Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-1220-1
HistorySep 29, 2011 - 12:00 a.m.

Linux kernel (OMAP4) vulnerabilities

2011-09-2900:00:00
ubuntu.com
48

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

9 High

AI Score

Confidence

High

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.1%

JSON

Releases

  • Ubuntu 10.10

Packages

  • linux-ti-omap4 - Linux kernel for OMAP4

Details

Ryan Sweat discovered that the kernel incorrectly handled certain VLAN
packets. On some systems, a remote attacker could send specially crafted
traffic to crash the system, leading to a denial of service.
(CVE-2011-1576)

Timo Warns discovered that the EFI GUID partition table was not correctly
parsed. A physically local attacker that could insert mountable devices
could exploit this to crash the system or possibly gain root privileges.
(CVE-2011-1776)

Dan Rosenberg discovered that the IPv4 diagnostic routines did not
correctly validate certain requests. A local attacker could exploit this to
consume CPU resources, leading to a denial of service. (CVE-2011-2213)

Dan Rosenberg discovered that the Bluetooth stack incorrectly handled
certain L2CAP requests. If a system was using Bluetooth, a remote attacker
could send specially crafted traffic to crash the system or gain root
privileges. (CVE-2011-2497)

Mauro Carvalho Chehab discovered that the si4713 radio driver did not
correctly check the length of memory copies. If this hardware was
available, a local attacker could exploit this to crash the system or gain
root privileges. (CVE-2011-2700)

Herbert Xu discovered that certain fields were incorrectly handled when
Generic Receive Offload (CVE-2011-2723)

Time Warns discovered that long symlinks were incorrectly handled on Be
filesystems. A local attacker could exploit this with a malformed Be
filesystem and crash the system, leading to a denial of service.
(CVE-2011-2928)

Dan Kaminsky discovered that the kernel incorrectly handled random sequence
number generation. An attacker could use this flaw to possibly predict
sequence numbers and inject packets. (CVE-2011-3188)

Darren Lavender discovered that the CIFS client incorrectly handled certain
large values. A remote attacker with a malicious server could exploit this
to crash the system or possibly execute arbitrary code as the root user.
(CVE-2011-3191)

Gideon Naim discovered a flaw in the Linux kernel’s handling VLAN 0 frames.
An attacker on the local network could exploit this flaw to cause a denial
of service. (CVE-2011-3593)

OSVersionArchitecturePackageVersionFilename
Ubuntu10.10noarchlinux-image-2.6.35-903-omap4<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchblock-modules-2.6.35-903-omap4-di<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchcrypto-modules-2.6.35-903-omap4-di<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchfat-modules-2.6.35-903-omap4-di<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchfs-core-modules-2.6.35-903-omap4-di<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchfs-secondary-modules-2.6.35-903-omap4-di<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchinput-modules-2.6.35-903-omap4-di<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchirda-modules-2.6.35-903-omap4-di<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchkernel-image-2.6.35-903-omap4-di<Β 2.6.35-903.25UNKNOWN
Ubuntu10.10noarchlinux-headers-2.6.35-903<Β 2.6.35-903.25UNKNOWN
Rows per page:
1-10 of 261

Related

openvas 55
nessus 46
ubuntu 11
securityvulns 5
amazon 2
debian 3
osv 2
suse 14
prion 10
ibm 5
cve 10
ubuntucve 10
veracode 8
f5 2
seebug 3
oraclelinux 3
redhat 7
fedora 2
centos 1
openvas
openvas
Ubuntu: Security Advisory (USN-1220-1)
2011-09-30 00:00:00
Ubuntu Update for linux-ti-omap4 USN-1220-1
2011-09-30 00:00:00
Ubuntu: Security Advisory (USN-1228-1)
2011-10-14 00:00:00
nessus
nessus
USN-1220-1 : linux-ti-omap4 vulnerabilities
2011-09-30 00:00:00
USN-1228-1 : linux-ti-omap4 vulnerabilities
2011-10-13 00:00:00
Ubuntu 11.04 : linux vulnerabilities (USN-1246-1)
2011-10-26 00:00:00
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerabilities
2011-10-12 00:00:00
Linux kernel vulnerabilities
2011-10-25 00:00:00
Linux kernel (Maverick backport) vulnerabilities
2011-09-29 00:00:00
securityvulns
securityvulns
Linux kernel security vulnerabilities
2011-09-13 00:00:00
[SECURITY] [DSA 2303-2] New linux-2.6 packages fix regression
2011-09-13 00:00:00
[PRE-SA-2011-04] Heap overflow in EFI partition handling code of the Linux kernel
2011-05-12 00:00:00
amazon
amazon
Medium: kernel
2011-10-31 18:26:00
Medium: kernel
2011-12-02 22:23:00
debian
debian
[SECURITY] [DSA 2303-1] linux-2.6 security update
2011-09-08 21:31:02
[SECURITY] [DSA 2303-2] New linux-2.6 packages fix regression
2011-09-11 02:06:57
[SECURITY] [DSA 2310-1] linux-2.6 security update
2011-09-22 22:48:48
osv
osv
linux-2.6 - several issues
2011-09-10 00:00:00
linux-2.6 - several issues
2011-09-22 00:00:00
suse
suse
kernel update for SLE11 SP1 (important)
2011-10-08 01:08:26
Security update for Linux kernel (important)
2011-10-08 01:08:22
denial of service in kernel
2011-10-17 17:58:35
prion
prion
Design/Logic Flaw
2012-05-24 23:55:00
Design/Logic Flaw
2013-06-08 13:05:00
Buffer overflow
2011-09-06 15:55:00
ibm
ibm
Security Bulletin: Potential DOS due to weak IPv4 and IPv6 sequence numbers in IBM Storwize V7000 Unified system (CVE-2011-3188)
2018-06-18 00:07:45
Security Bulletin: Potential DOS due to weak IPv4 and IPv6 sequence numbers in SAN Volume Controller and Storwize Family (CVE-2011-3188)
2023-03-29 01:48:02
Security Bulletin: Potential DOS due to weak IPv4 and IPv6 sequence numbers in SAN Volume Controller and Storwize Family (CVE-2011-3188)
2022-08-20 00:54:31
cve
cve
CVE-2011-3188
2012-05-24 23:55:00
CVE-2011-3593
2013-06-08 13:05:00
CVE-2011-2723
2011-09-06 15:55:00
ubuntucve
ubuntucve
CVE-2011-3593
2011-12-15 00:00:00
CVE-2011-3188
2011-08-25 00:00:00
CVE-2011-2700
2011-09-06 00:00:00
veracode
veracode
Man-in-the-Middle (MitM)
2020-04-10 01:07:46
Denial Of Service (DoS)
2020-04-10 01:08:28
Privilege Escalation
2020-04-10 01:05:23
f5
f5
K15301 : Linux kernel TCP ISN vulnerability CVE-2011-3188
2014-07-25 00:00:00
SOL15301 - Linux kernel TCP ISN vulnerability CVE-2011-3188
2014-06-02 00:00:00
seebug
seebug
Linux Kernel &quot;drivers/media/radio/si4713-i2c.c&quot;θΏœη¨‹ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2011-07-28 00:00:00
Red Hat Linux Kernel VLANζŠ₯ζ–‡ε€„η†θΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž
2011-07-29 00:00:00
Linux Kernel 'CIFSFindNext()'ε‡½ζ•°ζ‹’η»ζœεŠ‘ζΌζ΄ž
2011-08-25 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2011-08-23 00:00:00
Unbreakable Enterprise kernel security update
2011-11-25 00:00:00
kernel security and bug fix update
2011-11-22 00:00:00
redhat
redhat
(RHSA-2011:1189) Important: kernel security, bug fix, and enhancement update
2011-08-23 00:00:00
(RHSA-2011:1419) Moderate: kernel security and bug fix update
2011-11-01 00:00:00
(RHSA-2011:1465) Important: kernel security and bug fix update
2011-11-22 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: kernel-3.1.0-0.rc6.git0.3.fc16
2011-09-24 04:38:06
[SECURITY] Fedora 14 Update: kernel-2.6.35.14-97.fc14
2011-10-08 17:59:55
centos
centos
kernel security update
2011-10-21 00:31:03

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

9 High

AI Score

Confidence

High

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.1%

JSON
Related for USN-1220-1
openvas55nessus46ubuntu11securityvulns5amazon2debian3osv2suse14prion10ibm5cve10ubuntucve10veracode8f52seebug3oraclelinux3redhat7fedora2centos1