* NULL pointer dereference in the igb driver. If both Single Root I/O\nVirtualization (SR-IOV) and promiscuous mode were enabled on an interface\nusing igb, it could result in a denial of service when a tagged VLAN packet\nis received on that interface. (CVE-2010-4263, Important)\n\n* Missing initialization flaw in the XFS file system implementation, and in\nthe network traffic policing implementation, could allow a local,\nunprivileged user to cause an information leak. (CVE-2010-3078,\nCVE-2010-3477, Moderate)\n\n* NULL pointer dereference in the Open Sound System compatible sequencer\ndriver could allow a local, unprivileged user with access to /dev/sequencer\nto cause a denial of service. /dev/sequencer is only accessible to root and\nusers in the audio group by default. (CVE-2010-3080, Moderate)\n\n* Flaw in the ethtool IOCTL handler could allow a local user to cause an\ninformation leak. (CVE-2010-3861, Moderate)\n\n* Flaw in bcm_connect() in the Controller Area Network (CAN) Broadcast\nManager. On 64-bit systems, writing the socket address may overflow the\nprocname character array. (CVE-2010-3874, Moderate)\n\n* Flaw in the module for monitoring the sockets of INET transport\nprotocols could allow a local, unprivileged user to cause a denial of\nservice. (CVE-2010-3880, Moderate)\n\n* Missing boundary checks in the block layer implementation could allow a\nlocal, unprivileged user to cause a denial of service. (CVE-2010-4162,\nCVE-2010-4163, CVE-2010-4668, Moderate)\n\n* NULL pointer dereference in the Bluetooth HCI UART driver could allow a\nlocal, unprivileged user to cause a denial of service. (CVE-2010-4242,\nModerate)\n\n* Flaw in the Linux kernel CPU time clocks implementation for the POSIX\nclock interface could allow a local, unprivileged user to cause a denial of\nservice. (CVE-2010-4248, Moderate)\n\n* Flaw in the garbage collector for AF_UNIX sockets could allow a local,\nunprivileged user to trigger a denial of service. (CVE-2010-4249, Moderate)\n\n* Missing upper bound integer check in the AIO implementation could allow a\nlocal, unprivileged user to cause an information leak. (CVE-2010-3067, Low)\n\n* Missing initialization flaws could lead to information leaks.\n(CVE-2010-3298, CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4074,\nCVE-2010-4075, CVE-2010-4077, CVE-2010-4079, CVE-2010-4080, CVE-2010-4081,\nCVE-2010-4082, CVE-2010-4083, CVE-2010-4158, Low)\n\n* Missing initialization flaw in KVM could allow a privileged host user\nwith access to /dev/kvm to cause an information leak. (CVE-2010-4525, Low)\n\nRed Hat would like to thank Andre Osterhues for reporting CVE-2010-2492;\nThomas Pollet for reporting CVE-2010-3865; Dan Rosenberg for reporting\nCVE-2010-4160, CVE-2010-3078, CVE-2010-3874, CVE-2010-4162, CVE-2010-4163,\nCVE-2010-3298, CVE-2010-4073, CVE-2010-4074, CVE-2010-4075, CVE-2010-4077,\nCVE-2010-4079, CVE-2010-4080, CVE-2010-4081, CVE-2010-4082, CVE-2010-4083,\nand CVE-2010-4158; Kosuke Tatsukawa for reporting CVE-2010-4263; Tavis\nOrmandy for reporting CVE-2010-3080 and CVE-2010-3067; Kees Cook for\nreporting CVE-2010-3861 and CVE-2010-4072; Nelson Elhage for reporting\nCVE-2010-3880; Alan Cox for reporting CVE-2010-4242; Vegard Nossum for\nreporting CVE-2010-4249; Vasiliy Kulikov for reporting CVE-2010-3876; and\nStephan Mueller of atsec information security for reporting CVE-2010-4525.\n", "modified": "2018-06-06T20:24:06", "published": "2011-01-11T05:00:00", "id": "RHSA-2011:0007", "href": "https://access.redhat.com/errata/RHSA-2011:0007", "type": "redhat", "title": "(RHSA-2011:0007) Important: kernel security and bug fix update", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}], "ubuntu": [{"lastseen": "2019-05-29T17:21:58", "bulletinFamily": "unix", "description": "Gleb Napatov discovered that KVM did not correctly check certain privileged operations. A local attacker with access to a guest kernel could exploit this to crash the host system, leading to a denial of service. (CVE-2010-0435)\n\nDan Rosenberg discovered that the Linux kernel TIPC implementation contained multiple integer signedness errors. A local attacker could exploit this to gain root privileges. (CVE-2010-3859)\n\nDan Rosenberg discovered that the Linux kernel X.25 implementation incorrectly parsed facilities. A remote attacker could exploit this to crash the kernel, leading to a denial of service. (CVE-2010-3873)\n\nDan Rosenberg discovered that the CAN protocol on 64bit systems did not correctly calculate the size of certain buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. (CVE-2010-3874)\n\nVasiliy Kulikov discovered that kvm did not correctly clear memory. A local attacker could exploit this to read portions of the kernel stack, leading to a loss of privacy. (CVE-2010-3881)\n\nDan Rosenberg discovered that IPC structures were not correctly initialized on 64bit systems. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4073)\n\nDan Rosenberg discovered that the ivtv V4L driver did not correctly initialize certian structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4079)\n\nDan Rosenberg discovered that the semctl syscall did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4083)\n\nDan Rosenberg discovered that the socket filters did not correctly initialize structure memory. A local attacker could create malicious filters to read portions of kernel stack memory, leading to a loss of privacy. (CVE-2010-4158)\n\nDan Rosenberg discovered that the Linux kernel L2TP implementation contained multiple integer signedness errors. A local attacker could exploit this to to crash the kernel, or possibly gain root privileges. (CVE-2010-4160)\n\nDan Rosenberg discovered that certain iovec operations did not calculate page counts correctly. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4162)\n\nDan Rosenberg discovered multiple flaws in the X.25 facilities parsing. If a system was using X.25, a remote attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4164)\n\nSteve Chen discovered that setsockopt did not correctly check MSS values. A local attacker could make a specially crafted socket call to crash the system, leading to a denial of service. (CVE-2010-4165)\n\nDave Jones discovered that the mprotect system call did not correctly handle merged VMAs. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4169)\n\nDan Rosenberg discovered that the RDS protocol did not correctly check ioctl arguments. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4175)\n\nBrad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec() calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. (CVE-2010-4243)\n\nVegard Nossum discovered that memory garbage collection was not handled correctly for active sockets. A local attacker could exploit this to allocate all available kernel memory, leading to a denial of service. (CVE-2010-4249)\n\nIt was discovered that named pipes did not correctly handle certain fcntl calls. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4256)\n\nNelson Elhage discovered that the kernel did not correctly handle process cleanup after triggering a recoverable kernel bug. If a local attacker were able to trigger certain kinds of kernel bugs, they could create a specially crafted process to gain root privileges. (CVE-2010-4258)", "modified": "2011-02-01T00:00:00", "published": "2011-02-01T00:00:00", "id": "USN-1054-1", "href": "https://usn.ubuntu.com/1054-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T17:21:58", "bulletinFamily": "unix", "description": "Gleb Napatov discovered that KVM did not correctly check certain privileged operations. A local attacker with access to a guest kernel could exploit this to crash the host system, leading to a denial of service. (CVE-2010-0435)\n\nDan Jacobson discovered that ThinkPad video output was not correctly access controlled. A local attacker could exploit this to hang the system, leading to a denial of service. (CVE-2010-3448)\n\nIt was discovered that KVM did not correctly initialize certain CPU registers. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-3698)\n\nDan Rosenberg discovered that the Linux kernel TIPC implementation contained multiple integer signedness errors. A local attacker could exploit this to gain root privileges. (CVE-2010-3859)\n\nThomas Pollet discovered that the RDS network protocol did not check certain iovec buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. (CVE-2010-3865)\n\nDan Rosenberg discovered that the Linux kernel X.25 implementation incorrectly parsed facilities. A remote attacker could exploit this to crash the kernel, leading to a denial of service. (CVE-2010-3873)\n\nDan Rosenberg discovered that the CAN protocol on 64bit systems did not correctly calculate the size of certain buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. (CVE-2010-3874)\n\nVasiliy Kulikov discovered that the Linux kernel X.25 implementation did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-3875)\n\nVasiliy Kulikov discovered that the Linux kernel sockets implementation did not properly initialize certain structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-3876)\n\nVasiliy Kulikov discovered that the TIPC interface did not correctly initialize certain structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-3877)\n\nNelson Elhage discovered that the Linux kernel IPv4 implementation did not properly audit certain bytecodes in netlink messages. A local attacker could exploit this to cause the kernel to hang, leading to a denial of service. (CVE-2010-3880)\n\nDan Rosenberg discovered that IPC structures were not correctly initialized on 64bit systems. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4073)\n\nDan Rosenberg discovered that the USB subsystem did not correctly initialize certian structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4074)\n\nDan Rosenberg discovered that the SiS video driver did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4078)\n\nDan Rosenberg discovered that the ivtv V4L driver did not correctly initialize certian structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4079)\n\nDan Rosenberg discovered that the RME Hammerfall DSP audio interface driver did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4080, CVE-2010-4081)\n\nDan Rosenberg discovered that the VIA video driver did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4082)\n\nDan Rosenberg discovered that the semctl syscall did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-4083)\n\nJames Bottomley discovered that the ICP vortex storage array controller driver did not validate certain sizes. A local attacker on a 64bit system could exploit this to crash the kernel, leading to a denial of service. (CVE-2010-4157)\n\nDan Rosenberg discovered that the Linux kernel L2TP implementation contained multiple integer signedness errors. A local attacker could exploit this to to crash the kernel, or possibly gain root privileges. (CVE-2010-4160)\n\nSteve Chen discovered that setsockopt did not correctly check MSS values. A local attacker could make a specially crafted socket call to crash the system, leading to a denial of service. (CVE-2010-4165)\n\nDave Jones discovered that the mprotect system call did not correctly handle merged VMAs. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4169)\n\nIt was discovered that multithreaded exec did not handle CPU timers correctly. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4248)\n\nVegard Nossum discovered that memory garbage collection was not handled correctly for active sockets. A local attacker could exploit this to allocate all available kernel memory, leading to a denial of service. (CVE-2010-4249)", "modified": "2011-02-25T00:00:00", "published": "2011-02-25T00:00:00", "id": "USN-1073-1", "href": "https://usn.ubuntu.com/1073-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T17:22:42", "bulletinFamily": "unix", "description": "Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. (CVE-2010-4075)\n\nDan Rosenberg discovered that the socket filters did not correctly initialize structure memory. A local attacker could create malicious filters to read portions of kernel stack memory, leading to a loss of privacy. (CVE-2010-4158)\n\nDan Rosenberg discovered that certain iovec operations did not calculate page counts correctly. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4162)\n\nDan Rosenberg discovered that the SCSI subsystem did not correctly validate iov segments. A local attacker with access to a SCSI device could send specially crafted requests to crash the system, leading to a denial of service. (CVE-2010-4163, CVE-2010-4668)\n\nDan Rosenberg discovered multiple flaws in the X.25 facilities parsing. If a system was using X.25, a remote attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4164)\n\nAlan Cox discovered that the HCI UART driver did not correctly check if a write operation was available. If the mmap_min-addr sysctl was changed from the Ubuntu default to a value of 0, a local attacker could exploit this flaw to gain root privileges. (CVE-2010-4242)\n\nNelson Elhage discovered that the kernel did not correctly handle process cleanup after triggering a recoverable kernel bug. If a local attacker were able to trigger certain kinds of kernel bugs, they could create a specially crafted process to gain root privileges. (CVE-2010-4258)\n\nTavis Ormandy discovered that the install_special_mapping function could bypass the mmap_min_addr restriction. A local attacker could exploit this to mmap 4096 bytes below the mmap_min_addr area, possibly improving the chances of performing NULL pointer dereference attacks. (CVE-2010-4346)", "modified": "2011-04-05T00:00:00", "published": "2011-04-05T00:00:00", "id": "USN-1105-1", "href": "https://usn.ubuntu.com/1105-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:34:24", "bulletinFamily": "unix", "description": "[2.6.9-89.35.1.0.1.EL]\n- [XEN] fix cpu hotplug crash (Joe Jin) [orabug 7521308]\n- [XEN] Bring up vcpus before khelper init (Joe Jin) [orabug 7521308]\n- [XEN] flush the tlb cache immediately (Dave McCracken, Scott Shi) [orabug 9138767]\n- fix skb alignment that was causing sendto() to fail with EFAULT\n (Olaf Kirch) [orabug 6845794] - fix enomem due to larger mtu size page alloc (Zach Brown) [orabug 5486128]\n- backout patch sysrq-b that queues upto keventd thread (Guru Anbalagane)\n [orabug 6125546]\n- netrx/netpoll race avoidance (Tina Yang) [orabug 6143381]\n- [XEN] Fix elf_core_dump (Tina Yang) [orabug 6995928]\n- use lfence instead of cpuid instruction to implement memory barriers\n (Herbert van den Bergh) [orabug 7452412]\n- add netpoll support to xen netfront (Tina Yang) [orabz 7261]\n- [xen] execshield: fix endless GPF fault loop (Stephen Tweedie)\n [orabug 7175395]\n- [xen]: port el5u2 patch that allows 64-bit PVHVM guest to boot with 32-bit\n dom0 [orabug 7452107] xenstore\n- [mm] update shrink_zone patch to allow 100% swap utilization (John Sobecki,\n Chris Mason, Chuck Anderson, Dave McCracken) [orabug 7566319,6086839]\n- [kernel] backport report_lost_ticks patch from EL5.2 (John Sobecki)\n [orabug 6110605]\n- [xen] fix for hung JVM thread after #GPF [orabug 7916406] (Chuck Anderson)\n- port EL5U3 patch to adjust totalhigh_pages in the balloon driver\n [orabug 8300888]\n- check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug7556514]\n- [XEN] use hypercall to fixmap pte updates (Mukesh Rathor) [orabug 8433329]\n- fix oops in nlmclnt_mark_reclaim (Trond Myklebust) [orabug 8568878]\n- [x86_64] Allowed machine_reboot running on boot_cpu (Joe Jin) [orabug 8425237]\n- FP register state is corrupted during the handling a SIGSEGV (Chuck Anderson)\n [orabug 7708133]\n- [x86_64]: fix x86_64 largesmp kernel reboot hang (Joe Jin) [orabug bug9126592]\n- [nfs]: fix file attribute caching (Chuck Lever, Herbert van den Bergh)\n [orabug 8449921]\n- [mm] revert patch #2042 (John Sobecki) [orabug 8895251]\n- [x86_64] Add compat32 support for readahead and fadvise64 (John Haxby)\n [orabug 9458826]\n- [XEN] free pte on hugetlb_prefault to avoid the clear_page race\n (Dave McCracken, Joe Jin) [orabug 9493665]\n- [XEN] Flush tlb cache immediately to avoid clear_page race (Dave McCracken,\n Joe Jin) [orabug 9488844]\n- [aio] remove limit on number of retries (Srinivas Eeda) [orabug 10044782]\n[2.6.9-89.35.1]\n-unix: fix local socket dos (Neil Horman) [656757 656758] {CVE-2010-4249}\n-serial: clean data before filling it (Mauro Carvalho Chehab) [648808 648809]\n-net: fix reception of completely page backed sk_buffs (Andy Gospodarek) [664667 500921]\n-net: filter: make sure filters dont read uninitialized memory (Jiri Pirko) [651700 651701] {CVE-2010-4158}\n[2.6.9-89.34.1]\n-alsa: rme9652: prevent reading uninitialized stack memory (Stanislaw Gruszka) [648806 648807] {CVE-2010-4080}\n-bluetooth: fix missing null check (Jarod Wilson) [655662 655663] {CVE-2010-4242}\n-ipc: initialize structure memory to zero for compat functions (Xiaotian Feng) [648810 648811] {CVE-2010-4073}\n-ipc: shm: fix information leak to userland (Xiaotian Feng) [648816 648817] {CVE-2010-4072}\n-kernel: failure to revert address limit override in oops error path (Dave Anderson) [659568 659569] {CVE-2010-4258}\n-net: limit sendto()/recvfrom()/iovec total length to INT_MAX (Jiri Pirko) [656871 651924] {CVE-2010-3859}\n-net: packet: fix information leak to userland (Jiri Pirko) [649895 649896] {CVE-2010-3876}\n-scsi: gdth: integer overflow in ioc_general (Frantisek Hrbata) [651173 651174] {CVE-2010-4157}\n-sys_semctl: semctl fix kernel stack leakage (Xiaotian Feng) [648793 648794] {CVE-2010-4083}", "modified": "2011-01-18T00:00:00", "published": "2011-01-18T00:00:00", "id": "ELSA-2011-0162", "href": "http://linux.oracle.com/errata/ELSA-2011-0162.html", "title": "kernel security and bug fix update", "type": "oraclelinux", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:38:21", "bulletinFamily": "unix", "description": "[2.6.9-100]\n-cxgb3: prevent reading uninitialized stack memory to fix xgb_extension_ioctl infoleak (Eugene Teo) [633153] {CVE-2010-3296}\n-mlx4: disable MSI-X by default (Andy Gospodarek) [530596]\n-ext3: call fs invalidatepage instead of block_invalidatepage (Josef Bacik) [488611]\n-av7110: check for negative array offset (Mauro Carvalho Chehab) [672400] {CVE-2011-0521}\n-ext3: don not dirty unmapped data buffers (Josef Bacik) [488611]\n-net: clear heap allocations for privileged ethtool actions (Jiri Pirko) [672431] {CVE-2010-4655}\n[2.6.9-99]\n-bonding: fix active backup failover due to jiffie wrap (Andy Gospodarek) [641112]\n[2.6.9-98]\n-sound: fix a buffer overflow in the oss mixer (David Howells) [667619] {CVE-2010-4527}\n[2.6.9-97]\n-fs: fix filesystem corruption on ext2 (Alexander Viro) [662839]\n-sky2: fix oops in sky2_xmit_frame after tx timeout (Don Howard) [614559]\n-netdump: fix netdump failures on large memory systems (Neil Horman) [488557]\n[2.6.9-96]\n-usb: ehci amd periodic frame list table quirk (Don Zickus) [651334]\n-fs: truncate blocks outside i_size after O_DIRECT write error (Eric Sandeen) [665067]\n[2.6.9-95]\n-jbd: skip buffers that have a different jh (Josef Bacik) [488611]\n-unix: fix local socket dos (Neil Horman) [656758] {CVE-2010-4249}\n-s390x: qdio: fix zfcp stall with more than 63 active qdio devices (Hendrik Brueckner) [662130]\n-ehci-hcd: fix fatal error during bootup (Don Zickus) [656447]\n[2.6.9-94]\n-modules: sysctl to block module loading (Jerome Marchand) [645220]\n-redhat: added config_security_dmesg_restrict option (Frantisek Hrbata) [653252]\n-kernel: restrict unprivileged access to kernel syslog (Frantisek Hrbata) [653252]\n-sysctl: introduce ctl_unnumbered definition in sysctl.h (Frantisek Hrbata) [653252]\n-usb: allow usbstorage to have luns greater than 2TB (Don Zickus) [658824]\n-serial: clean data before filling it (Mauro Carvalho Chehab) [648809] {CVE-2010-4075}\n-sched: fix task starvation on Hyperthreaded cpus (Vitaly Mayatskikh) [488089]\n-s390: sclp: handle zero length event buffers (Hans-Joachim Picht) [487692]\n[2.6.9-93]\n-kernel: failure to revert address limit override in oops error path (Dave Anderson) [659569] {CVE-2010-4258}\n-nfsv4: fix oops in nfs4_kill_super (Jeff Layton) [660448]\n-net: filter: make sure filters dont read uninitialized memory (Jiri Pirko) [651701] {CVE-2010-4158}\n-net: limit sendto()/recvfrom()/iovec total length to INT_MAX (Jiri Pirko) [651924] {CVE-2010-3859}\n-bluetooth: fix missing null check (Jarod Wilson) [655663] {CVE-2010-4242}\n-ipc: initialize structure memory to zero for compat functions (Xiaotian Feng) [648811] {CVE-2010-4073}\n-ipc: shm: fix information leak to userland (Xiaotian Feng) [648817] {CVE-2010-4072}\n-netfront: default to copying instead of flipping (Laszlo Ersek) [653505]\n-net: packet: fix information leak to userland (Jiri Pirko) [649896] {CVE-2010-3876}\n-scsi: gdth: integer overflow in ioc_general (Frantisek Hrbata) [651174] {CVE-2010-4157}\n-sys_semctl: semctl fix kernel stack leakage (Xiaotian Feng) [648794] {CVE-2010-4083}\n-alsa: rme9652: prevent reading uninitialized stack memory (Stanislaw Gruszka) [648807] {CVE-2010-4080}\n-fs: only return EIO once on msync/fsync after IO failure (Rik van Riel) [645633]\n-xen: virtio_net: add get_drvinfo() to virtio_net (Laszlo Ersek) [647196]\n-xen: netfront: add get_drvinfo() to netfront (Laszlo Ersek) [647187]\n-kernel: fix possible integer overflow in mm/fremap.c (Larry Woodman) [637045]\n[2.6.9-92]\n-mm: revert patch to reduce large file latency during writebacks (Larry Woodman) [488070]\n[2.6.9-91]\n-mm: prevent panic when setting /proc/sys/vm/nr_hugepages (Larry Woodman) [647567]\n-net: sctp: do not reset the packet during sctp_packet_config() (Jiri Pirko) [637865] {CVE-2010-3432}\n-scsi: fix panic in sysfs_hash_and_remove() when scsi device is removed (Mark Goodwin) [533299]\n[2.6.9-90]\n-kernel: prevent heap corruption in snd_ctl_new() (Jerome Marchand) [638482] {CVE-2010-3442}\n-forcedeth: latest bugfixes from upstream (Ivan Vecera) [552953]\n-forcedeth: remove CONFIG_FORCEDETH_NAPI=y from config-generic (Ivan Vecera) [552953]\n[2.6.9-89.45]\n-scsi: scsi_do_req submitted commands (tape) never complete when device goes (Rob Evers) [636289]\n-scsi: log msg when getting unit attention (Mike Christie) [585430]\n-jbd: fix panic in jbd when running bashmemory (Josef Bacik) [488611]\n-qla2xxx: work around hypertransport sync flood error on sun x4200 with qla2xxx (Chad Dupuis) [621621]\n-aio: implement request batching for better merging and throughput (Jeff Moyer) [508377]\n-fs: a bunch of patches to fix various nfsd/iget() races (Alexander Viro) [189918]\n-net: bonding: add debug module option (Jiri Pirko) [247116]\n-fix fd leaks if pipe() is called with an invalid address (Amerigo Wang) [509627]\n[2.6.9-89.44]\n-ide-scsi: fix deadlock in ide-scsi error handler (Doug Ledford) [526966]\n-mlx4_core: allocate sufficient memory for interrupt table (Doug Ledford) [530596]\n-mptbase: panic with domain validation while rebuilding after the disk is replaced (Rob Evers) [476874]\n-fs: buffer: __block_write_full_page simplification by removing last_bh logic (Jeff Moyer) [472752]\n-fs: buffer: __block_write_full_page speedup by removing get_bh() and put_bh() (Jeff Moyer) [472752]\n-fs: buffer: __block_write_full_page race fix (Jeff Moyer) [472752]\n-kernel: fix integer overflow in groups_search (Jerome Marchand) [457519]\n-cifs: remove bogus check in ntlm session setup code (Jeff Layton) [604786]\n-cifs: when renaming don not try to unlink negative dentry (Jeff Layton) [500904]\n-autofs4: fix lookup deadlock when user space uses a signal (Ian Kent) [477017]\n-fs: make sure data stored into inode is properly seen before unlocking new inode (Eric Sandeen) [563920]\n-ipc: hard_msgmax should be higher not lower on 64bit (Amerigo Wang) [525815]\n-fs: fix file truncations when both suid and write permissions set (Amerigo Wang) [525398]\n-block: fix rcu accesses in partition statistics (Jerome Marchand) [517523]\n-kernel headers: fix missing defintion that causes build break (Neil Horman) [504593]\n[2.6.9-89.43]\n-aacraid: fix file system going into read only mode (Rob Evers) [624713]\n-blkfront: xen domu, raid1, lvm, iscsi target export with blockio bug (Paolo Bonzini) [490148]\n-cciss: change version from 2.6.20.RH2 to 2.6.20.RH3 (Tomas Henzl) [594086]\n-cciss: added printk in do_cciss_request before BUG() (Tomas Henzl) [594086]\n-cciss: fix a nulll pointer dereference in complete_command() (Tomas Henzl) [594086]\n-cciss: fix an issue when sending command with no data (Tomas Henzl) [594086]\n-mm: honor __GFP_NOFAIL flag in __alloc_pages() (Lachlan McIlroy) [605455]\n-xen: fix crashing of x86 hvm guest on x86_64 (Radim Krcmar) [637658]\n-xen: hide xenbus warnings on hvm guest shutdown (Radim Krcmar) [505081]\n-powernow-k8: fix errant print statement during voltage transitions (Bhavna Sarathy) [217829]\n-fusion: add sleep before subsequent tur in scan function (Tomas Henzl) [495236]\n-bonding: fix a race condition in calls to slave mii ioctls (Flavio Leitner) [621209]\n-s390x: cio: vary off on chpid 00 causes unexpected recovery actions (Hendrik Brueckner) [619855]\n-netfilter: arp_tables: fix unaligned accesses caused by casting strings to long (Jiri Pirko) [591638]\n-net: neigh: fix state transition incomplete->failed via netlink request (Jiri Pirko) [485904]\n-x86_64: floating point state corruption after handling the signal (Oleg Nesterov) [564381]\n-pidhashing: enforce pid_max_limit in sysctls and lower pid_max_limit on 32bit systems (Jiri Pirko) [525941]\n-s390: cio: linux does not boot through xautolog with conmode 3270 (Hans-Joachim Picht) [526282]\n-net: fix proc net ip_conntrack seq_file operations (Danny Feng) [524884]\n-ia64: swiotlb: fix swiotlb pci_map_sg error handling (Tomas Henzl) [525427]\n-xen: try harder to balloon up under memory pressure (Andrew Jones) [507847]\n-mm: fix bogus memory node assumption in huge page allocation (AMEET M. PARANJAPE) [506827]\n-kernel: binfmt_misc c: avoid potential kernel stack overflow (Vitaly Mayatskikh) [459466]\n-net: fix ipvs wrr scheduler bug of updating current weight (Vitaly Mayatskikh) [462717]\n[2.6.9-89.42]\n-net: actually copy input_dev to new sk_buff in skb_clone (Andy Gospodarek) [616710]\n-net: fix reception of completely page backed sk_buffs (Andy Gospodarek) [500921]\n-net: fix various snmp counter issues (Thomas Graf) [500889]\n-xen: can enter tickless mode with rcu pending and hang (Paolo Bonzini) [427998]\n-xen: fix occasional deadlocks in xen netfront (Paolo Bonzini) [480937]\n-xen: xenbus suspend_mutex remains locked on trans fail (Paolo Bonzini) [456649]\n-ext2: put explicit checks to not divide by zero (Josef Bacik) [500181]\n-usb: ehci split iso fixes, full speed audio etc (Don Zickus) [624117]\n-xenbus: implement O_NONBLOCK for /proc/xen/xenbus (Paolo Bonzini) [607261]\n-nfs: initialize nfs_open_context list member at allocation time (Jeff Layton) [634632]\n-cifs: fix dentry hash calculation for case insensitive mounts (Jeff Layton) [562949]\n-cifs: fix length calculation for converted unicode readdir names (Jeff Layton) [562949]\n[2.6.9-89.41]\n-bonding: fix ALB mode to balance traffic on vlans (Flavio Leitner) [640803]\n[2.6.9-89.40]\n-bonding: interface doesn t issue igmp report on slave interface during failover (Flavio Leitner) [637556]\n[2.6.9-89.39]\n-net: fix info leak in police code (Neil Horman) [636390] {CVE-2010-3477}\n-aio: check for multiplication overflow in io_submit (Jeff Moyer) [629447] {CVE-2010-3067}\n-fs: buffer.c: fix race in __block_prepare_write (Jeff Moyer) [480404]\n-3c59x: fix deadlock in irq handler tx path when netconsole in use (Neil Horman) [557380]\n-udp: use memory barrier in datagram_poll (Flavio Leitner) [546251]\n[2.6.9-89.38]\n-compat: make compat_alloc_user_space incorporate the access_ok (Xiaotian Feng) [634462] {CVE-2010-3081}\n-ext3: ensure inode is deleted from orphan list in ext3_direct_io() (Lachlan McIlroy) [629143]\n-sb800: add quirk for iso on amd sb800 (Pete Zaitcev) [537447]\n[2.6.9-89.37]\n-virtio_net: Fix MAX_PACKET_LEN to support 802.1Q VLANs (Michael S. Tsirkin) [607533]\n-do_generic_mapping_read: clear page errors when issuing a fresh read of the page (Rik van Riel) [481371]\n-ide: backport VIA PCI chipset ids to via82cxxx driver (Mauro Carvalho Chehab) [504778]\n-nfsd4: relax new lock seqid check (Jeff Layton) [577369]\n-igb: fix transmission of jumbo frames with mtu>=2100 (Stefan Assmann) [494597]\n-net: fix tcp conntrack to handle the half opened connection correctly (Jiri Pirko) [531914]\n-net: fix promisc refcounting for interfaces listening for multicast traffic (Neil Horman) [481292]\n-sctp: assign tsns earlier to avoid reordering (Neil Horman) [532045]\n-cciss: switch to using hlist to fix panic (Tomas Henzl) [479090]\n-nfs: statfs error handling and error message fix (Jeff Layton) [520018]\n-kthreads: fix kthread_create vs kthread_stop race (Oleg Nesterov) [519006]\n[2.6.9-89.36]\n-nfsd4: fix share conflict tests in nfs_check_open() (Jeff Layton) [510184]\n-nfsd4: move open owner checks from nfsd4_process_open2 into new function (Jeff Layton) [510184]\n-nfsd4: renew lease on seqid modifying operations (Jeff Layton) [508752]\n-ahci: add SATA GEN3 related messages (David Milburn) [512715]\n-igmp: fix ip_mc_sf_allow() race due to a lock problem (Flavio Leitner) [562904]\n-xen: don not recreate xenfb thread on every restore (Chris Lalancette) [543823]\n-bcm5709: update firmware for bcm5709 from version 4.4.23 to 4.6.15 (John Feeney) [532858]\n-net: apply broken_stats workaround to 5706 and 5708 (Flavio Leitner) [515274]\n-nfsd: fix races when cleaning up after last nfsd thread exits (Jeff Layton) [501500]\n-nfs: nfsd returns nfs4_ok when the owner opens a file with permission set to 000 (Peter Staubach) [507527]\n-nfsv4: send the delegation stateid for setattr calls (Jeff Layton) [502884]\n-nfsv4: fix up races in nfs4_proc_setattr (Jeff Layton) [502884]\n-nfsv4: don t reuse expired nfs4_state_owner structs (Jeff Layton) [502884]\n-nfsv4: fix a credential reference leak in nfs4_get_state_owner (Jeff Layton) [502884]\n-nfsv4: poll more aggressively when handling nfs4err_delay (Jeff Layton) [502884]\n-nfsv4: flush nfsv4 work workqueue before killing superblock (Jeff Layton) [501335]\n-nfsv4: only queue nfs4_close_state job when called by rpciod (Jeff Layton) [501335]\n-nfsv4: switch nfs4 workqueue to a per client queue (Jeff Layton) [501335]\n-nfs: mounted nfsv4/krb5 export inaccessible following an nfs server reboot (Harshula) [514684] ", "modified": "2011-02-23T00:00:00", "published": "2011-02-23T00:00:00", "id": "ELSA-2011-0263", "href": "http://linux.oracle.com/errata/ELSA-2011-0263.html", "title": "Oracle Linux 4.9 kernel security and bug fix update", "type": "oraclelinux", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:38:24", "bulletinFamily": "unix", "description": "[2.6.9-89.33.1.0.1.EL]\n- [XEN] fix cpu hotplug crash (Joe Jin) [orabug 7521308]\n- [XEN] Bring up vcpus before khelper init (Joe Jin) [orabug 7521308]\n- [XEN] flush the tlb cache immediately (Dave McCracken, Scott Shi) [orabug 9138767]\n- fix skb alignment that was causing sendto() to fail with EFAULT\n (Olaf Kirch) [orabug 6845794] - fix enomem due to larger mtu size page alloc (Zach Brown) [orabug 5486128]\n- backout patch sysrq-b that queues upto keventd thread (Guru Anbalagane)\n [orabug 6125546]\n- netrx/netpoll race avoidance (Tina Yang) [orabug 6143381]\n- [XEN] Fix elf_core_dump (Tina Yang) [orabug 6995928]\n- use lfence instead of cpuid instruction to implement memory barriers\n (Herbert van den Bergh) [orabug 7452412]\n- add netpoll support to xen netfront (Tina Yang) [orabz 7261]\n- [xen] execshield: fix endless GPF fault loop (Stephen Tweedie)\n [orabug 7175395]\n- [xen]: port el5u2 patch that allows 64-bit PVHVM guest to boot with 32-bit\n dom0 [orabug 7452107] xenstore\n- [mm] update shrink_zone patch to allow 100% swap utilization (John Sobecki,\n Chris Mason, Chuck Anderson, Dave McCracken) [orabug 7566319,6086839]\n- [kernel] backport report_lost_ticks patch from EL5.2 (John Sobecki)\n [orabug 6110605]\n- [xen] fix for hung JVM thread after #GPF [orabug 7916406] (Chuck Anderson)\n- port EL5U3 patch to adjust totalhigh_pages in the balloon driver\n [orabug 8300888]\n- check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug7556514]\n- [XEN] use hypercall to fixmap pte updates (Mukesh Rathor) [orabug 8433329]\n- fix oops in nlmclnt_mark_reclaim (Trond Myklebust) [orabug 8568878]\n- [x86_64] Allowed machine_reboot running on boot_cpu (Joe Jin) [orabug 8425237]\n- FP register state is corrupted during the handling a SIGSEGV (Chuck Anderson)\n [orabug 7708133]\n- [x86_64]: fix x86_64 largesmp kernel reboot hang (Joe Jin) [orabug bug9126592]\n- [nfs]: fix file attribute caching (Chuck Lever, Herbert van den Bergh)\n [orabug 8449921]\n- [mm] revert patch #2042 (John Sobecki) [orabug 8895251]\n- [x86_64] Add compat32 support for readahead and fadvise64 (John Haxby)\n [orabug 9458826]\n- [XEN] free pte on hugetlb_prefault to avoid the clear_page race\n (Dave McCracken, Joe Jin) [orabug 9493665]\n- [XEN] Flush tlb cache immediately to avoid clear_page race (Dave McCracken,\n Joe Jin) [orabug 9488844]\n[2.6.9-89.33.1]\n-net: sctp: do not reset the packet during sctp_packet_config() (Jiri Pirko) [637864 637865] {CVE-2010-3432}\n[2.6.9-89.32.1]\n-time: implement 'fine grained accounting' for PM timer depending on 'divider' and 'pmtimer_fine_grained' kernel parameters (Ulrich Obergfell) [629237 586307]\n-time: initialize 'tick_nsec' depending on 'divider' and 'pmtimer_fine_grained' kernel parameters (Ulrich Obergfell) [629237 586307]\n-time: introduce 'pmtimer_fine_grained' kernel parameter (Ulrich Obergfell) [629237 586307]\n-kernel: prevent heap corruption in snd_ctl_new() (Jerome Marchand) [638481 638482] {CVE-2010-3442}\n-cciss: change version from 2.6.20.RH2 to 2.6.20.RH3 (Tomas Henzl) [640193 594086]\n-cciss: added printk in do_cciss_request before BUG() (Tomas Henzl) [640193 594086]\n-cciss: fix a nulll pointer dereference in complete_command() (Tomas Henzl) [640193 594086]\n-cciss: fix an issue when sending command with no data (Tomas Henzl) [640193 594086]\n-qla2xxx: work around hypertransport sync flood error on sun x4200 with qla2xxx (Chad Dupuis) [640919 621621]\n-bonding: interface doesn t issue igmp report on slave interface during failover (Flavio Leitner) [641002 637556]\n-mptbase: panic with domain validation while rebuilding after the disk is replaced (Rob Evers) [641137 476874]\n-bonding: fix ALB mode to balance traffic on vLANs (Flavio Leitner) [641254 640803]\n-net: actually copy input_dev to new sk_buff in skb_clone (Andy Gospodarek) [642746 616710]\n-usb: testing the wrong variable in fs_create_by_name() (Don Howard) [643342 594633]\n-scsi: scsi_do_req submitted commands (tape) never complete when device goes (Rob Evers) [644816 636289]\n-3c59x: fix deadlock in irq handler tx path when netconsole in use (Neil Horman) [648407 557380]", "modified": "2010-12-01T00:00:00", "published": "2010-12-01T00:00:00", "id": "ELSA-2010-0936", "href": "http://linux.oracle.com/errata/ELSA-2010-0936.html", "title": "kernel security and bug fix update", "type": "oraclelinux", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "centos": [{"lastseen": "2019-12-20T18:23:54", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2011:0162\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A heap overflow flaw was found in the Linux kernel's Transparent\nInter-Process Communication protocol (TIPC) implementation. A local,\nunprivileged user could use this flaw to escalate their privileges.\n(CVE-2010-3859, Important)\n\n* Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\nin the Linux kernel. A local user with access to \"/dev/gdth\" on a 64-bit\nsystem could use these flaws to cause a denial of service or escalate their\nprivileges. (CVE-2010-4157, Moderate)\n\n* A NULL pointer dereference flaw was found in the Bluetooth HCI UART\ndriver in the Linux kernel. A local, unprivileged user could use this flaw\nto cause a denial of service. (CVE-2010-4242, Moderate)\n\n* A flaw was found in the Linux kernel's garbage collector for AF_UNIX\nsockets. A local, unprivileged user could use this flaw to trigger a\ndenial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n\n* Missing initialization flaws were found in the Linux kernel. A local,\nunprivileged user could use these flaws to cause information leaks.\n(CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\nCVE-2010-4083, CVE-2010-4158, Low)\n\nRed Hat would like to thank Alan Cox for reporting CVE-2010-4242; Vegard\nNossum for reporting CVE-2010-4249; Vasiliy Kulikov for reporting\nCVE-2010-3876; Kees Cook for reporting CVE-2010-4072; and Dan Rosenberg for\nreporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\nCVE-2010-4158.\n\nThis update also fixes the following bugs:\n\n* A flaw was found in the Linux kernel where, if used in conjunction with\nanother flaw that can result in a kernel Oops, could possibly lead to\nprivilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\nsysctl panic_on_oops variable is turned on by default. However, as a\npreventive measure if the variable is turned off by an administrator, this\nupdate addresses the issue. Red Hat would like to thank Nelson Elhage for\nreporting this vulnerability. (BZ#659568)\n\n* On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\nachieved by using page-based sk_buff buffers without any packet split. The\nentire frame data is copied to the page(s) rather than some to the\nskb->data area and some to the page(s) when performing a typical\npacket-split. This caused problems with the filtering code and frames were\ngetting dropped before they were received by listening applications. This\nbug could eventually lead to the IP address being released and not being\nable to be re-acquired from DHCP if the MTU (Maximum Transfer Unit) was\nchanged (for an affected interface using the e1000e driver). With this\nupdate, frames are no longer dropped and an IP address is correctly\nre-acquired after a previous release. (BZ#664667)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-January/029283.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-January/029284.html\n\n**Affected packages:**\nkernel\nkernel-devel\nkernel-doc\nkernel-hugemem\nkernel-hugemem-devel\nkernel-largesmp\nkernel-largesmp-devel\nkernel-smp\nkernel-smp-devel\nkernel-xenU\nkernel-xenU-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-0162.html", "modified": "2011-01-27T09:26:05", "published": "2011-01-27T09:25:23", "href": "http://lists.centos.org/pipermail/centos-announce/2011-January/029283.html", "id": "CESA-2011:0162", "title": "kernel security update", "type": "centos", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-12-20T18:26:27", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2010:0936\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* A flaw in sctp_packet_config() in the Linux kernel's Stream Control\nTransmission Protocol (SCTP) implementation could allow a remote attacker\nto cause a denial of service. (CVE-2010-3432, Important)\n\n* A missing integer overflow check in snd_ctl_new() in the Linux kernel's\nsound subsystem could allow a local, unprivileged user on a 32-bit system\nto cause a denial of service or escalate their privileges. (CVE-2010-3442,\nImportant)\n\nRed Hat would like to thank Dan Rosenberg for reporting CVE-2010-3442.\n\nBug fixes:\n\n* Forward time drift was observed on virtual machines using PM\ntimer-based kernel tick accounting and running on KVM or the Microsoft\nHyper-V Server hypervisor. Virtual machines that were booted with the\ndivider=x kernel parameter set to a value greater than 1 and that showed\nthe following in the kernel boot messages were subject to this issue:\n\ntime.c: Using PM based timekeeping\n\nFine grained accounting for the PM timer is introduced which eliminates\nthis issue. However, this fix uncovered a bug in the Xen hypervisor,\npossibly causing backward time drift. If this erratum is installed in Xen\nHVM guests that meet the aforementioned conditions, it is recommended that\nthe host use kernel-xen-2.6.18-194.26.1.el5 or newer, which includes a fix\n(BZ#641915) for the backward time drift. (BZ#629237)\n\n* With multipath enabled, systems would occasionally halt when the\ndo_cciss_request function was used. This was caused by wrongly-generated\nrequests. Additional checks have been added to avoid the aforementioned\nissue. (BZ#640193)\n\n* A Sun X4200 system equipped with a QLogic HBA spontaneously rebooted and\nlogged a Hyper-Transport Sync Flood Error to the system event log. A\nMaximum Memory Read Byte Count restriction was added to fix this bug.\n(BZ#640919)\n\n* For an active/backup bonding network interface with VLANs on top of it,\nwhen a link failed over, it took a minute for the multicast domain to be\nrejoined. This was caused by the driver not sending any IGMP join packets.\nThe driver now sends IGMP join packets and the multicast domain is rejoined\nimmediately. (BZ#641002)\n\n* Replacing a disk and trying to rebuild it afterwards caused the system to\npanic. When a domain validation request for a hot plugged drive was sent,\nthe mptscsi driver did not validate its existence. This could result in the\ndriver accessing random memory and causing the crash. A check has been\nadded that describes the newly-added device and reloads the iocPg3 data\nfrom the firmware if needed. (BZ#641137)\n\n* An attempt to create a VLAN interface on a bond of two bnx2 adapters in\ntwo switch configurations resulted in a soft lockup after a few seconds.\nThis was caused by an incorrect use of a bonding pointer. With this update,\nsoft lockups no longer occur and creating a VLAN interface works as\nexpected. (BZ#641254)\n\n* Erroneous pointer checks could have caused a kernel panic. This was due\nto a critical value not being copied when a network buffer was duplicated\nand consumed by multiple portions of the kernel's network stack. Fixing the\ncopy operation resolved this bug. (BZ#642746)\n\n* A typo in a variable name caused it to be dereferenced in either mkdir()\nor create() which could cause a kernel panic. (BZ#643342)\n\n* SCSI high level drivers can submit SCSI commands which would never be\ncompleted when the device was offline. This was caused by a missing\ncallback for the request to complete the given command. SCSI requests are\nnow terminated by calling their callback when a device is offline.\n(BZ#644816)\n\n* A kernel panic could have occurred on systems due to a recursive lock in\nthe 3c59x driver. Recursion is now avoided and this kernel panic no longer\noccurs. (BZ#648407)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-January/029261.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-January/029262.html\n\n**Affected packages:**\nkernel\nkernel-devel\nkernel-doc\nkernel-hugemem\nkernel-hugemem-devel\nkernel-largesmp\nkernel-largesmp-devel\nkernel-smp\nkernel-smp-devel\nkernel-xenU\nkernel-xenU-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2010-0936.html", "modified": "2011-01-27T08:45:04", "published": "2011-01-27T08:44:20", "href": "http://lists.centos.org/pipermail/centos-announce/2011-January/029261.html", "id": "CESA-2010:0936", "title": "kernel security update", "type": "centos", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:38", "bulletinFamily": "software", "description": "===========================================================\r\nUbuntu Security Notice USN-1054-1 February 01, 2011\r\nlinux, linux-ec2 vulnerabilities\r\nCVE-2010-0435, CVE-2010-4165, CVE-2010-4169, CVE-2010-4249\r\n===========================================================\r\n\r\nA security issue affects the following Ubuntu releases:\r\n\r\nUbuntu 10.04 LTS\r\nUbuntu 10.10\r\n\r\nThis advisory also applies to the corresponding versions of\r\nKubuntu, Edubuntu, and Xubuntu.\r\n\r\nThe problem can be corrected by upgrading your system to the\r\nfollowing package versions:\r\n\r\nUbuntu 10.04 LTS:\r\n linux-image-2.6.32-28-386 2.6.32-28.55\r\n linux-image-2.6.32-28-generic 2.6.32-28.55\r\n linux-image-2.6.32-28-generic-pae 2.6.32-28.55\r\n linux-image-2.6.32-28-ia64 2.6.32-28.55\r\n linux-image-2.6.32-28-lpia 2.6.32-28.55\r\n linux-image-2.6.32-28-powerpc 2.6.32-28.55\r\n linux-image-2.6.32-28-powerpc-smp 2.6.32-28.55\r\n linux-image-2.6.32-28-powerpc64-smp 2.6.32-28.55\r\n linux-image-2.6.32-28-preempt 2.6.32-28.55\r\n linux-image-2.6.32-28-server 2.6.32-28.55\r\n linux-image-2.6.32-28-sparc64 2.6.32-28.55\r\n linux-image-2.6.32-28-sparc64-smp 2.6.32-28.55\r\n linux-image-2.6.32-28-versatile 2.6.32-28.55\r\n linux-image-2.6.32-28-virtual 2.6.32-28.55\r\n linux-image-2.6.32-312-ec2 2.6.32-312.24\r\n\r\nUbuntu 10.10:\r\n linux-image-2.6.35-25-generic 2.6.35-25.44\r\n linux-image-2.6.35-25-generic-pae 2.6.35-25.44\r\n linux-image-2.6.35-25-omap 2.6.35-25.44\r\n linux-image-2.6.35-25-powerpc 2.6.35-25.44\r\n linux-image-2.6.35-25-powerpc-smp 2.6.35-25.44\r\n linux-image-2.6.35-25-powerpc64-smp 2.6.35-25.44\r\n linux-image-2.6.35-25-server 2.6.35-25.44\r\n linux-image-2.6.35-25-versatile 2.6.35-25.44\r\n linux-image-2.6.35-25-virtual 2.6.35-25.44\r\n\r\nAfter a standard system update you need to reboot your computer to make\r\nall the necessary changes.\r\n\r\nATTENTION: Due to an unavoidable ABI change the kernel updates have\r\nbeen given a new version number, which requires you to recompile and\r\nreinstall all third party kernel modules you might have installed. If\r\nyou use linux-restricted-modules, you have to update that package as\r\nwell to get modules which work with the new kernel version. Unless you\r\nmanually uninstalled the standard kernel metapackages (e.g. linux-generic,\r\nlinux-server, linux-powerpc), a standard system upgrade will automatically\r\nperform this as well.\r\n\r\nDetails follow:\r\n\r\nGleb Napatov discovered that KVM did not correctly check certain\r\nprivileged operations. A local attacker with access to a guest kernel\r\ncould exploit this to crash the host system, leading to a denial of\r\nservice. (CVE-2010-0435)\r\n\r\nSteve Chen discovered that setsockopt did not correctly check MSS values.\r\nA local attacker could make a specially crafted socket call to crash\r\nthe system, leading to a denial of service. (CVE-2010-4165)\r\n\r\nDave Jones discovered that the mprotect system call did not correctly\r\nhandle merged VMAs. A local attacker could exploit this to crash the\r\nsystem, leading to a denial of service. (CVE-2010-4169)\r\n\r\nVegard Nossum discovered that memory garbage collection was not\r\nhandled correctly for active sockets. A local attacker could exploit\r\nthis to allocate all available kernel memory, leading to a denial of\r\nservice. (CVE-2010-4249)\r\n\r\n\r\nUpdated packages for Ubuntu 10.04 LTS:\r\n\r\n Source archives:\r\n\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2_2.6.32-312.24.diff.gz\r\n Size/MD5: 8987000 0a15b6ffeb6b82dac8f0d2183b54e89c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2_2.6.32-312.24.dsc\r\n Size/MD5: 2104 ca9acfb9f4de054200495ef9d1b3ef49\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2_2.6.32.orig.tar.gz\r\n Size/MD5: 81900940 4b1f6f6fac43a23e783079db589fc7e2\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.32-28.55.diff.gz\r\n Size/MD5: 5092730 21cd0005957f842db1436b15abe9f3c9\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.32-28.55.dsc\r\n Size/MD5: 6170 aaac9600e6505f190e5ed84878944f39\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.32.orig.tar.gz\r\n Size/MD5: 81900940 4b1f6f6fac43a23e783079db589fc7e2\r\n\r\n Architecture independent packages:\r\n\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2-doc_2.6.32-312.24_all.deb\r\n Size/MD5: 6428564 70d78e605dadc4550049757f3614cf68\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2-source-2.6.32_2.6.32-312.24_all.deb\r\n Size/MD5: 68173994 daa81e56618a4614ec21e7b63f04f8df\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-headers-2.6.32-312_2.6.32-312.24_all.deb\r\n Size/MD5: 10041174 10f1977974ad2f16af47a1217a30d6ed\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc_2.6.32-28.55_all.deb\r\n Size/MD5: 6427956 d982d2c5ce63ccded71920ae7513cc46\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.32-28_2.6.32-28.55_all.deb\r\n Size/MD5: 9906550 3b56c8b331171d4b83ab8b656c484def\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.32_2.6.32-28.55_all.deb\r\n Size/MD5: 65913962 6ee2688fda012f8b5e6973323557d293\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-tools-common_2.6.32-28.55_all.deb\r\n Size/MD5: 95494 44349b757e03fbe7c05d07f4640d96ad\r\n\r\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\r\n\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-headers-2.6.32-312-ec2_2.6.32-312.24_amd64.deb\r\n Size/MD5: 679760 b4b316d698383105533a1e461f179ba0\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-image-2.6.32-312-ec2_2.6.32-312.24_amd64.deb\r\n Size/MD5: 19885308 f3d13d705228acb376517e33460a45ee\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 245258 c083dd83bddd7b32cead685e55e30c40\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/char-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 16458 a1ce222b8d7daa8d2cbfd17b54d93893\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 50472 f7b0a06026066d79e8deec7f3f96f7b6\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 46202 a2cf9d3b9c4c54198947f02973528cfb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 52040 6435d1cdb82e2c6a7b6b83f50e924ceb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 94730 a3470bfa69fc0d70e71929c59b5167ca\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 38660 22199c692bf834dfe380c590f5cd9ebb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 540068 5e81f8f5cff4a66c2bda997acbc34bee\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 133654 b04f521c9e777d3f841c4be0638e10ff\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 100832 d7255cc68e246cfd7bfbac5b1b3c9eb8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 324100 dc8327d54937770913b719cc5f7898e1\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 4465316 2df537d769387fb9a81e8afa874ef75b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.32-28-generic_2.6.32-28.55_amd64.deb\r\n Size/MD5: 793008 e804e2beda47bf14b253ce2944a279e9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.32-28-preempt_2.6.32-28.55_amd64.deb\r\n Size/MD5: 793264 c6d3defbab41cdb2181c2cbf45ba29ef\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.32-28-server_2.6.32-28.55_amd64.deb\r\n Size/MD5: 794480 f1dd0ae306f67232cce4d47939b21446\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.32-28-generic_2.6.32-28.55_amd64.deb\r\n Size/MD5: 31695638 d627f41ffb23a536b510afa0550e0387\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.32-28-preempt_2.6.32-28.55_amd64.deb\r\n Size/MD5: 31931030 22f8a7860dccb3c7ece51f0e5a1399a3\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.32-28-server_2.6.32-28.55_amd64.deb\r\n Size/MD5: 31734548 706ea2e435894f0493109f2055727c13\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.32-28-virtual_2.6.32-28.55_amd64.deb\r\n Size/MD5: 12527482 22758db62368bf9472d5d90db6663959\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.32-28.55_amd64.deb\r\n Size/MD5: 824952 3e9ca9c36b6c30d58c3b8d7154e4f3fa\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-tools-2.6.32-28_2.6.32-28.55_amd64.deb\r\n Size/MD5: 223304 0a470b1a742bd0c520cfe0b1848c3d99\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 177468 6e4ad0743df66dcf10341e0761ca0f5c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 266802 2d26713ac7de30d426c2908600e30ce0\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 32452 f247dff43b2112bbdd5f29b303a9ce47\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 331554 0cb913c385dbd7c9f7e2d6d56fbb3cea\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 2426230 d4052d2f5992bc976fafa3b42f38e629\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 163666 6254f15ed7627aced11faf56d05f3391\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 246072 63afda04d6f0609cc4146cc0567fdeae\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 180524 e431eecca625608d3112d8cff011c7f8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 39260 d8f6a0fae18293acb5f62dc137186d30\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 152456 f9b89b24af9aed006d6e3828e5c309a6\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 77346 31ce85a50b5050bea61e305836dece36\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 22998 c94b6e6de6edf21c82740d80eef2f375\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 9742 b9752514f105a5f7c1b9eb43acb3d39e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 40876 1727693357d159f89404a22f5c158fbb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 104254 55cbd73ff31fd0e02ef847224274dac2\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 1476204 8d6652b714065978f5d20bed3dfac8a8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 40994 5994806be048cda7b8aad7d792c1b970\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/squashfs-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 15420 d3d8b006c20a1c4290aa379b9e2e5e63\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 53130 84d8e16b51ab348d760d54a5d87f187d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 134520 921c3a9b6001ecaa47ca8cd90a01be5f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 16734 d03d746bd167dd5e3d8e813bc33c566b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/vlan-modules-2.6.32-28-generic-di_2.6.32-28.55_amd64.udeb\r\n Size/MD5: 22378 6c19fd323e09df5529b89346bb6818a6\r\n\r\n i386 architecture (x86 compatible Intel/AMD):\r\n\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-headers-2.6.32-312-ec2_2.6.32-312.24_i386.deb\r\n Size/MD5: 655420 6f114ad32812e1dde95f188a3d153415\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-image-2.6.32-312-ec2_2.6.32-312.24_i386.deb\r\n Size/MD5: 19224436 25485d5f3bf1f87bbbdbda35f8bb9e36\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 207174 3103b7a465f8c50d94703e3431a07180\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 212536 d48370a99bec30a5aead214221ef3c56\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/char-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 34258 77e35784ade960740baaa336af1cf830\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/char-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 34566 8c6b25529baaf6e8e1fb2d586dbdc5cb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 48016 1eb5029ec3b567882cf52890a8fc2d5b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 48040 0a8ab3b760654e07a5a8d17de0647f02\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 43650 6fb7771de1c004cc47b89390374bba3c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 43656 fc2b8fb4e6e9b7709e37a5fb91821022\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 47832 756628bee5dfdc44672626f035128704\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 47882 331ee5afc0f980390ea9be739d8b009e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 90450 f76996473d3e8deb77b94a8738cfe396\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 90742 b8435994a1edabe689ad536ed65e66b9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 34642 83a448394d1c7a8a075a7d92d75bc2d9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 34694 89108134cff8ec1c21646a8cb3ea4731\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 535824 5c8c5a7973b10e4d89d6f76a56d8f22f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 535684 362d6466a13f88b7ea06d7cc288407bf\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 130860 bba69d3fd672406b07c51fcb36eec98f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 130864 64132cdd8b0cccf0747c085e462f0c81\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 91624 bcbe8c8d98d48410527533f3007a234f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 91686 f20edaefcf78de1acb42bc7dfc73dd3d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 305264 65d2f2b8130265389f4b1cadc06026ba\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 306270 0cc555fbd5fedafcf8604433b2940f8d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 4313792 4b1a5efbefe4b32e93e992484016f0bb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 4443756 18e9623a1a15c76256786ed2ee0581ca\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.32-28-386_2.6.32-28.55_i386.deb\r\n Size/MD5: 763818 10988467352dd82b5b70556fcdadcdd0\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.32-28-generic-pae_2.6.32-28.55_i386.deb\r\n Size/MD5: 765720 1a3a3aa15834a9e78f9949a543988d6b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.32-28-generic_2.6.32-28.55_i386.deb\r\n Size/MD5: 764418 327887ed989e7d8eb60fc57705da7008\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.32-28-386_2.6.32-28.55_i386.deb\r\n Size/MD5: 31494606 2886b2a9dfc41789f139ffd9973ec15f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.32-28-generic-pae_2.6.32-28.55_i386.deb\r\n Size/MD5: 31608926 f6a9140fb2565b60b8d1962fedf5ad84\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.32-28-generic_2.6.32-28.55_i386.deb\r\n Size/MD5: 31536668 06327237124811828ea41d4ca15fef0f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.32-28-virtual_2.6.32-28.55_i386.deb\r\n Size/MD5: 12014576 c0e3196e9a6b98905f5251aa7189e2ee\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.32-28.55_i386.deb\r\n Size/MD5: 806034 5545c31f13cf057f5c22246c4aaa2de5\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-tools-2.6.32-28_2.6.32-28.55_i386.deb\r\n Size/MD5: 215178 27b72f4f18ce22a7559059b37236d875\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 183210 abad66e8631784da80387710d3189aae\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 183396 6f055ed524c2419ea243657070f1aa4b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 249680 5797f6bcb011f94015aabdd943d8a4ce\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 252340 25efde9649f6a0d27b926872c9d5ba69\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 33838 2fd0dde45b528f7da8848cb314c529cc\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 33860 1778f8b3795cc28c3d2dae93bc5589bb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 310430 4c7c842a43d38f826a811d3b439aa84f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 310482 a17033c679f451a5fa0383c9e6194257\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 2535012 9432d2858d8049e8f804cc5d1f437a3e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 2553322 1725a4123cf8b56d168914463fd47e62\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 147202 7804fc9392a0f38bba1a0c4849da9c4f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 147312 8ef5b6368178d25724f383e3b7fe332d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 228920 8ea36133d511f9e88ee07509727a3d25\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 228964 f4bdfd55c2df44e74c8830c8890a13f0\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 166082 c4697ef917da52d222e61640b21bda03\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 166166 5ee5e7262f065f4a865ce8393a3eed18\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 36360 853a79509ca9c3df4957313d57b5cb87\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 36492 1f05408305302143a8fb5e9670c06221\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 157022 78d5bbc417dbc3cbb0fdc4c89a745c91\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 157272 17c43c4b62744f6e58cfe8ba0d18e885\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 90196 efe5beb504e05584f1caaab752b24b5e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 91094 4db5778b11f957deffeb23b9ea3153aa\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 48108 e3f8f401b0d65d692e53fee967c08285\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 48158 697e8e6d02eaf492fbeb5064a33812ef\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 9106 907bf6c225b443455497de45a26a1ba3\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 9116 357727982d8deb8c24dd34b18eb9382a\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 37460 afe07d04eee785d0ae4650662e4f2d1c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 37468 ce9c6eafb690e6b7667d0b258ac0e705\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 94002 566753f8bc1215e570cc1626d0a2e891\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 94598 5fb38544dad0535f5b1a3d268d4f7897\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 1584132 9656a768ccb23cc4d6618183e6c8e3bc\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 1535710 2a02e22d340adc80f8e90bdcd2deb282\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 37970 2c9616b89eaed2578830cf60f10f09ef\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 37976 aab753d35004d56903e34227c8fa8829\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/squashfs-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 15568 c774cee308abec787ba383e28f36fb85\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/squashfs-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 15566 1b439d6a6a19fe89053053144174a123\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 50070 5369cf31c9b435f3de2a33037125d9de\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 50104 179ccc7329ece83cfd58b4781605de87\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 123834 1364b73c03759e76eddb05a73c83987f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 124258 cac3e1816d3d0a197272c50c18358208\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 15520 43a53ed3b87e1480e00e8b3f44fc9c9b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 5702 333ef371c00df5d80d7094f4c387575b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/vlan-modules-2.6.32-28-generic-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 20766 180cea9380b3d4f233d6e7c691edf721\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/vlan-modules-2.6.32-28-generic-pae-di_2.6.32-28.55_i386.udeb\r\n Size/MD5: 20788 8cc8f03ba601fe2b861fc15d6c6c11ae\r\n\r\n armel architecture (ARM Architecture):\r\n\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 129346 35c10010fc262c708eea3bbe3a6ab8bc\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 43446 c6b502028dbeee9d5e9c10fc6054b673\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 87662 55fe7d574a06938e061606cb0205d03d\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 91778 1030a2f5a3f2c4b87a8d4c9a874aa62e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 3196298 7d3ce0be68e7140a815d09a433bc0b5e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.32-28-versatile_2.6.32-28.55_armel.deb\r\n Size/MD5: 741512 8d23e2f5694479d9e3a15c9619c3191e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.32-28-versatile_2.6.32-28.55_armel.deb\r\n Size/MD5: 20172262 c5e30641489b10f1b2500bd0022daf44\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.32-28.55_armel.deb\r\n Size/MD5: 802482 38ab178808f434667414b220b306241c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 166298 cccb578ce226580abee5beb39a51e4f8\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 279278 ee994a0d3442c558a3c9bd32582e36f1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 448026 172ddd3c15e6f10e49d6f79a2f75b302\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 226740 cb584a1931a6cd12fdb74dae3ad96e42\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 95490 1f28369ec8c963a47a596e9dccf66aac\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 38076 c16d0e283f79fee75e6226f2566e4a79\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 94522 7cd6adf1fdf3ad3d8c97816917a0639c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 55152 652835261e10c020a6bbda613511dfce\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/squashfs-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 14858 8f1947ff1325de7a1200e69fe3c99be1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 209762 6ccb2d5dabceacf2be3a7a212db883f7\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/vlan-modules-2.6.32-28-versatile-di_2.6.32-28.55_armel.udeb\r\n Size/MD5: 21174 4653164f36f71f6a20fbc206c7914a70\r\n\r\n powerpc architecture (Apple Macintosh G3/G4/G5):\r\n\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 340846 342574e72d46b43872631956a81ca060\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 281656 c99b2354371cdcfc49fdb9c53734bc36\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 60554 1ce39f363e9ecce3d7e3d0254abe1637\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 68706 16f4f4cc060e4e5e2648268db9475d62\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 48400 64c4c045f943fead31da3ccc9cf0312a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 53146 ad4abfba83c9a356a84334c59013e807\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 96776 e90ba316de8885d7affd4f6924b579ae\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 109866 de29990d7e1c419586a2ed084580871c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 41006 ea971cd9ee3ca9a57da748d05aa377c8\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 40386 e7c8b8ca459102c2519e8fd36ba22d19\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 598886 66a9062da78076213478dbb48d46bb35\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 632294 2f1614fe89875141759e4dbce0d7c5fb\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 155072 66d992a0e87516a6dee229a4b6bd3e36\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 150520 7d8c7e07a13e314f95cec5335aef84df\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 106246 5db80f4ed7a0652812b63873c015d91a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 110212 070d3168ec87a50857420bb3dcdd1091\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 418886 e9776b46a5a75bfa663a188d6b79835d\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 355156 db90edb0acbe01b09ee22e301d9c951b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 4229924 e49fb4d704bf43b8fff4d94cd2ae590e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 5630772 324e9369c69b8e50f313d37b2f9cf322\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.32-28-powerpc-smp_2.6.32-28.55_powerpc.deb\r\n Size/MD5: 868540 12522a095b75935adaf65598194aab3c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.32-28-powerpc64-smp_2.6.32-28.55_powerpc.deb\r\n Size/MD5: 887460 b54d8677f133c7e4fc85c46c7abef141\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.32-28-powerpc_2.6.32-28.55_powerpc.deb\r\n Size/MD5: 867694 fbe0135e203b03bbeaa371b9a93486e5\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.32-28-powerpc-smp_2.6.32-28.55_powerpc.deb\r\n Size/MD5: 27774850 85c258300c559a231032205f8d6ff7e4\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.32-28-powerpc64-smp_2.6.32-28.55_powerpc.deb\r\n Size/MD5: 28644060 47b235820f65be01f49e64d1b4c826d3\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.32-28-powerpc_2.6.32-28.55_powerpc.deb\r\n Size/MD5: 27536364 7c20fe67a17ca7eae72513d6bda029cb\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.32-28.55_powerpc.deb\r\n Size/MD5: 795302 2f19543e98ff628f4a03b3a72a80de15\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-tools-2.6.32-28_2.6.32-28.55_powerpc.deb\r\n Size/MD5: 231226 88d0091f363824a2e3543302d69988d6\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 244072 6ec3a9d46a8a7564b1b8b45542cd1d2f\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 257302 a9761720921c0c2f1568d971b0ab5cd5\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 221440 0569cb7844b6dac3d02e3a56a7555218\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 224134 b8010f57845a15142abe5558f9588a8a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 31958 960bb13862d34f1dbbdaff9189b2e1c3\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 36482 cb4a4c845854325dc1ee952040b9c502\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 344026 227c274ffd2b3ab45bb55e8212a6efe3\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 385876 491cd4781b1780f74f9b163b6bf8b381\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 2174716 c2f6622c80d217bc25ba69bec5a7592b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 2375316 0cd719dd702c2e7d91926701025a5ebe\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 222990 dbaebe110a46b3730a10fff26b25a618\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 217320 e2279d6c0791f136abafae6fa7f2ba44\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 260286 3841b8d30f7dec108c4c293d10d6161e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 296370 bc115d10a5adb53956c3181b656548ef\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 132040 f31ef813def1c2e4cbdbee894bd3ca02\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 154928 ea6e2dac7854e0d4241b8cb9960ed197\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 50984 ba834ca89e2896542d1c82e65849b57d\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 45510 ee4bf7627276d2d217916065904a210f\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 108056 5b219598d1907932cc09af9757f7952a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 123898 f43c8baae59c26c1d5dc56b5d07c39db\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 84348 0c2d566ddfdb44a7f7ed8091b91f9c72\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 89968 aee58d3bda4f9f62439aac72f957eb43\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 77240 4edd8f3836dc4e73433782bccafa2e7b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 28412 cd7ccd96fab2cdf20beba291a1cbf03f\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 8956 bc8fbcded3baa77fdabed709ae466f36\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 10186 600571e6087e52b413a9ff7e5b0bf529\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 62108 59e310c46a73b6379269ce17c9a18c64\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 72512 013ac1c90862b3d152979f9d394a007a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 107194 6c508ca09c2c638887b7b7021f46e39b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 136798 33e877aafc615d644e040292f534d777\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 1649222 4bb31c23d481a7043a9b8b7bbc2b97a1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 1576420 bae2f8e351ef2583d896db43d605bab2\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 78246 ccc4535e189dccf82c221fe5e599e414\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 83500 4e8c6267a217a3db12c2828eca6756ff\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/squashfs-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 17462 7d72e38a07af9206a15e4697d189a7c5\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/squashfs-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 18522 a07658db715e2458a4dc8b9932aa3ddf\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 68010 e7eff09198869bc8be1d474ca77bf589\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 80402 65129387dd13b5e66ac65ea2dc59b4b1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 152194 de9304b41dfc7de479457399a2564df1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 159724 a6b53656dc11d49003c3746ce716fac1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/vlan-modules-2.6.32-28-powerpc-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 22518 4c59b8b22c1d07f9a4dc165452a310b8\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/vlan-modules-2.6.32-28-powerpc64-smp-di_2.6.32-28.55_powerpc.udeb\r\n Size/MD5: 25788 e3c04bec55fafe0689bf4cf35131603f\r\n\r\n sparc architecture (Sun SPARC/UltraSPARC):\r\n\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 146476 8b6e5e0d50438fc619fda0a261691e37\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 71448 516414f98e8a0206648da9084db6112c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 47608 962ea23e980527f2ff1b2a78358d5a31\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 98040 535fbb7c81f2e66764b1a3946a806495\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 591776 f3bbcc5b903a29399029494b3cb36c26\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 151672 e05776bb99ffccad537ed011762f85f7\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 99370 3cfd984ddb2afdde66f81cd5c9d94c93\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 3235260 f824b31c467ae8540b119dd1eaa7cbea\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.32-28-sparc64-smp_2.6.32-28.55_sparc.deb\r\n Size/MD5: 686974 f15d7fdf179adbf0c7040416d16d7023\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.32-28-sparc64_2.6.32-28.55_sparc.deb\r\n Size/MD5: 685822 b6245df7c3a8ef0d1ed2225a84f96394\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.32-28-sparc64-smp_2.6.32-28.55_sparc.deb\r\n Size/MD5: 22692350 a842e5acc65c67f44a7c16a507c08946\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.32-28-sparc64_2.6.32-28.55_sparc.deb\r\n Size/MD5: 22232324 2bfec27fe83350aa112db843194ff091\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.32-28.55_sparc.deb\r\n Size/MD5: 805736 b71e2b4132c1580da1b9a4de2f1a3b67\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-tools-2.6.32-28_2.6.32-28.55_sparc.deb\r\n Size/MD5: 232786 5d7a4e6b721b26243f6cd8e1375223b0\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 234870 9eb6a09780e38b72d8e1a8e06887ce01\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 215162 d9aefb4204543b027f911728c34035f5\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 31902 1d99ad8b6d9988a3c5c2928bbecf4f57\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 337276 f353b17f563574a5cd66d0e74469b625\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 1812762 d7888abdfaba1f78ee53bff09c83d52c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 247296 a1fa5f7172178bf921e8f6efc6071901\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 140172 c876df53300d1d64d247daa68e22714a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 39954 4bce54b8a48a6fc74cb4e43c625227ff\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 207162 82901639c6e383b9e0300654bde5e226\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 9182 0e34fd322f328cf0d9dcb4eafd144cfa\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 64472 705e42ebb94bf8a6844b737caa9fabc2\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 213360 c2e04c96f8d789dc85658f202348bd79\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 1304788 a6ac22f9ae3980789cb3751dbebc0dfa\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 96628 9c61da9973d25f77c9bb55e8a707ac86\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/squashfs-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 17706 0b9a0ea76090d5cd468e73a5f87f29da\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 208396 c702b360697d79371997274762fc3cee\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 193384 da5904407230ba583ac24e9bfc59ef7f\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/vlan-modules-2.6.32-28-sparc64-di_2.6.32-28.55_sparc.udeb\r\n Size/MD5: 27198 80156933d4e4bd242196e0e7a61996cc\r\n\r\nUpdated packages for Ubuntu 10.10:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.35-25.44.diff.gz\r\n Size/MD5: 3718650 1c5262e3416693473677f033ca388706\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.35-25.44.dsc\r\n Size/MD5: 6539 4a134aa711518dfc655e1fbbcfe60743\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.35.orig.tar.gz\r\n Size/MD5: 88300782 62001687bd94d1c0dd9a3654c64257d6\r\n\r\n Architecture independent packages:\r\n\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc_2.6.35-25.44_all.deb\r\n Size/MD5: 6680698 0de88b1de4a06c398be5340aae61e9cb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.35-25_2.6.35-25.44_all.deb\r\n Size/MD5: 10323478 adc44ee8e923ffa9be850b8620c838cb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.35_2.6.35-25.44_all.deb\r\n Size/MD5: 72444300 21e32945f089aead209863c720a770cd\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-tools-common_2.6.35-25.44_all.deb\r\n Size/MD5: 102024 d30e2c959f0dd7b43a1a5bcd490213fb\r\n\r\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\r\n\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 236840 cd47499ba4caa7d229a15fa586a1cd9e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 9516 1b51afefe16550a1287dbbca9d804602\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/char-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 18146 c5facd2399bfbbfae22f977c030cd5d7\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 50084 1d9f464d4377f081e61ba1b93b50e265\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 50088 891d618c3927b54dd9092a438217a66c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 46866 de1ac3e361af1398e0512ec0045894eb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 42980 656acba4f949fbd1dec5ba62238d2952\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 15128 a4402d2903c68b687d1df137204eb5f0\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 15124 4dbdfeca9b2ef67cab6ddb05aa98b9c5\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 95796 fcf3dcc9b315cf0ebaa64fcd593beaeb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 39394 fbd0bca3a9774af6a7d69e701ba015e1\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 39302 e468f09cc345ce01f5bd742d4908100c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 599984 122659e77eb65437db4e9b731d0874bc\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 354332 29b4d7f94f474602b3f13167688901b0\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 406362 011364ed716380be9c8e2092ea006488\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 272164 0a1c643e42689fa3a432e31f9921daa3\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 103080 e800ffc5f8ac283415b022783d7f401f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 319794 32a07978e61a34343a39ded452d96fe7\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 170880 cd8a7d5ced417c140a6b7e6537b89eaa\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 4789750 d8f88dd0d89609eaf278d51f88cdf2c5\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 4860814 a6772b70434698c4e5f4a49a255ca2d9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.35-25-generic_2.6.35-25.44_amd64.deb\r\n Size/MD5: 806506 fb40b5fc4e44548c49e282da0dbf88bc\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.35-25-server_2.6.35-25.44_amd64.deb\r\n Size/MD5: 806964 fc181e020b60a5e5c2c0b096585fc0a8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.35-25-virtual_2.6.35-25.44_amd64.deb\r\n Size/MD5: 808212 e3055783c0d06cde52cf9799d943bf6b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.35-25-generic_2.6.35-25.44_amd64.deb\r\n Size/MD5: 33982302 75dbf5fa8147fe00d4639f72d21b6602\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.35-25-server_2.6.35-25.44_amd64.deb\r\n Size/MD5: 33911890 29267cca820959829dd444ca00ebe89a\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.35-25-virtual_2.6.35-25.44_amd64.deb\r\n Size/MD5: 10768818 2501645566cc5b9779019f7906d2ba0e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.35-1025.44_amd64.deb\r\n Size/MD5: 811988 c65a01c9c62d09688a01e10c205e2766\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-tools-2.6.35-25_2.6.35-25.44_amd64.deb\r\n Size/MD5: 263320 eb3cdb2067324643cb4877b37878ad86\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 180458 95f98b28e3437528fd92de8b8ceefe48\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 180412 64f27e49be922c3436ca8fd818ad30b6\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 277904 b71150f18d1549493626cc0999e04ec9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 148782 315bb06e62b97648e6c1aed868121cc7\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 33748 fce387c249ab0c54b2de7a304a84d2ea\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 33744 beda5a09d17ca3d505293094ba4cfda2\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 367494 32b2641a584d2ba368c407cd45b2c1ab\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 2478222 d533f4cefa9bd2d1df37139fc46a741f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 799228 48626a7811d1ab2464f6c2608fc7a143\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 134954 d7f28d3e1c50f7156c77434daa20c073\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 270708 2b606db9baf4dbfa388517b173d81fa8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 249508 c4ba32a879b4075a721b589e226b54e4\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 266040 a2ab51afde17c85cd9e1947e7c2b2213\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 39256 b870ccd8db9c3d8068b3f988f06efb24\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 39220 cb0181f2e41410774743e62154fe62c4\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 151192 255022d19b12322b27ea38cdf5d4ed4e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 67786 d941f0c05e4b328170de392822d3ad5f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 22268 35875c9d2bd3fadaf7f58ba483484dd6\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 9688 f0b0f0ef0e45ba03277659d7ae1f8675\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 40916 960c7ae38047eea51a9b560e00dc1398\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 40648 b9ef8a12b046cea90d02733944d5aced\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 112052 deedc2199ce6e9b1a137364e326acdf2\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 11126 9719df79842be39b179339d82230ad11\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 1590620 83c7162b968f44fd1d350299bf7cf32e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 248946 9b7cb9f42c06ae425b7e5a557e5cdb01\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 40468 f7b369d5895512757617483252edd3ef\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/squashfs-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 18196 f3b7cf160fb433da5f47c2fc99d342ce\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/squashfs-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 18168 0966d6cd74f8e3569a78de9aa0ce4e3a\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 54038 5a2871e0a9d47a813ba1fac70cc74d76\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 53948 ec97c6e8a938ffd56a007cacd6842b35\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 129228 25dcd82334d93935cdbdd7ea93d3a666\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 17850 90b69fb10acbed5c2c384d6ff9790ce2\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 5044 af8b65872dfaca59289f83add75c38ae\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/vlan-modules-2.6.35-25-generic-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 23024 7380ccecd5aa2abdb51a1e2faead8fe9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/vlan-modules-2.6.35-25-virtual-di_2.6.35-25.44_amd64.udeb\r\n Size/MD5: 23004 3c73194166fb65a953d8f988aa9cdf8b\r\n\r\n i386 architecture (x86 compatible Intel/AMD):\r\n\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 211584 354b13371ad5d9f75155ea3caec7c4fb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 218012 dfbbcbebd638bf4f42afddd373618680\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 8916 2beaedd58647b90a2d55ab7193fdcd6e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/char-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 36018 c47e5e262932adc0de893057c2ae823f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/char-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 36306 fc74770ba662aab1335c1df3906a8b47\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 48154 1aa391a539dc6d523e7d045e596ba7ed\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 48168 74201d57ea230d506280287845a9a841\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 48166 c1ac65d18828adda16f5410aa5514843\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 44304 60f0a10d5139d914f1cf162c98bb34bd\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 44322 c00d2c8c5e7031960ae0a8d994589b07\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 40918 e84a760793d476d20605aadf0f463fb8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 14142 c1eb2d6496b58095a473108b84364973\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 14154 3007ca35ba65762b980326eca8e66de4\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 14150 fc2607a994f66ea8950e3a47cc9d8d92\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 90428 d201c275052185f17ecc101f2c295071\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 90776 97f2dab5fa44d4494b616a623a6ce843\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 35194 0949280713d76d4d930cbec5198393f8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 35254 c5303a9b303e0b2dbda211d16c8c7e86\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 35246 464d61d96715c8f250130a59a5515ad8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 589908 c2b084b38271a28fe29bad1a9438d1b7\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 589982 c08084f7c972869766e813ec1dd285e9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 351400 577df549e24af64726d849ee53cb4164\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 416584 0f598a67362137fde8617714bcbc0d1b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 416684 2e88e51ffa5e8c19dd8d808f36c0ad40\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 284730 7262d62f5ff4e0ed401c2d7137bee9dd\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 95374 abcecbd0156936056c62c3a8ceccb223\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 95406 0413e8c32c36f96130cc01e4ce60c419\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 303620 713da47f59e6fe58b0f13fd465083820\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 304218 572b5fd1f366a2dfa187864278ede107\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 162044 23a9d632e47a4542e0350cedbef31c2c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 4599830 da26020187aa16381aa72cdeb6760524\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 4729808 bca440e8c1bd3ca9b8cf2abe7cabf2d3\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 4742902 b76e0e3ef7117456ee4f04098e2643c6\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.35-25-generic-pae_2.6.35-25.44_i386.deb\r\n Size/MD5: 789454 26151f34fbcc00ba989429103624cbff\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.35-25-generic_2.6.35-25.44_i386.deb\r\n Size/MD5: 787572 6b11774da360d38fe48ccf383bdab194\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.35-25-virtual_2.6.35-25.44_i386.deb\r\n Size/MD5: 789970 d9df001cd2e7d83f27558136531fae6a\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.35-25-generic-pae_2.6.35-25.44_i386.deb\r\n Size/MD5: 34058830 67fb35d704d531d2fd23237fc137391a\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.35-25-generic_2.6.35-25.44_i386.deb\r\n Size/MD5: 33913440 96a664d2d94c5a0ae71f6e38ad9e3ff6\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.35-25-virtual_2.6.35-25.44_i386.deb\r\n Size/MD5: 10586962 cdbf3c7a539e5c4dcd4d426ff3bdb607\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.35-1025.44_i386.deb\r\n Size/MD5: 811970 6465c0b50bbd485d0f79feae39822b4d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-tools-2.6.35-25_2.6.35-25.44_i386.deb\r\n Size/MD5: 250296 11f3af84f8733243de455c6ce06f7a35\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 187322 af91528ec0ca0966e924de2773fa36a4\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 187610 f0c3b9542053c196550086d03d534fbd\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 187602 ce356fac153d82a965e6281b189ac88c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 260082 9cb39799d8c8c640ef94701e0ecb921a\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 262642 8e2b90bcccd76f99d953b015090a13f9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 141240 7b62103074aa051393fe67a00c9d7b19\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 34790 c99c7bf39234b77ac00feb40229e6de3\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 34798 006cb0cc1d8c7ea38501bc8178812b60\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 34782 58dcd7b6f1fbfef04a6d96997a93a48b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 343478 a5e322452ecdab67cf3c554fd5493fb5\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 343510 4727c16b5fba069f7946cfd8cef7ed9d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 2559840 771e19cf1db5dfa33b03da39a59a4e3f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 2578948 99928d16dd2a493d5769fcf7d27f1e21\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 778390 b7961765324c36286c158ad93fe0261b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 123004 09cbedabe72e28faf84a1e6cea332cb4\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 123204 0cb9a3ccdc207ee7a91ee4ab211f56a1\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 254190 7de53d9ee41756b6a410ec856805a36f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 254224 1b1394bf1f0fba9799d5b88c5c49cac4\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 235392 a07631838e4528d2bc73cc9d3cf40025\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 245906 4d02612c4caa4ff475d76f75e85d22c9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 245896 adff10c41ee5ed9e62ae507485af9c15\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 36498 f13ec04c429b95fa26c46f5bea49bbce\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 36690 ea293fd62c9dd2506287732c02a3416d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 36688 dece37a0ca990b895106c04d5d054941\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 148624 d288f6e304fcb5c50867d4d4e04d8edb\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 148658 a35638e04d21916be206275fcd0dc8ef\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 80428 37ac6ed992d5cd7cf1d3af21e86becc5\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 81236 5869ffecc47ad4b12b48217dbf0343c0\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 49170 4c3ceca92bbcdb37042ececf79c6cd73\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 49254 98e667af3075f2b574f391b0bc51eb62\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 9122 7e2c0760fedfbbaded17f8b27f61ba46\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 9120 ce0f518ff22624a503c6e26c1888182d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 37584 4b820fca51d2bda1d35144aec9e8c26f\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 37596 aa171692f94ab298add67123791e9199\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 37596 f5f4402b68c802ab69b20c09244df665\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 102320 2ceb0b6b33b3526f68d6a527beb84d19\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 102842 fd3474b98ec7f74739e2c382b93dc676\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 10730 12c71abebaa5742a5f894586563ead9e\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 1705060 a3f0f1d47c2c8e5f7bb8110f38113077\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 1655010 0fad9fe2e387956b3f02e0f59ffcc7b6\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 235792 700cc93fdb8ad95087eb136ba5e722d8\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 37710 371a181afd7dbe2f342e07b9a5d00777\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 37718 ff3711647173480cb43fcfa8e4821f40\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/squashfs-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 18138 80ba316fc13e2fa8f1f6e0c54a5dd840\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/squashfs-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 18146 5b750e04cc78cfa9226dd6bd4c415345\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/squashfs-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 18146 99a39567cc31db4aa178851c4c9bf90a\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 51514 9a103036fdcce3c0cf3f33421265be3b\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 51526 4a46a5ff0274bd077d01a46999e02580\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 51506 954392e3edd598e4e43394362a71a882\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 117332 2bc4dfe2800af9bc76e36af4f5b905a9\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 117628 4daba2e467cea3d82b768ae806deed43\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 16590 33e98f8be1eae113e46ff1d8fcf60f3c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 6284 6b8ef7373738b33d2f9aaaa621f06c27\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 4924 e99a235bb9ce694cb4bdd4b98e9a142d\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/vlan-modules-2.6.35-25-generic-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 21316 21717ae3daede35e4adef2b8c4f7dd0c\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/vlan-modules-2.6.35-25-generic-pae-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 21320 d76315ff205196a652f8281303454f9a\r\n \r\nhttp://security.ubuntu.com/ubuntu/pool/main/l/linux/vlan-modules-2.6.35-25-virtual-di_2.6.35-25.44_i386.udeb\r\n Size/MD5: 21314 d7849e7a2c0f0815542a9de2a8c44e3a\r\n\r\n armel architecture (ARM Architecture):\r\n\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 28476 7c4a2aad3c7fc071f019332b16954395\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 128756 902a5ef90285095a993e17e431bcdd7a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 70324 e0d52c3de25569e7f94d1e45745c6420\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 51230 9d6699ecfa6ea96fbde0f32baa75aa78\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 42962 10030a25cd99c5a877a177181611167e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 88102 898b08d682d52c54135260f65845325b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 685644 0e7d8edc6af848495998333d6123c1a5\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 507548 5419bea97ff75811687732a23a59d309\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 111238 04609a1641a3c78654be18202c62b021\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 94980 196f5ac10da9064e27f89baafe586b1e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 267600 ce3694c15cb95d9e285f533356251859\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 4073672 2e0c0b8f51e51460d8ff6a47491c0e5e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 3375492 490d02f80c20b29566848cd48b0e7bf2\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.35-25-omap_2.6.35-25.44_armel.deb\r\n Size/MD5: 776624 ae19a7629b844fb7252be78f84be50e0\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.35-25-versatile_2.6.35-25.44_armel.deb\r\n Size/MD5: 793428 a8c6ef379f74b9ee80dd959ef4cddd4f\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.35-25-omap_2.6.35-25.44_armel.deb\r\n Size/MD5: 19545118 d8604b2d5ae639f1d3b5d606f138c16c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.35-25-versatile_2.6.35-25.44_armel.deb\r\n Size/MD5: 21981998 7e0e1d7e0214ef669bcb71bdabb24372\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.35-1025.44_armel.deb\r\n Size/MD5: 808702 8e795bbaf55eb87d76d1fba35960b8b3\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-tools-2.6.35-25_2.6.35-25.44_armel.deb\r\n Size/MD5: 252440 5d4b0f52f3c39a63596b500b83135f1e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 201686 bdd3e6a0cab7cbd546406c163e75f806\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 174668 2a9b13cefb0f16d6763d531349a5f435\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 290292 103f3a5f7ddde2fe0981c5992379ed9f\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 33500 fcf1c81fa8b45bc4bc91fff49e446fba\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 386304 df53c30225b8cd877f8039bf7d044f9c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 165148 2a0c9a28fe18786aa4e10cbb62b352de\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 450158 3c17d8ce11ac09bd188e06c620074129\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 293664 b98923b80a374275f55dbc424d312f39\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 248182 ba4b6677b79f272fc417fdc8842e255a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 226986 0e1eb13f6b1997c8e9cf85163c3f8e64\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 21650 ae3e613a80f927e7e1f917433bc1463d\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 102152 9693ada8173d6b59faf57ed5c6b958df\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 10704 090d298191b5359b5a983994504aea1b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 44668 4b127c9b3c40b135c82218972a15cfbc\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 35474 0273401c706f058d1353dd8b437dee54\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 19642 de195295ad1b194df19b879a0976946e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 101320 2137fc2abc737035337ba8eb6baaf194\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 239914 a0e575e8bc5a40c0511f6c7a20ed83fd\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 51452 2997ec3ebca7fe48e0b6fef331ad0dcb\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/squashfs-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 21688 82c308cc19cebcb4b26f18032ae122a1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/squashfs-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 17484 fb72cf64c06448631723cc2c2d049763\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 56552 10482f3f569eba9d641d7f831f44abad\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 94878 de4a218ce33025140a00577f97e7b38e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 134482 9c85b0f772c9855edca71256566be740\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/vlan-modules-2.6.35-25-omap-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 26578 56d2b2b230d38e2175e67df803d673be\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/vlan-modules-2.6.35-25-versatile-di_2.6.35-25.44_armel.udeb\r\n Size/MD5: 21416 70868875749dae30f6f8ec8fde920681\r\n\r\n powerpc architecture (Apple Macintosh G3/G4/G5):\r\n\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 345992 0c8e51ed5407cad9ee703f06589de605\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 288514 3610285b5100cb40ed3f2a3be409686b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 57494 e874c66a9260e37d0b766aef08faa9bc\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 62538 84a266d3b3ad0d600bd9aef71ab1dc58\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 48912 0ef2000eafcc387fc1316ea90fbf8496\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 53816 d44265f0d0b323be0a72c88412f4883e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 97084 bdb413eb356adc9e72e14262f938c895\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 110264 e132d1e85c1f24fd3331ac5d99245f3f\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 41710 16242617fd76ea70ca2f4a0f43d4d80f\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 40922 77affc2fa8c517fbde70a6f4198d9864\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 666120 a6b8c6e701b722bebb86dd514282557a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 697746 c22174a72f924fb4e8b03bea2e48674c\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 487802 1cddaebd6a99273e768f72edffe858c3\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 507280 8e8d6881204e9fd4b60e0438524a4912\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 109294 112ad37e1bc5a3831d41db7190ce7598\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 113730 0b5edef1b92d9697fb2c79973caec399\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 419138 1144a2e815d1a08aa73ad69534ed3f7e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 353802 a727b73aa83ebf6a378aeab8e99b8040\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 4461112 dcba40e7d1c048378a4bdb5757c279f1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 5907238 093ec0488ff59d7306ad704a623277d6\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.35-25-powerpc-smp_2.6.35-25.44_powerpc.deb\r\n Size/MD5: 880440 c8415632582b9bee610d781a71eef649\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.35-25-powerpc64-smp_2.6.35-25.44_powerpc.deb\r\n Size/MD5: 900974 1fcd395e69b973e62be960186e8a21af\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.35-25-powerpc_2.6.35-25.44_powerpc.deb\r\n Size/MD5: 883804 4271f6745945df7687327e8b0d8128ab\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.35-25-powerpc-smp_2.6.35-25.44_powerpc.deb\r\n Size/MD5: 30855650 34d668a0b487785e2b0921c3394521d1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.35-25-powerpc64-smp_2.6.35-25.44_powerpc.deb\r\n Size/MD5: 32207392 bb0a4413201518187926ad8d9d115240\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.35-25-powerpc_2.6.35-25.44_powerpc.deb\r\n Size/MD5: 30621436 eb3ee886b1e022605b5d64a7999281f6\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.35-1025.44_powerpc.deb\r\n Size/MD5: 798964 0511cdc0ba38ab40edd808b423996dbb\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/linux-tools-2.6.35-25_2.6.35-25.44_powerpc.deb\r\n Size/MD5: 275392 d098440a59214ee352ebf7e81d66cc42\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 253286 8454ff19c8110725b5f4db1322737904\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 266250 53907b4567b25336f40f16ec9ef89b3e\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 224226 2e11ea5bdf60678876f59cfc98a3f0ef\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 227734 3e3025dcf9f6de8a0cbd345e88a67630\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 32806 d2bd786d445e0271d9c5691fe508c302\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 37500 274f5b29664ae331592b5bceeaf7a8c6\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 378546 8c5b0851faac9356e7cfd84386963730\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 425696 4604578537d1ad4e59b1f29db3f9880a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 2686662 92e57b5837628701945d32badf3c416b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 2902434 22c2b4e2c5edaf64a2ebbd502f1aa0af\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 187494 db4bc14caff41812305dcc78d24c8ed9\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 181612 e4355264a67521ec94f848f2f7875c08\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 273740 37db24a54c2d69d9ed5aeababd8aeeac\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 311726 fe6c5174161a9bb54e34b558920bf82d\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 215442 c1e632adce0eca57c2761de6c2dbab70\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 248742 f80887ff4d7632c9b89d9efa1b9f1a57\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 50996 7f2464f954a5f9c1352a7bf2feca7a01\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 45498 799385f7c9ab08add315e24a01d6acda\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 113028 b99dd0a4c42d6cbf9a25066455fa7d4b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 125738 1bf0cfbb83c9f3b503bc5d88a0c49039\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 75432 d415fcbec62915a16c260184387b8077\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 79674 49365482989aa3c559f30fb337a534f6\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 79706 bdad178f5656144670fc025c8aebc5db\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 27592 affe4f3239fb116dc60ca13611a029df\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 8920 696481af377862403690621d0be6f995\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 10238 76d80a50ea12c520ce0e4c342141032b\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 61862 1923f996fbc3d34e4733a11ee05170de\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 73018 4505bb31614baa997fb6ffad51a66c61\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 115078 44c52873dcf6d9ecd4da17e33341b25d\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 146728 b88126bab1c134d7adf8ece2bb25685a\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 1700462 071852dc7e1a09ba028316c7b5e91289\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 1632350 dff07d1318a5c2bd1ea21841c3591e3d\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 78400 1f1666d18084650c4104323778038126\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 83916 e832c72b9755faf607c929a892012827\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/squashfs-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 20522 750c9480c55724ced6376430c1ffc0ae\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/squashfs-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 22148 be237e00e1971703d4aa40bd070899c1\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 68312 9cb576dd7c69ceabe15421ae899958a5\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 81460 7575869bcbd2150e67c225bbaa17d2be\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 129510 3fcd48fb9f5e97b7f130c98467eb8e35\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 146936 f6428500371c6a3fd35f7c259158f648\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/vlan-modules-2.6.35-25-powerpc-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 22930 0f7832a57127823ee0292f1803d59326\r\n \r\nhttp://ports.ubuntu.com/pool/main/l/linux/vlan-modules-2.6.35-25-powerpc64-smp-di_2.6.35-25.44_powerpc.udeb\r\n Size/MD5: 26632 bd8c788a92ebcf309926273018d83631\r\n", "modified": "2011-02-02T00:00:00", "published": "2011-02-02T00:00:00", "id": "SECURITYVULNS:DOC:25593", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:25593", "title": "[USN-1054-1] Linux kernel vulnerabilities", "type": "securityvulns", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:09:39", "bulletinFamily": "software", "description": "Multiple DoS conditions, priviloege esclations, memory leaks from kernel memory, DoS via SCTP protocol, DoS via X.25.", "modified": "2010-12-09T00:00:00", "published": "2010-12-09T00:00:00", "id": "SECURITYVULNS:VULN:11275", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:11275", "title": "Linux kernel multiple security vulnerabilities", "type": "securityvulns", "cvss": {"score": 8.3, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:39", "bulletinFamily": "software", "description": "===========================================================\r\nUbuntu Security Notice USN-1089-1 March 18, 2011\r\nlinux, linux-ec2 vulnerabilities\r\nCVE-2010-4076, CVE-2010-4077, CVE-2010-4158, CVE-2010-4162,\r\nCVE-2010-4163, CVE-2010-4175, CVE-2010-4242\r\n===========================================================\r\n\r\nA security issue affects the following Ubuntu releases:\r\n\r\nUbuntu 9.10\r\n\r\nThis advisory also applies to the corresponding versions of\r\nKubuntu, Edubuntu, and Xubuntu.\r\n\r\nThe problem can be corrected by upgrading your system to the\r\nfollowing package versions:\r\n\r\nUbuntu 9.10:\r\n linux-image-2.6.31-23-386 2.6.31-23.74\r\n linux-image-2.6.31-23-generic 2.6.31-23.74\r\n linux-image-2.6.31-23-generic-pae 2.6.31-23.74\r\n linux-image-2.6.31-23-ia64 2.6.31-23.74\r\n linux-image-2.6.31-23-lpia 2.6.31-23.74\r\n linux-image-2.6.31-23-powerpc 2.6.31-23.74\r\n linux-image-2.6.31-23-powerpc-smp 2.6.31-23.74\r\n linux-image-2.6.31-23-powerpc64-smp 2.6.31-23.74\r\n linux-image-2.6.31-23-server 2.6.31-23.74\r\n linux-image-2.6.31-23-sparc64 2.6.31-23.74\r\n linux-image-2.6.31-23-sparc64-smp 2.6.31-23.74\r\n linux-image-2.6.31-23-virtual 2.6.31-23.74\r\n linux-image-2.6.31-308-ec2 2.6.31-308.28\r\n\r\nAfter a standard system update you need to reboot your computer to make\r\nall the necessary changes.\r\n\r\nATTENTION: Due to an unavoidable ABI change the kernel updates have\r\nbeen given a new version number, which requires you to recompile and\r\nreinstall all third party kernel modules you might have installed. If\r\nyou use linux-restricted-modules, you have to update that package as\r\nwell to get modules which work with the new kernel version. Unless you\r\nmanually uninstalled the standard kernel metapackages (e.g. linux-generic,\r\nlinux-server, linux-powerpc), a standard system upgrade will automatically\r\nperform this as well.\r\n\r\nDetails follow:\r\n\r\nDan Rosenberg discovered that multiple terminal ioctls did not correctly\r\ninitialize structure memory. A local attacker could exploit this to read\r\nportions of kernel stack memory, leading to a loss of privacy.\r\n(CVE-2010-4076, CVE-2010-4077)\r\n\r\nDan Rosenberg discovered that the socket filters did not correctly\r\ninitialize structure memory. A local attacker could create malicious\r\nfilters to read portions of kernel stack memory, leading to a loss of\r\nprivacy. (CVE-2010-4158)\r\n\r\nDan Rosenberg discovered that certain iovec operations did not calculate\r\npage counts correctly. A local attacker could exploit this to crash the\r\nsystem, leading to a denial of service. (CVE-2010-4162)\r\n\r\nDan Rosenberg discovered that the SCSI subsystem did not correctly validate\r\niov segments. A local attacker with access to a SCSI device could send\r\nspecially crafted requests to crash the system, leading to a denial of\r\nservice. (CVE-2010-4163)\r\n\r\nDan Rosenberg discovered that the RDS protocol did not correctly check\r\nioctl arguments. A local attacker could exploit this to crash the system,\r\nleading to a denial of service. (CVE-2010-4175)\r\n\r\nAlan Cox discovered that the HCI UART driver did not correctly check if\r\na write operation was available. If the mmap_min-addr sysctl was changed\r\nfrom the Ubuntu default to a value of 0, a local attacker could exploit\r\nthis flaw to gain root privileges. (CVE-2010-4242)\r\n\r\n\r\nUpdated packages for Ubuntu 9.10:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2_2.6.31-308.28.diff.gz\r\n Size/MD5: 9326032 7f382bfad2a3ecf8d36081183a050135\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2_2.6.31-308.28.dsc\r\n Size/MD5: 3308 be1ed679e9f21ef057b4f91b83a97381\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2_2.6.31.orig.tar.gz\r\n Size/MD5: 78278595 16c0355d3612806ef87addf7c9f8c9f9\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.31-23.74.diff.gz\r\n Size/MD5: 3016564 a1166cc78c81dfda98407d84f35c1046\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.31-23.74.dsc\r\n Size/MD5: 4384 165930ab54ad22d74e762df2b2807a6e\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.31.orig.tar.gz\r\n Size/MD5: 78278595 16c0355d3612806ef87addf7c9f8c9f9\r\n\r\n Architecture independent packages:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2-doc_2.6.31-308.28_all.deb\r\n Size/MD5: 3804752 d819b3de234bba044bdcff3040e41172\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-ec2-source-2.6.31_2.6.31-308.28_all.deb\r\n Size/MD5: 64298296 e636a826b9b3de3399fb27fddceb7fea\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-headers-2.6.31-308_2.6.31-308.28_all.deb\r\n Size/MD5: 9676950 179c86615b729e8fb1f7b4edf549408b\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc_2.6.31-23.74_all.deb\r\n Size/MD5: 3805952 091412cbbdd90be5104304de7572fad3\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.31-23_2.6.31-23.74_all.deb\r\n Size/MD5: 9546696 3059163b85fec09f79a971dc5b4473c5\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.31_2.6.31-23.74_all.deb\r\n Size/MD5: 62210474 e1d35e5afa3429fdecf3c34a04430c46\r\n\r\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-headers-2.6.31-308-ec2_2.6.31-308.28_amd64.deb\r\n Size/MD5: 616142 1853a34a6c39cd147878941f93ad077d\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-image-2.6.31-308-ec2_2.6.31-308.28_amd64.deb\r\n Size/MD5: 18771430 d7b441e84f2593e0b5b5d97ceaecc9ba\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 228938 4917030f45ffad0488ea8c43a294383b\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/char-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 15682 7c24412310b59b2e93a81dd2609cad0a\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 53254 04baa8835da5a7dc5c0c75979a4f5e3d\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 44762 da90adffbf4ad86c186af9fcdac70e16\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 50178 edc60641e1fbaf7ebe69779f1d7322cc\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 91784 016b42a3b62edd5d122cdfecbf8344fa\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 37778 02ad32b797730a9ba9500a041f5ad8b3\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 538022 4ddbbfedf5e4252a7a5a7b04172066da\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 130706 bb14ac2e6854ecddae4d19594f89901e\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 54540 e44dee090aec4c9b159e60b16699e135\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 312916 80e76bb14eca0cd3e895db228a9bb79d\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 4360168 8a91473edea8acd370d960b0cccb7e1e\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.31-23-generic_2.6.31-23.74_amd64.deb\r\n Size/MD5: 717382 01bd2bfb28cac7a9c23742447ee10fef\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.31-23-server_2.6.31-23.74_amd64.deb\r\n Size/MD5: 715330 4bd8da07659076cedb935e0280cddcd8\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.31-23-generic_2.6.31-23.74_amd64.deb\r\n Size/MD5: 29004470 467f8894df32f800cdcb96d46d4943ed\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.31-23-server_2.6.31-23.74_amd64.deb\r\n Size/MD5: 28960382 03c56ee7aeca527cfc32c03e981c6ab3\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.31-23-virtual_2.6.31-23.74_amd64.deb\r\n Size/MD5: 11814124 7b18184f65a3eea3b72e5bd08a23c8b4\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.31-23.74_amd64.deb\r\n Size/MD5: 774704 f911767d16fc8461bb9e04a6c235ac41\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 168672 b256c0f32beb61ab285169b2b1032044\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 202510 f6217fb0249b522cbf04e8252df2227f\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 27750 646c0ce2ed61def6a5bc83daa4639681\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 312002 3e4edf94325e6892495ce3bfd398e156\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 2286532 e1469cdaecd8c255f9b631fa0ebacf35\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 157178 795cb67eecd34feb92e9a2dcaba47c9a\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 203294 0f5cd3256c08340ec2b4ed266882aba9\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 160942 4e31f3bf103d4a004b752e0b703b021f\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 38056 f0f12226c9be628dc2de0dafe52c823e\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 5760 67d63b53f7c5afd401c7870e9b270818\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 74002 cdd30af9bc8a0ad67f212bcf6f6638fa\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 22246 eb3fc9a851e55dc690e202dd6ce90194\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 9542 e6a12398b4a58b6da435c5f142a61daf\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 39634 e69ba0c8e88757cf8e01237c4e478364\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 23486 537b3b0a0afe75fea7a3145f49de9281\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 1390040 0a8e253c00c3b3659a8946ac78ae73dd\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 47646 064ca57bb7a4710d9734f6aa85974b4e\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 51716 e840f8a6790b1e2cab0d7f4ed8178ce6\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 128314 6b1ec95ba41dd6b38a6cb0846129ff0e\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.31-23-generic-di_2.6.31-23.74_amd64.udeb\r\n Size/MD5: 15794 cd6ca11538eea25ed455937b5671c335\r\n\r\n i386 architecture (x86 compatible Intel/AMD):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-headers-2.6.31-308-ec2_2.6.31-308.28_i386.deb\r\n Size/MD5: 586808 eb3a1aba484a912019e512cf99f8985b\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux-ec2/linux-image-2.6.31-308-ec2_2.6.31-308.28_i386.deb\r\n Size/MD5: 18102842 847f20109a4a9579093230a95830ac56\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 198842 72b3931fddbdbdd63729f3fa4af9b404\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/char-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 32572 05a1b9baee1de48276a8341afbd82f65\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 49946 bd9ee0b5b7cb69b95fb9168db0fa787c\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 42114 29ffc313730e26b688f950b366c6b535\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 45944 cee377473e42172b3f96cf1b982ebc5f\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 87400 e4e63d8a3b7e5ffc79145e5c46bf2bb0\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 33754 f13c3a8d3ca34c9e589f0f84fc21eabd\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 533920 32f0bf389172cd74a2d1ea4404736063\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 128174 34d43194dee9e2268477c4cbd85523d8\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 49760 0499f50993883f13a09733c63c9abaaa\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 295736 c67e2a7205105331e44fc14f789bffba\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 4198892 036785b4d12bb7be17028d62d11fbfb8\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.31-23-386_2.6.31-23.74_i386.deb\r\n Size/MD5: 687952 d92c85cdd3d4da52246a4a617176286a\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.31-23-generic-pae_2.6.31-23.74_i386.deb\r\n Size/MD5: 689686 1097427c05373d80f0d0c311eb665082\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.31-23-generic_2.6.31-23.74_i386.deb\r\n Size/MD5: 688222 b11c751e7ac5c7a95a1f2ed3fa8ff0dd\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.31-23-386_2.6.31-23.74_i386.deb\r\n Size/MD5: 28833668 d0ffbd3e19cef23d9ebcb29c5d3ab777\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.31-23-generic-pae_2.6.31-23.74_i386.deb\r\n Size/MD5: 28965016 2d93cf6b19d33664f252a7f45abbf552\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.31-23-generic_2.6.31-23.74_i386.deb\r\n Size/MD5: 28911674 ab20259c3ba3f3c490c8d0ffc159bfcd\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.31-23-virtual_2.6.31-23.74_i386.deb\r\n Size/MD5: 11304122 b95a83cfb7b96276ce77523d64c2faa1\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.31-23.74_i386.deb\r\n Size/MD5: 756844 2b36fe0e0cc9bb82a7560d0bdc9e713f\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 172880 8e0fbda1ec1a6962112faa3b9bb39db6\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 186166 bc0927344bb4c2c96ae8011ae8ab07bb\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/mouse-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 28924 41a2d603749b85cad2fbf2840c9890ba\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 292862 06e247dfe6a398a0581a5bbea7347245\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 2400044 1cb30a81d2f5ae9bd30b3caf48c0eda3\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 141996 15fad0ff5ce06e9bc3c2a51e826846a5\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 189590 ba8b718614e57d3b43dbcd0033d12682\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 148546 48cb0010b205875589df2802b9dede82\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 35302 3a9a2a0b462a765f5f6c712ff76029b4\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 6840 003d721f75d8793443e7c712fd4febf9\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 86106 d4fe53561515ac6c2112b5b5cfeff734\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 46422 ec901129b677b377ef2b76e48ba4487e\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 8912 90987836da38d4529a5ef3dc38aff541\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 36276 cf694530b0aa5df92d709a831b1a9537\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 21670 6f3f0989f08a1bc202ca37cb11b3de30\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 1495332 5ea45dea19a44fea9021784288e490bc\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 44082 ab36a6fb7fc99ea0cacf4b35caaf70fc\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 48544 ffa98b972d82f1f111811502d47e4951\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 117846 96b1f7fa98d619debbfd9a01821b51fb\r\n http://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.31-23-generic-di_2.6.31-23.74_i386.udeb\r\n Size/MD5: 14536 727f573e4b926f4d28e12c1646fb50f5\r\n\r\n armel architecture (ARM Architecture):\r\n\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.31-23.74_armel.deb\r\n Size/MD5: 749302 3a3f447a8d5e24a024323283728dac27\r\n\r\n lpia architecture (Low Power Intel Architecture):\r\n\r\n http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 198812 c72c118b4e336e6f5feee02fc295fbb3\r\n http://ports.ubuntu.com/pool/main/l/linux/char-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 32558 7579651191e2cf4f4c99c34fdd27c0f4\r\n http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 49944 33bc5a9a4a67baf4875a37194310e3f1\r\n http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 42160 8ef09c934d16e63c294ec21127928e8b\r\n http://ports.ubuntu.com/pool/main/l/linux/fb-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 45946 a3dc7de6597ec73b44295f617817a72a\r\n http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 87400 8fcf418fb017566a758466bdac702720\r\n http://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 33752 cc3f6ed4e270a5e08b27dc23eb4f7f3e\r\n http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 534114 4f8c96851ad01af2881659b41179a81c\r\n http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 128212 d7b339d2ffbaf6fb0c0e366156aaa3aa\r\n http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 49740 703eed18256d1023215c6c1b75887fef\r\n http://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 295744 1bf543d7d4cd96b8bd4e0188663fb267\r\n http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 4199586 c6d412f0de545b1075d2fc630cdd1872\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.31-23-lpia_2.6.31-23.74_lpia.deb\r\n Size/MD5: 688544 1f990b32b093fd8a165d4ab2314f8193\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.31-23-lpia_2.6.31-23.74_lpia.deb\r\n Size/MD5: 28910646 d56a59036e581bf1b0be525f894641ab\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.31-23.74_lpia.deb\r\n Size/MD5: 756850 c6dd4dab659ceaf4b4f5a4ec77d5ebbf\r\n http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 172940 a0d3b4cf46c5498725ef721ddfdff4ff\r\n http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 186148 e05d6e04be3282c4156f660fcdaebb69\r\n http://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 28916 f0a18b9103abae7bd487783557390fbe\r\n http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 292854 1b966e28933605c952dfb85fb60bd52d\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 2400286 d48c8e2e4a5224008ba1bce7320c6d11\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 141986 263831bbba3bfe902bf36a5a4f0e2215\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 189598 71b864cb93a6b1f31087f212f693cd93\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 148522 74c6e2e8ccd2da228fa623a95663bfd2\r\n http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 35290 50570175c639a612de7827cfbbed3d9d\r\n http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 6826 17c3bb98449f754fc43c19c246dbcf82\r\n http://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 86094 ce6806e42d32c63f2f3a33982430f138\r\n http://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 46412 e5731a5fa87405f9fe15dcb785eebe7b\r\n http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 8908 3e2570a1fe4dd33159fa57d78530e61e\r\n http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 36270 128636e7a210b0fb20e8e51d18bb2d09\r\n http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 21664 5ad1a61f3f62fc7131b18056f0ad8e8c\r\n http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 1495102 f0a1b5f65e863f66773c8eee5d7772fe\r\n http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 44078 3e8e297a0c342af629ccb4ac7fa2a8a9\r\n http://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 48528 41fe72ea7dba89dfb319c4c7f1c25dfb\r\n http://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 117838 2a79e7821e679bdc06dc2ebe391bfa80\r\n http://ports.ubuntu.com/pool/main/l/linux/virtio-modules-2.6.31-23-lpia-di_2.6.31-23.74_lpia.udeb\r\n Size/MD5: 14520 306c21e88e727101fa85893eee9fda21\r\n\r\n powerpc architecture (Apple Macintosh G3/G4/G5):\r\n\r\n http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 328532 88438c79ee51e1bf374db94c45ad8df6\r\n http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 263700 83cd691282113fd2a8252695e189c8bf\r\n http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 59674 5d2192966c94a98c3f900b6373c67118\r\n http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 67048 4ab37c96977aa92bac011de3d5a4dbaf\r\n http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 47830 dd7676b7ad1d05be4d7848ca2cabbe54\r\n http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 51298 79f2b257df4db0b0c1cc16abc59e63a3\r\n http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 92764 d9bdb1399f9904298666cabacde5c745\r\n http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 105156 b77ad034f655e8c8ebaae7acfadf03bc\r\n http://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 40310 3c0920ddc76e34c0448b40c3496e238a\r\n http://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 39280 5ef67480c1ca11994a3139e80ca30929\r\n http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 604366 147ea276eefa3190a2a25ce3ebb709a7\r\n http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 626168 5877cc40306b23e23c46c6a6b5a8715c\r\n http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 153598 433a5540c209c38906252e68bd22a36c\r\n http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 147288 91c74b7a450ee478e35df85529e142ef\r\n http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 81388 3aa356dd70cf2d4b759456fe78d4b357\r\n http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 84134 2aac648cb22b30bf23fc1b1ef03fefda\r\n http://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 410314 33901c38049fe4acd97285c58bf9c7a1\r\n http://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 342520 8bdd740505552f2992b12e53423e6a41\r\n http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 3934580 fa61984c87af859bb7c7b1adb890096a\r\n http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 5224404 05888c0569a81a63fe8b0c2afda33405\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.31-23-powerpc-smp_2.6.31-23.74_powerpc.deb\r\n Size/MD5: 797616 aea51028796e722eec5361b395f9b87b\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.31-23-powerpc64-smp_2.6.31-23.74_powerpc.deb\r\n Size/MD5: 816022 0e2ddabf04ae1634d1384a7398dd690f\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.31-23-powerpc_2.6.31-23.74_powerpc.deb\r\n Size/MD5: 797338 69f5ca1fe83ecab09c09954c414b64a9\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.31-23-powerpc-smp_2.6.31-23.74_powerpc.deb\r\n Size/MD5: 25320686 433d525ad770c39b3a907cb0b4ebaaf5\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.31-23-powerpc64-smp_2.6.31-23.74_powerpc.deb\r\n Size/MD5: 25865816 1d3890f2b8496c750e58f52fc7794819\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.31-23-powerpc_2.6.31-23.74_powerpc.deb\r\n Size/MD5: 25102784 371d62876444e55ab9634f4d5fbebfae\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.31-23.74_powerpc.deb\r\n Size/MD5: 741910 b254e2361fc6eab8606413627f806498\r\n http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 278878 66611a59fd3255cfc6817aba30b81b1b\r\n http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 294734 97c88ef24b150932d0a68210bf7d513a\r\n http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 216320 8ab78e9c620368de7c324f7daa13e302\r\n http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 217048 bfe48eb9970e82b8499fa5746cba59ad\r\n http://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 26850 3e0cc86d53181fb5ddea97ce464430d5\r\n http://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 29686 0bc5e7b2cce3776eb9969574243c03fa\r\n http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 324424 c758d3228c02ba0eb98293822cf6cece\r\n http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 357628 02d799dae51a2ee763df85b54106b0af\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 2074780 e44ea6f54572dddfaa248cb5f80ff4dd\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 2247762 214c9d15d005a7aefcf20f0afc4f1d8f\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 218282 273f989754f4c7344fea6fca0ab3cc88\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 209828 8e1e70866d1840067993d3a7ddd47545\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 216492 c6e37454e257754ce1a3177428c721e3\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 244882 5850392b271d37fa229d75695a3fae69\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 114150 4f7395284c1da1d217e10f491a7d54e1\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 131632 063902ae029dfbe53df52a6421ea3c9f\r\n http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 50262 7112617a9e31a321ef7bfff6b521576f\r\n http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 44088 083380702ebbab5d2f7d3d4bad436088\r\n http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 5918 da316c9f059c298d9dba5e6d79885c13\r\n http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 6506 5796f10483c15f27e7607e5d551704e0\r\n http://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 80770 4fdaca44b0facc0294055482fd87911d\r\n http://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 85248 cfc5b27497a924f80fe347ab58af54fc\r\n http://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 75760 34d2d5c11f3e1b49b4ca9ce066c4a807\r\n http://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 27272 4d5aa84249ea588cab09ce6db508ff97\r\n http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 8740 faf0370ad234562ce00c8c8c989f08e0\r\n http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 9814 78d4dcc9164022bfb25de9ee7f0d6455\r\n http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 60122 abd303c065d7392f11d7d7f89c915d9a\r\n http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 70148 4cfa140898137b9e1ade73273896d0ba\r\n http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 24184 6d889ac9e8146155623ececa74c05523\r\n http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 30800 656e2da035476cfd2b42e510cae830f8\r\n http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 1593636 ba985a9ea188d2649ab7c582584e1db3\r\n http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 1509574 6f85429fff75d515cda49345b52ce60d\r\n http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 83510 91540ec7bbe37bc58164d21e3780dbf7\r\n http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 88508 764843819ba8fba9db942168c138733d\r\n http://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 66250 8aeac0c679cdd15eab6bce83d86185da\r\n http://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 77176 676f26d08a5f2bdebff80d731f760dad\r\n http://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.31-23-powerpc-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 145676 1e8929659203795e95badb26a5bde8a1\r\n http://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.31-23-powerpc64-smp-di_2.6.31-23.74_powerpc.udeb\r\n Size/MD5: 151402 7b15d61b1b4032fa0901588bee4febda\r\n\r\n sparc architecture (Sun SPARC/UltraSPARC):\r\n\r\n http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 139452 93f30128af5fcdacc3642d284cd91745\r\n http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 70112 4b7cac8a05ab08d927fbc43da04d2af6\r\n http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 46516 3dc0ee21597e263fc49e1f6239f4510f\r\n http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 93986 697aad031c12b17756191a88ea9106c3\r\n http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 588552 86a42aaa9fd679c353adefb1b1e44091\r\n http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 148410 054724367089a5e9c24bcd36d4bab559\r\n http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 75898 0af47b745cad8e2159fa02a16f3d107c\r\n http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 2912284 e8b2d469b04cd1d101b80d6760dcc1aa\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.31-23-sparc64-smp_2.6.31-23.74_sparc.deb\r\n Size/MD5: 615292 cfbff5c15fb6e2e7a61e15fb656d0419\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.31-23-sparc64_2.6.31-23.74_sparc.deb\r\n Size/MD5: 613384 d8d4c9f632bfd7daa381edde257b131c\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.31-23-sparc64-smp_2.6.31-23.74_sparc.deb\r\n Size/MD5: 20561556 43aa01fdf518d67061d19234f5fb59fb\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.31-23-sparc64_2.6.31-23.74_sparc.deb\r\n Size/MD5: 20250356 dce144007055383e7775fa9192849af7\r\n http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.31-23.74_sparc.deb\r\n Size/MD5: 754032 53bd103e2f4222676464655968556cc4\r\n http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 266446 374d3103de75df54494a0d9a7b80452e\r\n http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 209148 78b7cda19fbf4fdcd2b30e3e624b9dc2\r\n http://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 26796 1f3abaddff6675147a4ed36078c05c31\r\n http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 314224 62d32820ef45b03fc057bab1b3730266\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 1675456 ffa3cedc6d4990411a5b0c04ae3ec1a6\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 222868 8b40c7c86a580ccdb866f2d462589985\r\n http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 121960 5f82aaee738435ca2f4cbbcd5b0fe63c\r\n http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 38798 108b5d2a9b544499b06cf740008fa7c2\r\n http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 100826 d9dd171ea2dbd0093689b0e47fb055be\r\n http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 8932 de3f65b62d4d5986864423dd0338e44f\r\n http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 62920 e5464e892eb7884c44515b961b9516bc\r\n http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 120992 ed8da9c6f7384835d77adcad9d34307f\r\n http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 1218180 8ad94c5e1b6c0b2098e152ccc0dab610\r\n http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 101552 a5a5b74cc2a1765ea24c4d2756f4fe6e\r\n http://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 200214 057a8c7a011a61523043a8970e992977\r\n http://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.31-23-sparc64-di_2.6.31-23.74_sparc.udeb\r\n Size/MD5: 185130 5e17ade24d1677821c8dae7a4556cac1\r\n", "modified": "2011-03-23T00:00:00", "published": "2011-03-23T00:00:00", "id": "SECURITYVULNS:DOC:25979", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:25979", "title": "[USN-1089-1] Linux kernel vulnerabilities", "type": "securityvulns", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:09:41", "bulletinFamily": "software", "description": "Privilege escalation, multiple information leaks.", "modified": "2011-03-23T00:00:00", "published": "2011-03-23T00:00:00", "id": "SECURITYVULNS:VULN:11523", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:11523", "title": "Linux kernel multiple security vulnerabilities", "type": "securityvulns", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}]}
