7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
81.5%
Aristide Fattori and Roberto Paleari reported a flaw in the Linux kernelβs
handling of IPv4 icmp packets. A remote user could exploit this to cause a
denial of service. (CVE-2011-1927)
Vegard Nossum discovered a leak in the kernelβs inotify_init() system call.
A local, unprivileged user could exploit this to cause a denial of service.
(CVE-2010-4250)
An error was discovered in the kernelβs handling of CUSE (Character device
in Userspace). A local attacker might exploit this flaw to escalate
privilege, if access to /dev/cuse has been modified to allow non-root
users. (CVE-2010-4650)
A flaw was found in the kernelβs Integrity Measurement Architecture (IMA).
Changes made by an attacker might not be discovered by IMA, if SELinux was
disabled, and a new IMA rule was loaded. (CVE-2011-0006)
A flaw was found in the Linux Ethernet bridgeβs handling of IGMP (Internet
Group Management Protocol) packets. An unprivileged local user could
exploit this flaw to crash the system. (CVE-2011-0716)
Dan Rosenberg reported errors in the OSS (Open Sound System) MIDI
interface. A local attacker on non-x86 systems might be able to cause a
denial of service. (CVE-2011-1476)
Dan Rosenberg reported errors in the kernelβs OSS (Open Sound System)
driver for Yamaha FM synthesizer chips. A local user can exploit this to
cause memory corruption, causing a denial of service or privilege
escalation. (CVE-2011-1477)
Dan Rosenberg reported an error in the old ABI compatibility layer of ARM
kernels. A local attacker could exploit this flaw to cause a denial of
service or gain root privileges. (CVE-2011-1759)
Ben Hutchings reported a flaw in the kernelβs handling of corrupt LDM
partitions. A local user could exploit this to cause a denial of service or
escalate privileges. (CVE-2011-2182)
A flaw was discovered in the Linux kernelβs AppArmor security interface
when invalid information was written to it. An unprivileged local user
could use this to cause a denial of service on the system. (CVE-2011-3619)
It was discovered that some import kernel threads can be blocked by a user
level process. An unprivileged local user could exploit this flaw to cause
a denial of service. (CVE-2011-4621)
A flaw was discovered in the XFS filesystem. If a local user mounts a
specially crafted XFS image it could potential execute arbitrary code on
the system. (CVE-2012-0038)
Chen Haogang discovered an integer overflow that could result in memory
corruption. A local unprivileged user could use this to crash the system.
(CVE-2012-0044)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 10.10 | noarch | linux-image-2.6.35-903-omap4 | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | block-modules-2.6.35-903-omap4-di | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | crypto-modules-2.6.35-903-omap4-di | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | fat-modules-2.6.35-903-omap4-di | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | fs-core-modules-2.6.35-903-omap4-di | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | fs-secondary-modules-2.6.35-903-omap4-di | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | input-modules-2.6.35-903-omap4-di | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | irda-modules-2.6.35-903-omap4-di | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | kernel-image-2.6.35-903-omap4-di | <Β 2.6.35-903.32 | UNKNOWN |
Ubuntu | 10.10 | noarch | linux-headers-2.6.35-903 | <Β 2.6.35-903.32 | UNKNOWN |
ubuntu.com/security/CVE-2010-4250
ubuntu.com/security/CVE-2010-4650
ubuntu.com/security/CVE-2011-0006
ubuntu.com/security/CVE-2011-0716
ubuntu.com/security/CVE-2011-1476
ubuntu.com/security/CVE-2011-1477
ubuntu.com/security/CVE-2011-1759
ubuntu.com/security/CVE-2011-1927
ubuntu.com/security/CVE-2011-2182
ubuntu.com/security/CVE-2011-3619
ubuntu.com/security/CVE-2011-4621
ubuntu.com/security/CVE-2012-0038
ubuntu.com/security/CVE-2012-0044
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
81.5%