{"id": "USN-1652-1", "bulletinFamily": "unix", "title": "Linux kernel (Oneiric backport) vulnerabilities", "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nMathias Krause discovered information leak in the Linux kernel\u2019s compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt implementation for the Datagram Congestion Control Protocol (DCCP). A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6541)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)\n\nAn information leak was discovered in the Linux kernel\u2019s /dev/dvb device. A local user could exploit this flaw to obtain sensitive information from the kernel\u2019s stack memory. (CVE-2013-1928)", "published": "2012-11-30T00:00:00", "modified": "2012-11-30T00:00:00", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://usn.ubuntu.com/1652-1/", "reporter": "Ubuntu", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6541", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1928", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6540", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6539"], "cvelist": ["CVE-2012-6546", "CVE-2012-6541", "CVE-2012-6537", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-6545", "CVE-2012-0957", "CVE-2012-6542", "CVE-2012-6539", "CVE-2012-6540", "CVE-2012-6544", "CVE-2012-6538", "CVE-2013-1928", "CVE-2012-6536", "CVE-2013-0309"], "type": "ubuntu", "lastseen": "2018-08-31T00:09:11", "history": [{"bulletin": {"affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-virtual", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-server", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-generic-pae", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-generic", "packageVersion": "3.0.0-28.45~lucid1"}], "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6541", "CVE-2012-6537", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-6545", "CVE-2012-0957", "CVE-2012-6542", "CVE-2012-6539", "CVE-2012-6540", "CVE-2012-6544", "CVE-2012-6538", "CVE-2013-1928", "CVE-2012-6536", "CVE-2013-0309"], "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nMathias Krause discovered information leak in the Linux kernel\u2019s compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt implementation for the Datagram Congestion Control Protocol (DCCP). A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6541)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)\n\nAn information leak was discovered in the Linux kernel\u2019s /dev/dvb device. A local user could exploit this flaw to obtain sensitive information from the kernel\u2019s stack memory. (CVE-2013-1928)", "edition": 1, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "932df96a445c59de6b576847d858ffdbb6b535c0f6f2210f87d7d2d410a87071", "hashmap": [{"hash": "a0f780b76d3027a6d2b044ddf894203c", "key": "href"}, {"hash": "f73a03809997d858c3a135b6a391783e", "key": "description"}, {"hash": "cf44a4a87f06edc38822a660780a72ce", "key": "affectedPackage"}, {"hash": "8184cea9e598d08ed8bef323ab712398", "key": "references"}, {"hash": "b4c45c341d600f6ac255802f6372c320", "key": "cvelist"}, {"hash": "a7d290daa805abb980caf9b7636a37eb", "key": "title"}, {"hash": "1d41c853af58d3a7ae54990ce29417d8", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "3d945423f8e9496c429a5d8c65b4604f", "key": "reporter"}, {"hash": "db744140e649d5b095b38bd0f7a39d65", "key": "published"}, {"hash": "db744140e649d5b095b38bd0f7a39d65", "key": "modified"}, {"hash": "20b312358ab5f293fffb562d006d88f6", "key": "cvss"}], "history": [], "href": "https://usn.ubuntu.com/1652-1/", "id": "USN-1652-1", "lastseen": "2018-03-29T18:18:30", "modified": "2012-11-30T00:00:00", "objectVersion": "1.3", "published": "2012-11-30T00:00:00", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6541", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1928", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6540", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6539"], "reporter": "Ubuntu", "title": "Linux kernel (Oneiric backport) vulnerabilities", "type": "ubuntu", "viewCount": 0}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2018-03-29T18:18:30"}, {"bulletin": {"affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-virtual", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-server", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-generic-pae", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-generic", "packageVersion": "3.0.0-28.45~lucid1"}], "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6541", "CVE-2012-6537", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-6545", "CVE-2012-0957", "CVE-2012-6542", "CVE-2012-6539", "CVE-2012-6540", "CVE-2012-6544", "CVE-2012-6538", "CVE-2013-1928", "CVE-2012-6536", "CVE-2013-0309"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nMathias Krause discovered information leak in the Linux kernel\u2019s compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt implementation for the Datagram Congestion Control Protocol (DCCP). A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6541)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)\n\nAn information leak was discovered in the Linux kernel\u2019s /dev/dvb device. A local user could exploit this flaw to obtain sensitive information from the kernel\u2019s stack memory. (CVE-2013-1928)", "edition": 2, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "c735df42cba1e5a39edda19a924a201d4c6dba74bdcd7feee92b715fd732c32a", "hashmap": [{"hash": "a0f780b76d3027a6d2b044ddf894203c", "key": "href"}, {"hash": "f73a03809997d858c3a135b6a391783e", "key": "description"}, {"hash": "cf44a4a87f06edc38822a660780a72ce", "key": "affectedPackage"}, {"hash": "8184cea9e598d08ed8bef323ab712398", "key": "references"}, {"hash": "b4c45c341d600f6ac255802f6372c320", "key": "cvelist"}, {"hash": "a7d290daa805abb980caf9b7636a37eb", "key": "title"}, {"hash": "1d41c853af58d3a7ae54990ce29417d8", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "3d945423f8e9496c429a5d8c65b4604f", "key": "reporter"}, {"hash": "db744140e649d5b095b38bd0f7a39d65", "key": "published"}, {"hash": "db744140e649d5b095b38bd0f7a39d65", "key": "modified"}], "history": [], "href": "https://usn.ubuntu.com/1652-1/", "id": "USN-1652-1", "lastseen": "2018-08-30T20:08:31", "modified": "2012-11-30T00:00:00", "objectVersion": "1.3", "published": "2012-11-30T00:00:00", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6541", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1928", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6540", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6539"], "reporter": "Ubuntu", "title": "Linux kernel (Oneiric backport) vulnerabilities", "type": "ubuntu", "viewCount": 0}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-08-30T20:08:31"}], "edition": 3, "hashmap": [{"key": "affectedPackage", "hash": "cf44a4a87f06edc38822a660780a72ce"}, {"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "b4c45c341d600f6ac255802f6372c320"}, {"key": "cvss", "hash": "20b312358ab5f293fffb562d006d88f6"}, {"key": "description", "hash": "f73a03809997d858c3a135b6a391783e"}, {"key": "href", "hash": "a0f780b76d3027a6d2b044ddf894203c"}, {"key": "modified", "hash": "db744140e649d5b095b38bd0f7a39d65"}, {"key": "published", "hash": "db744140e649d5b095b38bd0f7a39d65"}, {"key": "references", "hash": "8184cea9e598d08ed8bef323ab712398"}, {"key": "reporter", "hash": "3d945423f8e9496c429a5d8c65b4604f"}, {"key": "title", "hash": "a7d290daa805abb980caf9b7636a37eb"}, {"key": "type", "hash": "1d41c853af58d3a7ae54990ce29417d8"}], "hash": "932df96a445c59de6b576847d858ffdbb6b535c0f6f2210f87d7d2d410a87071", "viewCount": 0, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}, "vulnersScore": 7.2}, "objectVersion": "1.3", "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-virtual", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-server", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-generic-pae", "packageVersion": "3.0.0-28.45~lucid1"}, {"OS": "Ubuntu", "OSVersion": "10.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-generic", "packageVersion": "3.0.0-28.45~lucid1"}]}

{"ubuntu": [{"lastseen": "2018-08-31T00:09:05", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6541", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1928", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6540", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6539"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-1218.31", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-1218-omap4", "operator": "lt"}], "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nMathias Krause discovered information leak in the Linux kernel\u2019s compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt implementation for the Datagram Congestion Control Protocol (DCCP). A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6541)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)\n\nAn information leak was discovered in the Linux kernel\u2019s /dev/dvb device. A local user could exploit this flaw to obtain sensitive information from the kernel\u2019s stack memory. (CVE-2013-1928)", "edition": 3, "reporter": "Ubuntu", "published": "2012-11-30T00:00:00", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6541", "CVE-2012-6537", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-6545", "CVE-2012-0957", "CVE-2012-6542", "CVE-2012-6539", "CVE-2012-6540", "CVE-2012-6544", "CVE-2012-6538", "CVE-2013-1928", "CVE-2012-6536", "CVE-2013-0309"], "modified": "2012-11-30T00:00:00", "id": "USN-1649-1", "href": "https://usn.ubuntu.com/1649-1/", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:44", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6541", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1928", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6540", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6539"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-28.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-28.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-28.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-28.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-28.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-28.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-omap", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-28.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "3.0.0-28.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.0.0-28-powerpc64-smp", "operator": "lt"}], "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nMathias Krause discovered information leak in the Linux kernel\u2019s compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt implementation for the Datagram Congestion Control Protocol (DCCP). A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6541)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)\n\nAn information leak was discovered in the Linux kernel\u2019s /dev/dvb device. A local user could exploit this flaw to obtain sensitive information from the kernel\u2019s stack memory. (CVE-2013-1928)", "edition": 3, "reporter": "Ubuntu", "published": "2012-11-30T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6541", "CVE-2012-6537", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-6545", "CVE-2012-0957", "CVE-2012-6542", "CVE-2012-6539", "CVE-2012-6540", "CVE-2012-6544", "CVE-2012-6538", "CVE-2013-1928", "CVE-2012-6536", "CVE-2013-0309"], "modified": "2012-11-30T00:00:00", "id": "USN-1648-1", "href": "https://usn.ubuntu.com/1648-1/", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:27", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-19.30", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-19-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-19.30", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-19-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-19.30", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-19-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-19.30", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-19-omap", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-19.30", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-19-highbank", "operator": "lt"}], "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)", "edition": 3, "reporter": "Ubuntu", "published": "2012-11-30T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6537", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-0957", "CVE-2012-6538", "CVE-2012-6536", "CVE-2013-0309"], "modified": "2012-11-30T00:00:00", "id": "USN-1646-1", "href": "https://usn.ubuntu.com/1646-1/", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:21", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.10", "packageVersion": "3.5.0-215.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.5.0-215-omap4", "operator": "lt"}], "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)", "edition": 3, "reporter": "Ubuntu", "published": "2012-11-30T00:00:00", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6537", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-0957", "CVE-2012-6538", "CVE-2012-6536", "CVE-2013-0309"], "modified": "2012-11-30T00:00:00", "id": "USN-1647-1", "href": "https://usn.ubuntu.com/1647-1/", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:18", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6657", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1928", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4508"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-1422.29", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-1422-omap4", "operator": "lt"}], "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nDmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. (CVE-2012-4508)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nDave Jones discovered that the Linux kernel\u2019s socket subsystem does not correctly ensure the keepalive action is associated with a stream socket. A local user could exploit this flaw to cause a denial of service (system crash) by creating a raw socket. (CVE-2012-6657)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)\n\nAn information leak was discovered in the Linux kernel\u2019s /dev/dvb device. A local user could exploit this flaw to obtain sensitive information from the kernel\u2019s stack memory. (CVE-2013-1928)", "edition": 3, "reporter": "Ubuntu", "published": "2012-11-30T00:00:00", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6537", "CVE-2012-4508", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-0957", "CVE-2012-6538", "CVE-2012-6657", "CVE-2013-1928", "CVE-2012-6536", "CVE-2013-0309"], "modified": "2012-11-30T00:00:00", "id": "USN-1645-1", "href": "https://usn.ubuntu.com/1645-1/", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:04", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0957", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6657", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1826", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1928", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0309", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6537", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4565", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-4508"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-34.53", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-34-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-34.53", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-34-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-34.53", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-34-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-34.53", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-34-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-34.53", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-34-omap", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-34.53", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-34-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-34.53", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-34-highbank", "operator": "lt"}], "description": "Brad Spengler discovered a flaw in the Linux kernel\u2019s uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nDmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. (CVE-2012-4508)\n\nRodrigo Freire discovered a flaw in the Linux kernel\u2019s TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)\n\nMathias Krause discovered a flaw in the Linux kernel\u2019s XFRM netlink interface. A local user with the NET_ADMIN capability could exploit this flaw to leak the contents of kernel memory. (CVE-2012-6536)\n\nMathias Krause discovered several errors in the Linux kernel\u2019s xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s xfrm_user copy_to_user_auth function. A local user could exploit this flaw to examine parts of kernel heap memory. (CVE-2012-6538)\n\nDave Jones discovered that the Linux kernel\u2019s socket subsystem does not correctly ensure the keepalive action is associated with a stream socket. A local user could exploit this flaw to cause a denial of service (system crash) by creating a raw socket. (CVE-2012-6657)\n\nA flaw was discovered in the Linux kernels handling of memory ranges with PROT_NONE when transparent hugepages are in use. An unprivileged local user could exploit this flaw to cause a denial of service (crash the system). (CVE-2013-0309)\n\nMathias Krause discovered a flaw in xfrm_user in the Linux kernel. A local attacker with NET_ADMIN capability could potentially exploit this flaw to escalate privileges. (CVE-2013-1826)\n\nAn information leak was discovered in the Linux kernel\u2019s /dev/dvb device. A local user could exploit this flaw to obtain sensitive information from the kernel\u2019s stack memory. (CVE-2013-1928)", "edition": 3, "reporter": "Ubuntu", "published": "2012-11-30T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6537", "CVE-2012-4508", "CVE-2012-4565", "CVE-2013-1826", "CVE-2012-0957", "CVE-2012-6538", "CVE-2012-6657", "CVE-2013-1928", "CVE-2012-6536", "CVE-2013-0309"], "modified": "2012-11-30T00:00:00", "id": "USN-1644-1", "href": "https://usn.ubuntu.com/1644-1/", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:10:29", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6541", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3520", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6689", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6540", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6539", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1827"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-1420.27", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-1420-omap4", "operator": "lt"}], "description": "Pablo Neira Ayuso discovered a flaw in the credentials of netlink messages. An unprivileged local attacker could exploit this by getting a netlink based service, that relies on netlink credentials, to perform privileged actions. (CVE-2012-3520)\n\nMathias Krause discovered information leak in the Linux kernel\u2019s compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt implementation for the Datagram Congestion Control Protocol (DCCP). A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6541)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nA flaw was discovered in how netlink sockets validate message origins. A local attacker could exploit this flaw to send netlink message notifications, with spoofed credentials, to subscribed tasks. (CVE-2012-6689)\n\nMathias Krause discover an error in Linux kernel\u2019s Datagram Congestion Control Protocol (DCCP) Congestion Control Identifier (CCID) use. A local attack could exploit this flaw to cause a denial of service (crash) and potentially escalate privileges if the user can mmap page 0. (CVE-2013-1827)", "edition": 3, "reporter": "Ubuntu", "published": "2012-10-09T00:00:00", "title": "Linux kernel (OMAP4) vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6541", "CVE-2013-1827", "CVE-2012-3520", "CVE-2012-6545", "CVE-2012-6542", "CVE-2012-6539", "CVE-2012-6540", "CVE-2012-6544", "CVE-2012-6689"], "modified": "2012-10-09T00:00:00", "id": "USN-1599-1", "href": "https://usn.ubuntu.com/1599-1/", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:40", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6541", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-3520", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6689", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6540", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6539", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1827"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-32.51", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-32-omap", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-32.51", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-32-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-32.51", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-32-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-32.51", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-32-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-32.51", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-32-highbank", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-32.51", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-32-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "3.2.0-32.51", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-3.2.0-32-virtual", "operator": "lt"}], "description": "Pablo Neira Ayuso discovered a flaw in the credentials of netlink messages. An unprivileged local attacker could exploit this by getting a netlink based service, that relies on netlink credentials, to perform privileged actions. (CVE-2012-3520)\n\nMathias Krause discovered information leak in the Linux kernel\u2019s compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockopt implementation for the Datagram Congestion Control Protocol (DCCP). A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6541)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nA flaw was discovered in how netlink sockets validate message origins. A local attacker could exploit this flaw to send netlink message notifications, with spoofed credentials, to subscribed tasks. (CVE-2012-6689)\n\nMathias Krause discover an error in Linux kernel\u2019s Datagram Congestion Control Protocol (DCCP) Congestion Control Identifier (CCID) use. A local attack could exploit this flaw to cause a denial of service (crash) and potentially escalate privileges if the user can mmap page 0. (CVE-2013-1827)", "edition": 3, "reporter": "Ubuntu", "published": "2012-10-12T00:00:00", "title": "Linux kernel vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6541", "CVE-2013-1827", "CVE-2012-3520", "CVE-2012-6545", "CVE-2012-6542", "CVE-2012-6539", "CVE-2012-6540", "CVE-2012-6544", "CVE-2012-6689"], "modified": "2012-10-12T00:00:00", "id": "USN-1610-1", "href": "https://usn.ubuntu.com/1610-1/", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:52", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6548", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0228", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1796", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0349", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1774"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-351.64", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-351-ec2", "operator": "lt"}], "description": "Mathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s UDF file system implementation. A local user could exploit this flaw to examine some of the kernel\u2019s heap memory. (CVE-2012-6548)\n\nAndrew Jones discovered a flaw with the xen_iret function in Linux kernel\u2019s Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged guest OS user could exploit this flaw to cause a denial of service (crash the system) or gain guest OS privilege. (CVE-2013-0228)\n\nAn information leak was discovered in the Linux kernel\u2019s Bluetooth stack when HIDP (Human Interface Device Protocol) support is enabled. A local unprivileged user could exploit this flaw to cause an information leak from the kernel. (CVE-2013-0349)\n\nA flaw was discovered in the Edgeort USB serial converter driver when the device is disconnected while it is in use. A local user could exploit this flaw to cause a denial of service (system crash). (CVE-2013-1774)\n\nAndrew Honig discovered a flaw in guest OS time updates in the Linux kernel\u2019s KVM (Kernel-based Virtual Machine). A privileged guest user could exploit this flaw to cause a denial of service (crash host system) or potential escalate privilege to the host kernel level. (CVE-2013-1796)", "edition": 3, "reporter": "Ubuntu", "published": "2013-04-25T00:00:00", "title": "Linux kernel (EC2) vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6548", "CVE-2013-0228", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6544", "CVE-2013-1796"], "modified": "2013-04-25T00:00:00", "id": "USN-1808-1", "href": "https://usn.ubuntu.com/1808-1/", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:10:27", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6548", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0228", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1796", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6546", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6542", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6545", "https://people.canonical.com/~ubuntu-security/cve/CVE-2012-6544", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-0349", "https://people.canonical.com/~ubuntu-security/cve/CVE-2013-1774"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-preempt", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-386", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-ia64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-sparc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-sparc64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-versatile", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-lpia", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "2.6.32-46.108", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.32-46-generic", "operator": "lt"}], "description": "Mathias Krause discovered an information leak in the Linux kernel\u2019s getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel\u2019s stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel\u2019s stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel\u2019s Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\nMathias Krause discovered an information leak in the Linux kernel\u2019s UDF file system implementation. A local user could exploit this flaw to examine some of the kernel\u2019s heap memory. (CVE-2012-6548)\n\nAndrew Jones discovered a flaw with the xen_iret function in Linux kernel\u2019s Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged guest OS user could exploit this flaw to cause a denial of service (crash the system) or gain guest OS privilege. (CVE-2013-0228)\n\nAn information leak was discovered in the Linux kernel\u2019s Bluetooth stack when HIDP (Human Interface Device Protocol) support is enabled. A local unprivileged user could exploit this flaw to cause an information leak from the kernel. (CVE-2013-0349)\n\nA flaw was discovered in the Edgeort USB serial converter driver when the device is disconnected while it is in use. A local user could exploit this flaw to cause a denial of service (system crash). (CVE-2013-1774)\n\nAndrew Honig discovered a flaw in guest OS time updates in the Linux kernel\u2019s KVM (Kernel-based Virtual Machine). A privileged guest user could exploit this flaw to cause a denial of service (crash host system) or potential escalate privilege to the host kernel level. (CVE-2013-1796)", "edition": 3, "reporter": "Ubuntu", "published": "2013-04-19T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6548", "CVE-2013-0228", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6544", "CVE-2013-1796"], "modified": "2013-04-19T00:00:00", "id": "USN-1805-1", "href": "https://usn.ubuntu.com/1805-1/", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "cve": [{"lastseen": "2016-09-03T17:25:12", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "https://github.com/torvalds/linux/commit/4c87308bdea31a7b4828a51f6156e6f721a1fcc9", "http://rhn.redhat.com/errata/RHSA-2013-0744.html", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=4c87308bdea31a7b4828a51f6156e6f721a1fcc9", "http://www.openwall.com/lists/oss-security/2013/03/05/13"], "edition": 1, "description": "The copy_to_user_auth function in net/xfrm/xfrm_user.c in the Linux kernel before 3.6 uses an incorrect C library function for copying a string, which allows local users to obtain sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6538", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6538"], "scanner": [], "modified": "2013-06-04T23:40:19", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6538", "id": "CVE-2012-6538", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:13", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "https://github.com/torvalds/linux/commit/43da5f2e0d0c69ded3d51907d9552310a6b545e8", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=43da5f2e0d0c69ded3d51907d9552310a6b545e8", "http://www.ubuntu.com/usn/USN-1798-1", "http://www.openwall.com/lists/oss-security/2013/03/05/13", "http://www.ubuntu.com/usn/USN-1792-1"], "edition": 1, "description": "The dev_ifconf function in net/socket.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6539", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6539"], "scanner": [], "modified": "2013-05-14T23:33:41", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6539", "id": "CVE-2012-6539", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:14", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "http://www.openwall.com/lists/oss-security/2013/03/05/13", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=7b07f8eb75aa3097cdfd4f6eac3da49db787381d", "https://github.com/torvalds/linux/commit/7b07f8eb75aa3097cdfd4f6eac3da49db787381d"], "edition": 1, "description": "The ccid3_hc_tx_getsockopt function in net/dccp/ccids/ccid3.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6541", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6541"], "scanner": [], "modified": "2013-03-18T14:17:14", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6541", "id": "CVE-2012-6541", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:11", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "https://github.com/torvalds/linux/commit/1f86840f897717f86d523a13e99a447e6a5d2fa5", "http://rhn.redhat.com/errata/RHSA-2013-0744.html", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f778a636713a435d3a922c60b1622a91136560c1", "https://github.com/torvalds/linux/commit/7b789836f434c87168eab067cfbed1ec4783dffd", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1f86840f897717f86d523a13e99a447e6a5d2fa5", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=7b789836f434c87168eab067cfbed1ec4783dffd", "http://www.ubuntu.com/usn/USN-1798-1", "http://www.openwall.com/lists/oss-security/2013/03/05/13", "http://www.ubuntu.com/usn/USN-1792-1", "https://github.com/torvalds/linux/commit/f778a636713a435d3a922c60b1622a91136560c1"], "edition": 1, "description": "net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6537", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6537"], "scanner": [], "modified": "2013-06-04T23:40:19", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:redhat:enterprise_linux:5", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6537", "id": "CVE-2012-6537", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:11", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ecd7918745234e423dd87fcc0c077da557909720", "http://www.openwall.com/lists/oss-security/2013/03/05/13", "https://github.com/torvalds/linux/commit/ecd7918745234e423dd87fcc0c077da557909720"], "edition": 1, "description": "net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not verify that the actual Netlink message length is consistent with a certain header field, which allows local users to obtain sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability and providing a (1) new or (2) updated state.", "reporter": "NVD", "published": "2013-03-15T16:55:05", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6536", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6536"], "scanner": [], "modified": "2013-03-18T14:30:27", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6536", "id": "CVE-2012-6536", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:18", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "http://www.ubuntu.com/usn/USN-1808-1", "http://rhn.redhat.com/errata/RHSA-2013-0744.html", "http://www.ubuntu.com/usn/USN-1805-1", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=e862f1a9b7df4e8196ebec45ac62295138aa3fc2", "https://github.com/torvalds/linux/commit/e862f1a9b7df4e8196ebec45ac62295138aa3fc2", "http://www.openwall.com/lists/oss-security/2013/03/05/13", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3c0c5cfdcd4d69ffc4b9c0907cec99039f30a50a", "https://github.com/torvalds/linux/commit/3c0c5cfdcd4d69ffc4b9c0907cec99039f30a50a"], "edition": 1, "description": "The ATM implementation in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6546", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6546"], "scanner": [], "modified": "2013-06-04T23:40:20", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:redhat:enterprise_linux:5", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6546", "id": "CVE-2012-6546", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:14", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "http://www.ubuntu.com/usn/USN-1798-1", "http://www.openwall.com/lists/oss-security/2013/03/05/13", "http://www.ubuntu.com/usn/USN-1792-1", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=2d8a041b7bfe1097af21441cb77d6af95f4f4680", "https://github.com/torvalds/linux/commit/2d8a041b7bfe1097af21441cb77d6af95f4f4680"], "edition": 1, "description": "The do_ip_vs_get_ctl function in net/netfilter/ipvs/ip_vs_ctl.c in the Linux kernel before 3.6 does not initialize a certain structure for IP_VS_SO_GET_TIMEOUT commands, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6540", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6540"], "scanner": [], "modified": "2013-05-14T23:33:41", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6540", "id": "CVE-2012-6540", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:18", "references": ["http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f9432c5ec8b1e9a09b9b0e5569e3c73db8de432a", "https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "http://www.ubuntu.com/usn/USN-1808-1", "https://github.com/torvalds/linux/commit/9344a972961d1a6d2c04d9008b13617bcb6ec2ef", "http://www.ubuntu.com/usn/USN-1805-1", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9344a972961d1a6d2c04d9008b13617bcb6ec2ef", "https://github.com/torvalds/linux/commit/f9432c5ec8b1e9a09b9b0e5569e3c73db8de432a", "http://rhn.redhat.com/errata/RHSA-2013-1645.html", "https://github.com/torvalds/linux/commit/9ad2de43f1aee7e7274a4e0d41465489299e344b", "http://www.openwall.com/lists/oss-security/2013/03/05/13", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9ad2de43f1aee7e7274a4e0d41465489299e344b"], "edition": 1, "description": "The Bluetooth RFCOMM implementation in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a crafted application.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6545", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6545"], "scanner": [], "modified": "2014-01-03T23:43:34", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:redhat:enterprise_linux:5", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6545", "id": "CVE-2012-6545", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:16", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "http://www.ubuntu.com/usn/USN-1808-1", "https://github.com/torvalds/linux/commit/e15ca9a0ef9a86f0477530b0f44a725d67f889ee", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3f68ba07b1da811bf383b4b701b129bfcb2e4988", "http://www.ubuntu.com/usn/USN-1805-1", "https://github.com/torvalds/linux/commit/3f68ba07b1da811bf383b4b701b129bfcb2e4988", "https://github.com/torvalds/linux/commit/792039c73cf176c8e39a6e8beef2c94ff46522ed", "http://www.openwall.com/lists/oss-security/2013/03/05/13", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=e15ca9a0ef9a86f0477530b0f44a725d67f889ee", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=792039c73cf176c8e39a6e8beef2c94ff46522ed", "http://rhn.redhat.com/errata/RHSA-2013-1173.html"], "edition": 1, "description": "The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the (1) L2CAP or (2) HCI implementation.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6544", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6544"], "scanner": [], "modified": "2014-02-06T23:44:13", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:redhat:enterprise_linux:5", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6544", "id": "CVE-2012-6544", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-09-03T17:25:16", "references": ["https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2", "http://www.ubuntu.com/usn/USN-1808-1", "http://www.ubuntu.com/usn/USN-1805-1", "https://github.com/torvalds/linux/commit/3592aaeb80290bda0f2cf0b5456c97bfc638b192", "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3592aaeb80290bda0f2cf0b5456c97bfc638b192", "http://rhn.redhat.com/errata/RHSA-2013-1645.html", "http://www.openwall.com/lists/oss-security/2013/03/05/13"], "edition": 1, "description": "The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument.", "reporter": "NVD", "published": "2013-03-15T16:55:07", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "cve", "title": "CVE-2012-6542", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-6542"], "scanner": [], "modified": "2014-01-03T23:43:33", "cpe": ["cpe:/o:linux:linux_kernel:3.0.57", "cpe:/o:linux:linux_kernel:3.0.36", "cpe:/o:linux:linux_kernel:3.4.4", "cpe:/o:linux:linux_kernel:3.4.30", "cpe:/o:linux:linux_kernel:3.1.4", "cpe:/o:linux:linux_kernel:3.1.7", "cpe:/o:linux:linux_kernel:3.2:rc5", "cpe:/o:linux:linux_kernel:3.0.30", "cpe:/o:linux:linux_kernel:3.0.64", "cpe:/o:linux:linux_kernel:3.4.10", "cpe:/o:linux:linux_kernel:3.4:rc7", "cpe:/o:linux:linux_kernel:3.2.14", "cpe:/o:linux:linux_kernel:3.4.27", "cpe:/o:linux:linux_kernel:3.0.27", "cpe:/o:linux:linux_kernel:3.2.7", "cpe:/o:linux:linux_kernel:3.0.61", "cpe:/o:linux:linux_kernel:3.4.19", "cpe:/o:linux:linux_kernel:3.4.21", "cpe:/o:linux:linux_kernel:3.2.24", "cpe:/o:linux:linux_kernel:3.2.25", "cpe:/o:linux:linux_kernel:3.5.5", "cpe:/o:linux:linux_kernel:3.2:rc4", "cpe:/o:linux:linux_kernel:3.0.33", "cpe:/o:linux:linux_kernel:3.3.6", "cpe:/o:linux:linux_kernel:3.2.8", "cpe:/o:linux:linux_kernel:3.0.47", "cpe:/o:linux:linux_kernel:3.3:rc6", "cpe:/o:linux:linux_kernel:3.0.9", "cpe:/o:linux:linux_kernel:3.4.23", "cpe:/o:linux:linux_kernel:3.4.2", "cpe:/o:linux:linux_kernel:3.4.13", "cpe:/o:linux:linux_kernel:3.2.29", "cpe:/o:linux:linux_kernel:3.2.18", "cpe:/o:redhat:enterprise_linux:5", "cpe:/o:linux:linux_kernel:3.0.6", "cpe:/o:linux:linux_kernel:3.3:rc7", "cpe:/o:linux:linux_kernel:3.0.17", "cpe:/o:linux:linux_kernel:3.2.23", "cpe:/o:linux:linux_kernel:3.0.10", "cpe:/o:linux:linux_kernel:3.0.40", "cpe:/o:linux:linux_kernel:3.0.67", "cpe:/o:linux:linux_kernel:3.1.3", "cpe:/o:linux:linux_kernel:3.0.45", "cpe:/o:linux:linux_kernel:3.0.7", "cpe:/o:linux:linux_kernel:3.3", "cpe:/o:linux:linux_kernel:3.0.20", "cpe:/o:linux:linux_kernel:3.2.30", "cpe:/o:linux:linux_kernel:3.0.31", "cpe:/o:linux:linux_kernel:3.4.9", "cpe:/o:linux:linux_kernel:3.0.49", "cpe:/o:linux:linux_kernel:3.2.13", "cpe:/o:linux:linux_kernel:3.4.24", "cpe:/o:linux:linux_kernel:3.0.12", "cpe:/o:linux:linux_kernel:3.0.41", "cpe:/o:linux:linux_kernel:3.2:rc2", "cpe:/o:linux:linux_kernel:3.0.59", "cpe:/o:linux:linux_kernel:3.0.15", "cpe:/o:linux:linux_kernel:3.2.27", "cpe:/o:linux:linux_kernel:3.0.50", "cpe:/o:linux:linux_kernel:3.0.23", "cpe:/o:linux:linux_kernel:3.0.44", "cpe:/o:linux:linux_kernel:3.1.10", "cpe:/o:linux:linux_kernel:3.4.6", "cpe:/o:linux:linux_kernel:3.3:rc3", "cpe:/o:linux:linux_kernel:3.0.13", "cpe:/o:linux:linux_kernel:3.0.5", "cpe:/o:linux:linux_kernel:3.0.39", "cpe:/o:linux:linux_kernel:3.5.1", "cpe:/o:linux:linux_kernel:3.0.3", "cpe:/o:linux:linux_kernel:3.0.63", "cpe:/o:linux:linux_kernel:3.2.28", "cpe:/o:linux:linux_kernel:3.3.4", "cpe:/o:linux:linux_kernel:3.3.7", "cpe:/o:linux:linux_kernel:3.0.14", "cpe:/o:linux:linux_kernel:3.4:rc4", "cpe:/o:linux:linux_kernel:3.0.28", "cpe:/o:linux:linux_kernel:3.0.25", "cpe:/o:linux:linux_kernel:3.0.56", "cpe:/o:linux:linux_kernel:3.3:rc2", "cpe:/o:linux:linux_kernel:3.0.1", "cpe:/o:linux:linux_kernel:3.2.3", "cpe:/o:linux:linux_kernel:3.0.58", "cpe:/o:linux:linux_kernel:3.0.8", "cpe:/o:linux:linux_kernel:3.0.66", "cpe:/o:linux:linux_kernel:3.2.17", "cpe:/o:linux:linux_kernel:3.0.60", "cpe:/o:linux:linux_kernel:3.2.6", "cpe:/o:linux:linux_kernel:3.2.1", "cpe:/o:linux:linux_kernel:3.4.3", "cpe:/o:linux:linux_kernel:3.4.32", "cpe:/o:linux:linux_kernel:3.3.2", "cpe:/o:linux:linux_kernel:3.0:rc1", "cpe:/o:linux:linux_kernel:3.0.65", "cpe:/o:linux:linux_kernel:3.4.20", "cpe:/o:linux:linux_kernel:3.3.3", "cpe:/o:linux:linux_kernel:3.2.19", "cpe:/o:linux:linux_kernel:3.1:rc4", "cpe:/o:linux:linux_kernel:3.2.16", "cpe:/o:linux:linux_kernel:3.0.62", "cpe:/o:linux:linux_kernel:3.0.55", "cpe:/o:linux:linux_kernel:3.1.1", "cpe:/o:linux:linux_kernel:3.2.5", "cpe:/o:linux:linux_kernel:3.0.46", "cpe:/o:linux:linux_kernel:3.2:rc6", "cpe:/o:linux:linux_kernel:3.2.2", "cpe:/o:linux:linux_kernel:3.5.6", "cpe:/o:linux:linux_kernel:3.4.22", "cpe:/o:linux:linux_kernel:3.0.18", "cpe:/o:linux:linux_kernel:3.4.26", "cpe:/o:linux:linux_kernel:3.0.19", "cpe:/o:linux:linux_kernel:3.1.5", "cpe:/o:linux:linux_kernel:3.2:rc7", "cpe:/o:linux:linux_kernel:3.0.26", "cpe:/o:linux:linux_kernel:3.4", "cpe:/o:linux:linux_kernel:3.4.17", "cpe:/o:linux:linux_kernel:3.0.68", "cpe:/o:linux:linux_kernel:3.3:rc4", "cpe:/o:linux:linux_kernel:3.0.37", "cpe:/o:linux:linux_kernel:3.0.34", "cpe:/o:linux:linux_kernel:3.0.32", "cpe:/o:linux:linux_kernel:3.3.8", "cpe:/o:linux:linux_kernel:3.0.16", "cpe:/o:linux:linux_kernel:3.4:rc2", "cpe:/o:linux:linux_kernel:3.0.38", "cpe:/o:linux:linux_kernel:3.2.4", "cpe:/o:linux:linux_kernel:3.4.29", "cpe:/o:linux:linux_kernel:3.4.15", "cpe:/o:linux:linux_kernel:3.2.15", "cpe:/o:linux:linux_kernel:3.1.9", "cpe:/o:linux:linux_kernel:3.4.18", "cpe:/o:linux:linux_kernel:3.2.20", "cpe:/o:linux:linux_kernel:3.0:rc7", "cpe:/o:linux:linux_kernel:3.2:rc3", "cpe:/o:linux:linux_kernel:3.2.12", "cpe:/o:linux:linux_kernel:3.0:rc4", "cpe:/o:linux:linux_kernel:3.2.21", "cpe:/o:linux:linux_kernel:3.0.2", "cpe:/o:linux:linux_kernel:3.4.8", "cpe:/o:linux:linux_kernel:3.2.11", "cpe:/o:linux:linux_kernel:3.5.7", "cpe:/o:linux:linux_kernel:3.2.22", "cpe:/o:linux:linux_kernel:3.0:rc2", "cpe:/o:linux:linux_kernel:3.0.53", "cpe:/o:linux:linux_kernel:3.0.4", "cpe:/o:linux:linux_kernel:3.0.42", "cpe:/o:linux:linux_kernel:3.0.21", "cpe:/o:linux:linux_kernel:3.2.9", "cpe:/o:linux:linux_kernel:3.1:rc1", "cpe:/o:linux:linux_kernel:3.4.28", "cpe:/o:linux:linux_kernel:3.0.29", "cpe:/o:linux:linux_kernel:3.2", "cpe:/o:linux:linux_kernel:3.4.7", "cpe:/o:linux:linux_kernel:3.5.4", "cpe:/o:linux:linux_kernel:3.4.25", "cpe:/o:linux:linux_kernel:3.3.5", "cpe:/o:linux:linux_kernel:3.5.3", "cpe:/o:linux:linux_kernel:3.4.14", "cpe:/o:linux:linux_kernel:3.0.43", "cpe:/o:linux:linux_kernel:3.0.11", "cpe:/o:linux:linux_kernel:3.5.2", "cpe:/o:linux:linux_kernel:3.4:rc6", "cpe:/o:linux:linux_kernel:3.0.35", "cpe:/o:linux:linux_kernel:3.4.16", "cpe:/o:linux:linux_kernel:3.4:rc1", "cpe:/o:linux:linux_kernel:3.0.52", "cpe:/o:linux:linux_kernel:3.0.51", "cpe:/o:linux:linux_kernel:3.4:rc5", "cpe:/o:linux:linux_kernel:3.0.48", "cpe:/o:linux:linux_kernel:3.0.54", "cpe:/o:linux:linux_kernel:3.3:rc5", "cpe:/o:linux:linux_kernel:3.1:rc2", "cpe:/o:linux:linux_kernel:3.3:rc1", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:linux:linux_kernel:3.1", "cpe:/o:linux:linux_kernel:3.4.12", "cpe:/o:linux:linux_kernel:3.4:rc3", "cpe:/o:linux:linux_kernel:3.4.31", "cpe:/o:linux:linux_kernel:3.1.6", "cpe:/o:linux:linux_kernel:3.0.22", "cpe:/o:linux:linux_kernel:3.0.24", "cpe:/o:linux:linux_kernel:3.1.8", "cpe:/o:linux:linux_kernel:3.0:rc6", "cpe:/o:linux:linux_kernel:3.1.2", "cpe:/o:linux:linux_kernel:3.3.1", "cpe:/o:linux:linux_kernel:3.2.26", "cpe:/o:linux:linux_kernel:3.0:rc3", "cpe:/o:linux:linux_kernel:3.0:rc5", "cpe:/o:linux:linux_kernel:3.4.5", "cpe:/o:linux:linux_kernel:3.4.1", "cpe:/o:linux:linux_kernel:3.2.10", "cpe:/o:linux:linux_kernel:3.4.11", "cpe:/o:linux:linux_kernel:3.1:rc3"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6542", "id": "CVE-2012-6542", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "nessus": [{"lastseen": "2018-09-01T23:36:26", "references": ["https://oss.oracle.com/pipermail/el-errata/2013-April/003417.html"], "pluginID": "68809", "description": "From Red Hat Security Advisory 2013:0747 :\n\nUpdated kernel packages that fix several security issues and three bugs are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the Xen netback driver implementation in the Linux kernel. A privileged guest user with access to a para-virtualized network device could use this flaw to cause a long loop in netback, leading to a denial of service that could potentially affect the entire system. (CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver implementation in the Linux kernel. A privileged guest user in a guest that has a PCI passthrough device could use this flaw to cause a denial of service that could potentially affect the entire system.\n(CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet transformation framework (XFRM) implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use this flaw to cause a denial of service. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC) implementation in the Linux kernel. A local, unprivileged user could use this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's Asynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user could use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in the Linux kernel's networking implementation. A local user with access to a TUN/TAP virtual interface could use this flaw to leak kernel stack memory to user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the CVE-2013-0216 and CVE-2013-0231 issues.\n\nThis update also fixes the following bugs :\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit (MTU) of the designed interface when receiving ICMP Fragmentation Needed packets. Consequently, a remote host did not respond correctly to ping attempts. With this update, the IPv4 code has been modified so the MTU of the designed interface is adjusted as expected in this situation. The ping command now provides the expected output.\n(BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC completion message from the firmware to be transferred by direct memory access (DMA) at once. However, this is not always true, and could therefore cause the BUG_ON() macro to be triggered in the be_mcc_compl_is_new() function, consequently leading to a kernel panic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(), and the kernel panic no longer occurs in this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to 32-bit. Consequently, the cookies became invalid, which affected all file system operations depending on these cookies, such as the READDIR operation that is used to read entries from a directory. This led to various problems, such as exported directories being empty or displayed incorrectly, or an endless loop of the READDIRPLUS procedure which could potentially cause a buffer overflow. This update modifies knfsd code so that 64-bit cookies are now handled correctly and all file system operations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 5, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 5 : kernel (ELSA-2013-0747)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2018-07-18T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:kernel-debug", "p-cpe:/a:oracle:linux:kernel-devel", "p-cpe:/a:oracle:linux:kernel-doc", "p-cpe:/a:oracle:linux:kernel-PAE", "cpe:/o:oracle:linux:5", "p-cpe:/a:oracle:linux:kernel-xen-devel", "p-cpe:/a:oracle:linux:kernel-debug-devel", "p-cpe:/a:oracle:linux:kernel-headers", "p-cpe:/a:oracle:linux:kernel-PAE-devel", "p-cpe:/a:oracle:linux:kernel", "p-cpe:/a:oracle:linux:kernel-xen"], "id": "ORACLELINUX_ELSA-2013-0747.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=68809", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2013:0747 and \n# Oracle Linux Security Advisory ELSA-2013-0747 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68809);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/18 17:43:57\");\n\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6542\", \"CVE-2012-6546\", \"CVE-2012-6547\", \"CVE-2013-0216\", \"CVE-2013-0231\", \"CVE-2013-1826\");\n script_bugtraq_id(57740, 57743, 58381, 58977, 58989, 58992, 58996);\n script_xref(name:\"RHSA\", value:\"2013:0747\");\n\n script_name(english:\"Oracle Linux 5 : kernel (ELSA-2013-0747)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2013:0747 :\n\nUpdated kernel packages that fix several security issues and three\nbugs are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the Xen netback driver implementation in the\nLinux kernel. A privileged guest user with access to a\npara-virtualized network device could use this flaw to cause a long\nloop in netback, leading to a denial of service that could potentially\naffect the entire system. (CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver\nimplementation in the Linux kernel. A privileged guest user in a guest\nthat has a PCI passthrough device could use this flaw to cause a\ndenial of service that could potentially affect the entire system.\n(CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet\ntransformation framework (XFRM) implementation in the Linux kernel. A\nlocal user who has the CAP_NET_ADMIN capability could use this flaw to\ncause a denial of service. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the\nLinux kernel. A local user who has the CAP_NET_ADMIN capability could\nuse these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC)\nimplementation in the Linux kernel. A local, unprivileged user could\nuse this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's\nAsynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user\ncould use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in\nthe Linux kernel's networking implementation. A local user with access\nto a TUN/TAP virtual interface could use this flaw to leak kernel\nstack memory to user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the\nCVE-2013-0216 and CVE-2013-0231 issues.\n\nThis update also fixes the following bugs :\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit\n(MTU) of the designed interface when receiving ICMP Fragmentation\nNeeded packets. Consequently, a remote host did not respond correctly\nto ping attempts. With this update, the IPv4 code has been modified so\nthe MTU of the designed interface is adjusted as expected in this\nsituation. The ping command now provides the expected output.\n(BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC\ncompletion message from the firmware to be transferred by direct\nmemory access (DMA) at once. However, this is not always true, and\ncould therefore cause the BUG_ON() macro to be triggered in the\nbe_mcc_compl_is_new() function, consequently leading to a kernel\npanic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(),\nand the kernel panic no longer occurs in this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to\n32-bit. Consequently, the cookies became invalid, which affected all\nfile system operations depending on these cookies, such as the READDIR\noperation that is used to read entries from a directory. This led to\nvarious problems, such as exported directories being empty or\ndisplayed incorrectly, or an endless loop of the READDIRPLUS procedure\nwhich could potentially cause a buffer overflow. This update modifies\nknfsd code so that 64-bit cookies are now handled correctly and all\nfile system operations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-April/003417.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-PAE-2.6.18\") && rpm_check(release:\"EL5\", cpu:\"i386\", reference:\"kernel-PAE-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-PAE-devel-2.6.18\") && rpm_check(release:\"EL5\", cpu:\"i386\", reference:\"kernel-PAE-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-debug-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-debug-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-debug-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-debug-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-doc-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-doc-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-headers-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-headers-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-xen-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-xen-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-xen-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-xen-devel-2.6.18-348.4.1.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-12T10:07:14", "references": ["https://www.redhat.com/security/data/cve/CVE-2012-6537.html", "https://www.redhat.com/security/data/cve/CVE-2013-0231.html", "http://rhn.redhat.com/errata/RHSA-2013-0747.html", "https://www.redhat.com/security/data/cve/CVE-2013-0216.html", "https://www.redhat.com/security/data/cve/CVE-2012-6547.html", "https://www.redhat.com/security/data/cve/CVE-2012-6542.html", "https://www.redhat.com/security/data/cve/CVE-2012-6546.html", "https://www.redhat.com/security/data/cve/CVE-2013-1826.html"], "pluginID": "65991", "description": "Updated kernel packages that fix several security issues and three bugs are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the Xen netback driver implementation in the Linux kernel. A privileged guest user with access to a para-virtualized network device could use this flaw to cause a long loop in netback, leading to a denial of service that could potentially affect the entire system. (CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver implementation in the Linux kernel. A privileged guest user in a guest that has a PCI passthrough device could use this flaw to cause a denial of service that could potentially affect the entire system.\n(CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet transformation framework (XFRM) implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use this flaw to cause a denial of service. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC) implementation in the Linux kernel. A local, unprivileged user could use this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's Asynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user could use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in the Linux kernel's networking implementation. A local user with access to a TUN/TAP virtual interface could use this flaw to leak kernel stack memory to user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the CVE-2013-0216 and CVE-2013-0231 issues.\n\nThis update also fixes the following bugs :\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit (MTU) of the designed interface when receiving ICMP Fragmentation Needed packets. Consequently, a remote host did not respond correctly to ping attempts. With this update, the IPv4 code has been modified so the MTU of the designed interface is adjusted as expected in this situation. The ping command now provides the expected output.\n(BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC completion message from the firmware to be transferred by direct memory access (DMA) at once. However, this is not always true, and could therefore cause the BUG_ON() macro to be triggered in the be_mcc_compl_is_new() function, consequently leading to a kernel panic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(), and the kernel panic no longer occurs in this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to 32-bit. Consequently, the cookies became invalid, which affected all file system operations depending on these cookies, such as the READDIR operation that is used to read entries from a directory. This led to various problems, such as exported directories being empty or displayed incorrectly, or an endless loop of the READDIRPLUS procedure which could potentially cause a buffer overflow. This update modifies knfsd code so that 64-bit cookies are now handled correctly and all file system operations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 7, "reporter": "Tenable", "published": "2013-04-17T00:00:00", "title": "RHEL 5 : kernel (RHSA-2013:0747)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2018-09-10T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump", "cpe:/o:redhat:enterprise_linux:5", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common", "cpe:/o:redhat:enterprise_linux:5.9", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debug", "p-cpe:/a:redhat:enterprise_linux:kernel-headers", "p-cpe:/a:redhat:enterprise_linux:kernel-xen-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump-debuginfo", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:kernel-xen", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE", "p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-doc"], "id": "REDHAT-RHSA-2013-0747.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=65991", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:0747. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(65991);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/09/10 11:37:05\");\n\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6542\", \"CVE-2012-6546\", \"CVE-2012-6547\", \"CVE-2013-0216\", \"CVE-2013-0231\", \"CVE-2013-1826\");\n script_bugtraq_id(57740, 57743, 58381, 58977, 58989, 58992, 58996);\n script_xref(name:\"RHSA\", value:\"2013:0747\");\n\n script_name(english:\"RHEL 5 : kernel (RHSA-2013:0747)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix several security issues and three\nbugs are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the Xen netback driver implementation in the\nLinux kernel. A privileged guest user with access to a\npara-virtualized network device could use this flaw to cause a long\nloop in netback, leading to a denial of service that could potentially\naffect the entire system. (CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver\nimplementation in the Linux kernel. A privileged guest user in a guest\nthat has a PCI passthrough device could use this flaw to cause a\ndenial of service that could potentially affect the entire system.\n(CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet\ntransformation framework (XFRM) implementation in the Linux kernel. A\nlocal user who has the CAP_NET_ADMIN capability could use this flaw to\ncause a denial of service. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the\nLinux kernel. A local user who has the CAP_NET_ADMIN capability could\nuse these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC)\nimplementation in the Linux kernel. A local, unprivileged user could\nuse this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's\nAsynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user\ncould use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in\nthe Linux kernel's networking implementation. A local user with access\nto a TUN/TAP virtual interface could use this flaw to leak kernel\nstack memory to user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the\nCVE-2013-0216 and CVE-2013-0231 issues.\n\nThis update also fixes the following bugs :\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit\n(MTU) of the designed interface when receiving ICMP Fragmentation\nNeeded packets. Consequently, a remote host did not respond correctly\nto ping attempts. With this update, the IPv4 code has been modified so\nthe MTU of the designed interface is adjusted as expected in this\nsituation. The ping command now provides the expected output.\n(BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC\ncompletion message from the firmware to be transferred by direct\nmemory access (DMA) at once. However, this is not always true, and\ncould therefore cause the BUG_ON() macro to be triggered in the\nbe_mcc_compl_is_new() function, consequently leading to a kernel\npanic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(),\nand the kernel panic no longer occurs in this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to\n32-bit. Consequently, the cookies became invalid, which affected all\nfile system operations depending on these cookies, such as the READDIR\noperation that is used to read entries from a directory. This led to\nvarious problems, such as exported directories being empty or\ndisplayed incorrectly, or an endless loop of the READDIRPLUS procedure\nwhich could potentially cause a buffer overflow. This update modifies\nknfsd code so that 64-bit cookies are now handled correctly and all\nfile system operations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2013-0747.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2012-6547.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2012-6546.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2013-0216.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2012-6542.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2013-1826.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2013-0231.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2012-6537.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5.9\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2013:0747\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-PAE-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-PAE-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-PAE-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-debug-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-debug-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-debug-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-debug-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-debug-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-debug-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-debug-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-debug-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-debug-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-debuginfo-common-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-debuginfo-common-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-debuginfo-common-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"kernel-doc-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"kernel-headers-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-headers-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-headers-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-kdump-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-kdump-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-kdump-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-xen-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-xen-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-xen-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-xen-debuginfo-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-xen-devel-2.6.18-348.4.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-xen-devel-2.6.18-348.4.1.el5\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-PAE / kernel-PAE-debuginfo / kernel-PAE-devel / etc\");\n }\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:56:29", "references": ["http://www.nessus.org/u?ca60264a"], "pluginID": "65988", "description": "Updated kernel packages that fix several security issues and three bugs are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the Xen netback driver implementation in the Linux kernel. A privileged guest user with access to a para-virtualized network device could use this flaw to cause a long loop in netback, leading to a denial of service that could potentially affect the entire system. (CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver implementation in the Linux kernel. A privileged guest user in a guest that has a PCI passthrough device could use this flaw to cause a denial of service that could potentially affect the entire system.\n(CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet transformation framework (XFRM) implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use this flaw to cause a denial of service. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC) implementation in the Linux kernel. A local, unprivileged user could use this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's Asynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user could use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in the Linux kernel's networking implementation. A local user with access to a TUN/TAP virtual interface could use this flaw to leak kernel stack memory to user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the CVE-2013-0216 and CVE-2013-0231 issues.\n\nThis update also fixes the following bugs :\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit (MTU) of the designed interface when receiving ICMP Fragmentation Needed packets. Consequently, a remote host did not respond correctly to ping attempts. With this update, the IPv4 code has been modified so the MTU of the designed interface is adjusted as expected in this situation. The ping command now provides the expected output.\n(BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC completion message from the firmware to be transferred by direct memory access (DMA) at once. However, this is not always true, and could therefore cause the BUG_ON() macro to be triggered in the be_mcc_compl_is_new() function, consequently leading to a kernel panic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(), and the kernel panic no longer occurs in this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to 32-bit. Consequently, the cookies became invalid, which affected all file system operations depending on these cookies, such as the READDIR operation that is used to read entries from a directory. This led to various problems, such as exported directories being empty or displayed incorrectly, or an endless loop of the READDIRPLUS procedure which could potentially cause a buffer overflow. This update modifies knfsd code so that 64-bit cookies are now handled correctly and all file system operations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 5, "reporter": "Tenable", "published": "2013-04-17T00:00:00", "title": "CentOS 5 : kernel (CESA-2013:0747)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2018-07-02T00:00:00", "cpe": ["p-cpe:/a:centos:centos:kernel-PAE-devel", "p-cpe:/a:centos:centos:kernel-xen-devel", "p-cpe:/a:centos:centos:kernel-xen", "p-cpe:/a:centos:centos:kernel-doc", "p-cpe:/a:centos:centos:kernel-devel", "p-cpe:/a:centos:centos:kernel", "p-cpe:/a:centos:centos:kernel-debug", "p-cpe:/a:centos:centos:kernel-headers", "cpe:/o:centos:centos:5", "p-cpe:/a:centos:centos:kernel-PAE", "p-cpe:/a:centos:centos:kernel-debug-devel"], "id": "CENTOS_RHSA-2013-0747.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=65988", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:0747 and \n# CentOS Errata and Security Advisory 2013:0747 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(65988);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/07/02 18:48:53\");\n\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6542\", \"CVE-2012-6546\", \"CVE-2012-6547\", \"CVE-2013-0216\", \"CVE-2013-0231\", \"CVE-2013-1826\");\n script_bugtraq_id(57740, 57743, 58381, 58977, 58989, 58992, 58996);\n script_xref(name:\"RHSA\", value:\"2013:0747\");\n\n script_name(english:\"CentOS 5 : kernel (CESA-2013:0747)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix several security issues and three\nbugs are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the Xen netback driver implementation in the\nLinux kernel. A privileged guest user with access to a\npara-virtualized network device could use this flaw to cause a long\nloop in netback, leading to a denial of service that could potentially\naffect the entire system. (CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver\nimplementation in the Linux kernel. A privileged guest user in a guest\nthat has a PCI passthrough device could use this flaw to cause a\ndenial of service that could potentially affect the entire system.\n(CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet\ntransformation framework (XFRM) implementation in the Linux kernel. A\nlocal user who has the CAP_NET_ADMIN capability could use this flaw to\ncause a denial of service. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the\nLinux kernel. A local user who has the CAP_NET_ADMIN capability could\nuse these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC)\nimplementation in the Linux kernel. A local, unprivileged user could\nuse this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's\nAsynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user\ncould use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in\nthe Linux kernel's networking implementation. A local user with access\nto a TUN/TAP virtual interface could use this flaw to leak kernel\nstack memory to user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the\nCVE-2013-0216 and CVE-2013-0231 issues.\n\nThis update also fixes the following bugs :\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit\n(MTU) of the designed interface when receiving ICMP Fragmentation\nNeeded packets. Consequently, a remote host did not respond correctly\nto ping attempts. With this update, the IPv4 code has been modified so\nthe MTU of the designed interface is adjusted as expected in this\nsituation. The ping command now provides the expected output.\n(BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC\ncompletion message from the firmware to be transferred by direct\nmemory access (DMA) at once. However, this is not always true, and\ncould therefore cause the BUG_ON() macro to be triggered in the\nbe_mcc_compl_is_new() function, consequently leading to a kernel\npanic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(),\nand the kernel panic no longer occurs in this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to\n32-bit. Consequently, the cookies became invalid, which affected all\nfile system operations depending on these cookies, such as the READDIR\noperation that is used to read entries from a directory. This led to\nvarious problems, such as exported directories being empty or\ndisplayed incorrectly, or an endless loop of the READDIRPLUS procedure\nwhich could potentially cause a buffer overflow. This update modifies\nknfsd code so that 64-bit cookies are now handled correctly and all\nfile system operations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2013-April/019690.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ca60264a\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", cpu:\"i386\", reference:\"kernel-PAE-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", cpu:\"i386\", reference:\"kernel-PAE-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-debug-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-debug-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-doc-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-headers-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-xen-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-xen-devel-2.6.18-348.4.1.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:40:17", "references": ["http://www.nessus.org/u?6effbf37"], "pluginID": "66016", "description": "This update fixes the following security issues :\n\n - A flaw was found in the Xen netback driver implementation in the Linux kernel. A privileged guest user with access to a para-virtualized network device could use this flaw to cause a long loop in netback, leading to a denial of service that could potentially affect the entire system. (CVE-2013-0216, Moderate)\n\n - A flaw was found in the Xen PCI device back-end driver implementation in the Linux kernel. A privileged guest user in a guest that has a PCI passthrough device could use this flaw to cause a denial of service that could potentially affect the entire system. (CVE-2013-0231, Moderate)\n\n - A NULL pointer dereference flaw was found in the IP packet transformation framework (XFRM) implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use this flaw to cause a denial of service. (CVE-2013-1826, Moderate)\n\n - Information leak flaws were found in the XFRM implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use these flaws to leak kernel stack memory to user-space. (CVE-2012-6537, Low)\n\n - An information leak flaw was found in the logical link control (LLC) implementation in the Linux kernel. A local, unprivileged user could use this flaw to leak kernel stack memory to user-space. (CVE-2012-6542, Low)\n\n - Two information leak flaws were found in the Linux kernel's Asynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user could use these flaws to leak kernel stack memory to user-space. (CVE-2012-6546, Low)\n\n - An information leak flaw was found in the TUN/TAP device driver in the Linux kernel's networking implementation.\n A local user with access to a TUN/TAP virtual interface could use this flaw to leak kernel stack memory to user-space. (CVE-2012-6547, Low)\n\nThis update also fixes the following bugs :\n\n - The IPv4 code did not correctly update the Maximum Transfer Unit (MTU) of the designed interface when receiving ICMP Fragmentation Needed packets.\n Consequently, a remote host did not respond correctly to ping attempts. With this update, the IPv4 code has been modified so the MTU of the designed interface is adjusted as expected in this situation. The ping command now provides the expected output.\n\n - Previously, the be2net code expected the last word of an MCC completion message from the firmware to be transferred by direct memory access (DMA) at once.\n However, this is not always true, and could therefore cause the BUG_ON() macro to be triggered in the be_mcc_compl_is_new() function, consequently leading to a kernel panic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(), and the kernel panic no longer occurs in this scenario.\n\n - Previously, the NFSv3 server incorrectly converted 64-bit cookies to 32-bit. Consequently, the cookies became invalid, which affected all file system operations depending on these cookies, such as the READDIR operation that is used to read entries from a directory. This led to various problems, such as exported directories being empty or displayed incorrectly, or an endless loop of the READDIRPLUS procedure which could potentially cause a buffer overflow. This update modifies knfsd code so that 64-bit cookies are now handled correctly and all file system operations work as expected.\n\nThe system must be rebooted for this update to take effect.", "edition": 4, "reporter": "Tenable", "published": "2013-04-18T00:00:00", "title": "Scientific Linux Security Update : kernel on SL5.x i386/x86_64", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2013-0217", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2013-04-18T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20130416_KERNEL_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=66016", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66016);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2013/04/18 10:52:01 $\");\n\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6542\", \"CVE-2012-6546\", \"CVE-2012-6547\", \"CVE-2013-0216\", \"CVE-2013-0217\", \"CVE-2013-0231\", \"CVE-2013-1826\");\n\n script_name(english:\"Scientific Linux Security Update : kernel on SL5.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update fixes the following security issues :\n\n - A flaw was found in the Xen netback driver\n implementation in the Linux kernel. A privileged guest\n user with access to a para-virtualized network device\n could use this flaw to cause a long loop in netback,\n leading to a denial of service that could potentially\n affect the entire system. (CVE-2013-0216, Moderate)\n\n - A flaw was found in the Xen PCI device back-end driver\n implementation in the Linux kernel. A privileged guest\n user in a guest that has a PCI passthrough device could\n use this flaw to cause a denial of service that could\n potentially affect the entire system. (CVE-2013-0231,\n Moderate)\n\n - A NULL pointer dereference flaw was found in the IP\n packet transformation framework (XFRM) implementation in\n the Linux kernel. A local user who has the CAP_NET_ADMIN\n capability could use this flaw to cause a denial of\n service. (CVE-2013-1826, Moderate)\n\n - Information leak flaws were found in the XFRM\n implementation in the Linux kernel. A local user who has\n the CAP_NET_ADMIN capability could use these flaws to\n leak kernel stack memory to user-space. (CVE-2012-6537,\n Low)\n\n - An information leak flaw was found in the logical link\n control (LLC) implementation in the Linux kernel. A\n local, unprivileged user could use this flaw to leak\n kernel stack memory to user-space. (CVE-2012-6542, Low)\n\n - Two information leak flaws were found in the Linux\n kernel's Asynchronous Transfer Mode (ATM) subsystem. A\n local, unprivileged user could use these flaws to leak\n kernel stack memory to user-space. (CVE-2012-6546, Low)\n\n - An information leak flaw was found in the TUN/TAP device\n driver in the Linux kernel's networking implementation.\n A local user with access to a TUN/TAP virtual interface\n could use this flaw to leak kernel stack memory to\n user-space. (CVE-2012-6547, Low)\n\nThis update also fixes the following bugs :\n\n - The IPv4 code did not correctly update the Maximum\n Transfer Unit (MTU) of the designed interface when\n receiving ICMP Fragmentation Needed packets.\n Consequently, a remote host did not respond correctly to\n ping attempts. With this update, the IPv4 code has been\n modified so the MTU of the designed interface is\n adjusted as expected in this situation. The ping command\n now provides the expected output.\n\n - Previously, the be2net code expected the last word of an\n MCC completion message from the firmware to be\n transferred by direct memory access (DMA) at once.\n However, this is not always true, and could therefore\n cause the BUG_ON() macro to be triggered in the\n be_mcc_compl_is_new() function, consequently leading to\n a kernel panic. The BUG_ON() macro has been removed from\n be_mcc_compl_is_new(), and the kernel panic no longer\n occurs in this scenario.\n\n - Previously, the NFSv3 server incorrectly converted\n 64-bit cookies to 32-bit. Consequently, the cookies\n became invalid, which affected all file system\n operations depending on these cookies, such as the\n READDIR operation that is used to read entries from a\n directory. This led to various problems, such as\n exported directories being empty or displayed\n incorrectly, or an endless loop of the READDIRPLUS\n procedure which could potentially cause a buffer\n overflow. This update modifies knfsd code so that 64-bit\n cookies are now handled correctly and all file system\n operations work as expected.\n\nThe system must be rebooted for this update to take effect.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind1304&L=scientific-linux-errata&T=0&P=1436\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6effbf37\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"kernel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", cpu:\"i386\", reference:\"kernel-PAE-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", cpu:\"i386\", reference:\"kernel-PAE-debuginfo-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", cpu:\"i386\", reference:\"kernel-PAE-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-debug-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-debug-debuginfo-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-debug-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-debuginfo-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-debuginfo-common-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-devel-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-doc-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-headers-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-xen-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-xen-debuginfo-2.6.18-348.4.1.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-xen-devel-2.6.18-348.4.1.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:52:06", "references": [], "pluginID": "66232", "description": "Mathias Krause discovered an information leak in the Linux kernel's getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel's stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel's Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel's stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel's Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel's Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory.\n(CVE-2012-6546)\n\nMathias Krause discovered an information leak in the Linux kernel's UDF file system implementation. A local user could exploit this flaw to examine some of the kernel's heap memory. (CVE-2012-6548)\n\nAndrew Jones discovered a flaw with the xen_iret function in Linux kernel's Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged guest OS user could exploit this flaw to cause a denial of service (crash the system) or gain guest OS privilege.\n(CVE-2013-0228)\n\nAn information leak was discovered in the Linux kernel's Bluetooth stack when HIDP (Human Interface Device Protocol) support is enabled.\nA local unprivileged user could exploit this flaw to cause an information leak from the kernel. (CVE-2013-0349)\n\nA flaw was discovered in the Edgeort USB serial converter driver when the device is disconnected while it is in use. A local user could exploit this flaw to cause a denial of service (system crash).\n(CVE-2013-1774)\n\nAndrew Honig discovered a flaw in guest OS time updates in the Linux kernel's KVM (Kernel-based Virtual Machine). A privileged guest user could exploit this flaw to cause a denial of service (crash host system) or potential escalate privilege to the host kernel level.\n(CVE-2013-1796).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2013-04-26T00:00:00", "title": "Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1808-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6548", "CVE-2013-0228", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6544", "CVE-2013-1796"], "modified": "2018-08-03T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2"], "id": "UBUNTU_USN-1808-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=66232", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1808-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66232);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/08/03 12:21:24\");\n\n script_cve_id(\"CVE-2012-6542\", \"CVE-2012-6544\", \"CVE-2012-6545\", \"CVE-2012-6546\", \"CVE-2012-6548\", \"CVE-2013-0228\", \"CVE-2013-0349\", \"CVE-2013-1774\", \"CVE-2013-1796\");\n script_bugtraq_id(57940, 58112, 58202, 58607, 58989, 58990, 58991, 58992, 58994);\n script_xref(name:\"USN\", value:\"1808-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1808-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Mathias Krause discovered an information leak in the Linux kernel's\ngetsockname implementation for Logical Link Layer (llc) sockets. A\nlocal user could exploit this flaw to examine some of the kernel's\nstack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel's\nBluetooth Logical Link Control and Adaptation Protocol (L2CAP)\nimplementation. A local user could exploit these flaws to examine some\nof the kernel's stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel's\nBluetooth RFCOMM protocol implementation. A local user could exploit\nthese flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel's\nAsynchronous Transfer Mode (ATM) networking stack. A local user could\nexploit these flaws to examine some parts of kernel memory.\n(CVE-2012-6546)\n\nMathias Krause discovered an information leak in the Linux kernel's\nUDF file system implementation. A local user could exploit this flaw\nto examine some of the kernel's heap memory. (CVE-2012-6548)\n\nAndrew Jones discovered a flaw with the xen_iret function in Linux\nkernel's Xen virtualizeation. In the 32-bit Xen paravirt platform an\nunprivileged guest OS user could exploit this flaw to cause a denial\nof service (crash the system) or gain guest OS privilege.\n(CVE-2013-0228)\n\nAn information leak was discovered in the Linux kernel's Bluetooth\nstack when HIDP (Human Interface Device Protocol) support is enabled.\nA local unprivileged user could exploit this flaw to cause an\ninformation leak from the kernel. (CVE-2013-0349)\n\nA flaw was discovered in the Edgeort USB serial converter driver when\nthe device is disconnected while it is in use. A local user could\nexploit this flaw to cause a denial of service (system crash).\n(CVE-2013-1774)\n\nAndrew Honig discovered a flaw in guest OS time updates in the Linux\nkernel's KVM (Kernel-based Virtual Machine). A privileged guest user\ncould exploit this flaw to cause a denial of service (crash host\nsystem) or potential escalate privilege to the host kernel level.\n(CVE-2013-1796).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-2.6-ec2 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/25\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/26\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-351-ec2\", pkgver:\"2.6.32-351.64\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-ec2\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:50:42", "references": [], "pluginID": "66171", "description": "Mathias Krause discovered an information leak in the Linux kernel's getsockname implementation for Logical Link Layer (llc) sockets. A local user could exploit this flaw to examine some of the kernel's stack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel's Bluetooth Logical Link Control and Adaptation Protocol (L2CAP) implementation. A local user could exploit these flaws to examine some of the kernel's stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel's Bluetooth RFCOMM protocol implementation. A local user could exploit these flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel's Asynchronous Transfer Mode (ATM) networking stack. A local user could exploit these flaws to examine some parts of kernel memory.\n(CVE-2012-6546)\n\nMathias Krause discovered an information leak in the Linux kernel's UDF file system implementation. A local user could exploit this flaw to examine some of the kernel's heap memory. (CVE-2012-6548)\n\nAndrew Jones discovered a flaw with the xen_iret function in Linux kernel's Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged guest OS user could exploit this flaw to cause a denial of service (crash the system) or gain guest OS privilege.\n(CVE-2013-0228)\n\nAn information leak was discovered in the Linux kernel's Bluetooth stack when HIDP (Human Interface Device Protocol) support is enabled.\nA local unprivileged user could exploit this flaw to cause an information leak from the kernel. (CVE-2013-0349)\n\nA flaw was discovered in the Edgeort USB serial converter driver when the device is disconnected while it is in use. A local user could exploit this flaw to cause a denial of service (system crash).\n(CVE-2013-1774)\n\nAndrew Honig discovered a flaw in guest OS time updates in the Linux kernel's KVM (Kernel-based Virtual Machine). A privileged guest user could exploit this flaw to cause a denial of service (crash host system) or potential escalate privilege to the host kernel level.\n(CVE-2013-1796).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2013-04-22T00:00:00", "title": "Ubuntu 10.04 LTS : linux vulnerabilities (USN-1805-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6548", "CVE-2013-0228", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6544", "CVE-2013-1796"], "modified": "2018-08-03T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia"], "id": "UBUNTU_USN-1805-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=66171", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1805-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66171);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/08/03 12:21:24\");\n\n script_cve_id(\"CVE-2012-6542\", \"CVE-2012-6544\", \"CVE-2012-6545\", \"CVE-2012-6546\", \"CVE-2012-6548\", \"CVE-2013-0228\", \"CVE-2013-0349\", \"CVE-2013-1774\", \"CVE-2013-1796\");\n script_bugtraq_id(57940, 58112, 58202, 58607, 58989, 58990, 58991, 58992, 58994);\n script_xref(name:\"USN\", value:\"1805-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux vulnerabilities (USN-1805-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Mathias Krause discovered an information leak in the Linux kernel's\ngetsockname implementation for Logical Link Layer (llc) sockets. A\nlocal user could exploit this flaw to examine some of the kernel's\nstack memory. (CVE-2012-6542)\n\nMathias Krause discovered information leaks in the Linux kernel's\nBluetooth Logical Link Control and Adaptation Protocol (L2CAP)\nimplementation. A local user could exploit these flaws to examine some\nof the kernel's stack memory. (CVE-2012-6544)\n\nMathias Krause discovered information leaks in the Linux kernel's\nBluetooth RFCOMM protocol implementation. A local user could exploit\nthese flaws to examine parts of kernel memory. (CVE-2012-6545)\n\nMathias Krause discovered information leaks in the Linux kernel's\nAsynchronous Transfer Mode (ATM) networking stack. A local user could\nexploit these flaws to examine some parts of kernel memory.\n(CVE-2012-6546)\n\nMathias Krause discovered an information leak in the Linux kernel's\nUDF file system implementation. A local user could exploit this flaw\nto examine some of the kernel's heap memory. (CVE-2012-6548)\n\nAndrew Jones discovered a flaw with the xen_iret function in Linux\nkernel's Xen virtualizeation. In the 32-bit Xen paravirt platform an\nunprivileged guest OS user could exploit this flaw to cause a denial\nof service (crash the system) or gain guest OS privilege.\n(CVE-2013-0228)\n\nAn information leak was discovered in the Linux kernel's Bluetooth\nstack when HIDP (Human Interface Device Protocol) support is enabled.\nA local unprivileged user could exploit this flaw to cause an\ninformation leak from the kernel. (CVE-2013-0349)\n\nA flaw was discovered in the Edgeort USB serial converter driver when\nthe device is disconnected while it is in use. A local user could\nexploit this flaw to cause a denial of service (system crash).\n(CVE-2013-1774)\n\nAndrew Honig discovered a flaw in guest OS time updates in the Linux\nkernel's KVM (Kernel-based Virtual Machine). A privileged guest user\ncould exploit this flaw to cause a denial of service (crash host\nsystem) or potential escalate privilege to the host kernel level.\n(CVE-2013-1796).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2018 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-386\", pkgver:\"2.6.32-46.108\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-generic\", pkgver:\"2.6.32-46.108\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-generic-pae\", pkgver:\"2.6.32-46.108\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-lpia\", pkgver:\"2.6.32-46.108\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-preempt\", pkgver:\"2.6.32-46.108\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-server\", pkgver:\"2.6.32-46.108\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-versatile\", pkgver:\"2.6.32-46.108\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-virtual\", pkgver:\"2.6.32-46.108\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-386 / linux-image-2.6-generic / etc\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:39:29", "references": ["https://oss.oracle.com/pipermail/el-errata/2013-April/003418.html"], "pluginID": "68808", "description": "From Red Hat Security Advisory 2013:0747 :\n\nUpdated kernel packages that fix several security issues and three bugs are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the Xen netback driver implementation in the Linux kernel. A privileged guest user with access to a para-virtualized network device could use this flaw to cause a long loop in netback, leading to a denial of service that could potentially affect the entire system. (CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver implementation in the Linux kernel. A privileged guest user in a guest that has a PCI passthrough device could use this flaw to cause a denial of service that could potentially affect the entire system.\n(CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet transformation framework (XFRM) implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use this flaw to cause a denial of service. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the Linux kernel. A local user who has the CAP_NET_ADMIN capability could use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC) implementation in the Linux kernel. A local, unprivileged user could use this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's Asynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user could use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in the Linux kernel's networking implementation. A local user with access to a TUN/TAP virtual interface could use this flaw to leak kernel stack memory to user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the CVE-2013-0216 and CVE-2013-0231 issues.\n\nThis update also fixes the following bugs :\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit (MTU) of the designed interface when receiving ICMP Fragmentation Needed packets. Consequently, a remote host did not respond correctly to ping attempts. With this update, the IPv4 code has been modified so the MTU of the designed interface is adjusted as expected in this situation. The ping command now provides the expected output.\n(BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC completion message from the firmware to be transferred by direct memory access (DMA) at once. However, this is not always true, and could therefore cause the BUG_ON() macro to be triggered in the be_mcc_compl_is_new() function, consequently leading to a kernel panic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(), and the kernel panic no longer occurs in this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to 32-bit. Consequently, the cookies became invalid, which affected all file system operations depending on these cookies, such as the READDIR operation that is used to read entries from a directory. This led to various problems, such as exported directories being empty or displayed incorrectly, or an endless loop of the READDIRPLUS procedure which could potentially cause a buffer overflow. This update modifies knfsd code so that 64-bit cookies are now handled correctly and all file system operations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 5, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 5 : kernel (ELSA-2013-0747-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2018-07-18T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:kernel-debug", "p-cpe:/a:oracle:linux:kernel-devel", "p-cpe:/a:oracle:linux:kernel-doc", "p-cpe:/a:oracle:linux:kernel-PAE", "cpe:/o:oracle:linux:5", "p-cpe:/a:oracle:linux:kernel-xen-devel", "p-cpe:/a:oracle:linux:kernel-debug-devel", "p-cpe:/a:oracle:linux:kernel-headers", "p-cpe:/a:oracle:linux:kernel-PAE-devel", "p-cpe:/a:oracle:linux:kernel", "p-cpe:/a:oracle:linux:kernel-xen"], "id": "ORACLELINUX_ELSA-2013-0747-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=68808", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2013:0747 and \n# Oracle Linux Security Advisory ELSA-2013-0747-1 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68808);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/18 17:43:57\");\n\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6542\", \"CVE-2012-6546\", \"CVE-2012-6547\", \"CVE-2013-0216\", \"CVE-2013-0231\", \"CVE-2013-1826\");\n script_bugtraq_id(57740, 57743, 58381, 58977, 58989, 58992, 58996);\n script_xref(name:\"RHSA\", value:\"2013:0747\");\n\n script_name(english:\"Oracle Linux 5 : kernel (ELSA-2013-0747-1)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2013:0747 :\n\nUpdated kernel packages that fix several security issues and three\nbugs are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* A flaw was found in the Xen netback driver implementation in the\nLinux kernel. A privileged guest user with access to a\npara-virtualized network device could use this flaw to cause a long\nloop in netback, leading to a denial of service that could potentially\naffect the entire system. (CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver\nimplementation in the Linux kernel. A privileged guest user in a guest\nthat has a PCI passthrough device could use this flaw to cause a\ndenial of service that could potentially affect the entire system.\n(CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet\ntransformation framework (XFRM) implementation in the Linux kernel. A\nlocal user who has the CAP_NET_ADMIN capability could use this flaw to\ncause a denial of service. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the\nLinux kernel. A local user who has the CAP_NET_ADMIN capability could\nuse these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC)\nimplementation in the Linux kernel. A local, unprivileged user could\nuse this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's\nAsynchronous Transfer Mode (ATM) subsystem. A local, unprivileged user\ncould use these flaws to leak kernel stack memory to user-space.\n(CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in\nthe Linux kernel's networking implementation. A local user with access\nto a TUN/TAP virtual interface could use this flaw to leak kernel\nstack memory to user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the\nCVE-2013-0216 and CVE-2013-0231 issues.\n\nThis update also fixes the following bugs :\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit\n(MTU) of the designed interface when receiving ICMP Fragmentation\nNeeded packets. Consequently, a remote host did not respond correctly\nto ping attempts. With this update, the IPv4 code has been modified so\nthe MTU of the designed interface is adjusted as expected in this\nsituation. The ping command now provides the expected output.\n(BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC\ncompletion message from the firmware to be transferred by direct\nmemory access (DMA) at once. However, this is not always true, and\ncould therefore cause the BUG_ON() macro to be triggered in the\nbe_mcc_compl_is_new() function, consequently leading to a kernel\npanic. The BUG_ON() macro has been removed from be_mcc_compl_is_new(),\nand the kernel panic no longer occurs in this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to\n32-bit. Consequently, the cookies became invalid, which affected all\nfile system operations depending on these cookies, such as the READDIR\noperation that is used to read entries from a directory. This led to\nvarious problems, such as exported directories being empty or\ndisplayed incorrectly, or an endless loop of the READDIRPLUS procedure\nwhich could potentially cause a buffer overflow. This update modifies\nknfsd code so that 64-bit cookies are now handled correctly and all\nfile system operations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-April/003418.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-PAE-2.6.18\") && rpm_check(release:\"EL5\", cpu:\"i386\", reference:\"kernel-PAE-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-PAE-devel-2.6.18\") && rpm_check(release:\"EL5\", cpu:\"i386\", reference:\"kernel-PAE-devel-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-debug-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-debug-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-debug-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-debug-devel-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-devel-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-doc-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-doc-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-headers-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-headers-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-xen-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-xen-2.6.18-348.4.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-xen-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-xen-devel-2.6.18-348.4.1.0.1.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:35:45", "references": [], "pluginID": "65868", "description": "Mathias Krause discovered several errors in the Linux kernel's xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered information leak in the Linux kernel's compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel's getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nEmese Revfy discovered that in the Linux kernel signal handlers could leak address information across an exec, making it possible to by pass ASLR (Address Space Layout Randomization). A local user could use this flaw to by pass ASLR to reliably deliver an exploit payload that would otherwise be stopped (by ASLR). (CVE-2013-0914)\n\nA memory use after free error was discover in the Linux kernel's tmpfs filesystem. A local user could exploit this flaw to gain privileges or cause a denial of service (system crash). (CVE-2013-1767)\n\nMateusz Guzik discovered a race in the Linux kernel's keyring. A local user could exploit this flaw to cause a denial of service (system crash). (CVE-2013-1792).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2013-04-09T00:00:00", "title": "Ubuntu 10.04 LTS : linux vulnerabilities (USN-1792-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-1767", "CVE-2012-6537", "CVE-2013-1792", "CVE-2012-6539", "CVE-2012-6540", "CVE-2013-0914"], "modified": "2016-10-26T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia"], "id": "UBUNTU_USN-1792-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=65868", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1792-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(65868);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:05:58 $\");\n\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6539\", \"CVE-2012-6540\", \"CVE-2013-0914\", \"CVE-2013-1767\", \"CVE-2013-1792\");\n script_bugtraq_id(58426, 58977, 58985, 58986);\n script_xref(name:\"USN\", value:\"1792-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux vulnerabilities (USN-1792-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Mathias Krause discovered several errors in the Linux kernel's\nxfrm_user implementation. A local attacker could exploit these flaws\nto examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered information leak in the Linux kernel's\ncompat ioctl interface. A local user could exploit the flaw to examine\nparts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel's\ngetsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this\nflaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nEmese Revfy discovered that in the Linux kernel signal handlers could\nleak address information across an exec, making it possible to by pass\nASLR (Address Space Layout Randomization). A local user could use this\nflaw to by pass ASLR to reliably deliver an exploit payload that would\notherwise be stopped (by ASLR). (CVE-2013-0914)\n\nA memory use after free error was discover in the Linux kernel's tmpfs\nfilesystem. A local user could exploit this flaw to gain privileges or\ncause a denial of service (system crash). (CVE-2013-1767)\n\nMateusz Guzik discovered a race in the Linux kernel's keyring. A local\nuser could exploit this flaw to cause a denial of service (system\ncrash). (CVE-2013-1792).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-386\", pkgver:\"2.6.32-46.107\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-generic\", pkgver:\"2.6.32-46.107\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-generic-pae\", pkgver:\"2.6.32-46.107\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-lpia\", pkgver:\"2.6.32-46.107\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-preempt\", pkgver:\"2.6.32-46.107\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-server\", pkgver:\"2.6.32-46.107\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-versatile\", pkgver:\"2.6.32-46.107\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-46-virtual\", pkgver:\"2.6.32-46.107\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-386 / linux-image-2.6-generic / etc\");\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:51:32", "references": [], "pluginID": "65872", "description": "Mathias Krause discovered several errors in the Linux kernel's xfrm_user implementation. A local attacker could exploit these flaws to examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered information leak in the Linux kernel's compat ioctl interface. A local user could exploit the flaw to examine parts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel's getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nEmese Revfy discovered that in the Linux kernel signal handlers could leak address information across an exec, making it possible to by pass ASLR (Address Space Layout Randomization). A local user could use this flaw to by pass ASLR to reliably deliver an exploit payload that would otherwise be stopped (by ASLR). (CVE-2013-0914)\n\nA memory use after free error was discover in the Linux kernel's tmpfs filesystem. A local user could exploit this flaw to gain privileges or cause a denial of service (system crash). (CVE-2013-1767)\n\nMateusz Guzik discovered a race in the Linux kernel's keyring. A local user could exploit this flaw to cause a denial of service (system crash). (CVE-2013-1792).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2013-04-09T00:00:00", "title": "Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1798-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-1767", "CVE-2012-6537", "CVE-2013-1792", "CVE-2012-6539", "CVE-2012-6540", "CVE-2013-0914"], "modified": "2016-10-26T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2"], "id": "UBUNTU_USN-1798-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=65872", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1798-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(65872);\n script_version(\"$Revision: 1.7 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:05:58 $\");\n\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6539\", \"CVE-2012-6540\", \"CVE-2013-0914\", \"CVE-2013-1767\", \"CVE-2013-1792\");\n script_bugtraq_id(58177, 58368, 58426, 58977, 58985, 58986);\n script_xref(name:\"USN\", value:\"1798-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1798-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Mathias Krause discovered several errors in the Linux kernel's\nxfrm_user implementation. A local attacker could exploit these flaws\nto examine parts of kernel memory. (CVE-2012-6537)\n\nMathias Krause discovered information leak in the Linux kernel's\ncompat ioctl interface. A local user could exploit the flaw to examine\nparts of kernel stack memory (CVE-2012-6539)\n\nMathias Krause discovered an information leak in the Linux kernel's\ngetsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this\nflaw to examine parts of kernel stack memory. (CVE-2012-6540)\n\nEmese Revfy discovered that in the Linux kernel signal handlers could\nleak address information across an exec, making it possible to by pass\nASLR (Address Space Layout Randomization). A local user could use this\nflaw to by pass ASLR to reliably deliver an exploit payload that would\notherwise be stopped (by ASLR). (CVE-2013-0914)\n\nA memory use after free error was discover in the Linux kernel's tmpfs\nfilesystem. A local user could exploit this flaw to gain privileges or\ncause a denial of service (system crash). (CVE-2013-1767)\n\nMateusz Guzik discovered a race in the Linux kernel's keyring. A local\nuser could exploit this flaw to cause a denial of service (system\ncrash). (CVE-2013-1792).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-2.6-ec2 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2016 Canonical, Inc. / NASL script (C) 2013-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"linux-image-2.6.32-351-ec2\", pkgver:\"2.6.32-351.63\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-2.6-ec2\");\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:33:24", "references": ["http://www.ubuntu.com/usn/usn-1649-1/"], "pluginID": "63121", "description": "Brad Spengler discovered a flaw in the Linux kernel's uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel's TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. (CVE-2012-4565)", "edition": 5, "reporter": "Tenable", "published": "2012-12-02T00:00:00", "title": "USN-1649-1 : linux-ti-omap4 vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-4565", "CVE-2012-0957"], "modified": "2016-12-01T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux"], "id": "UBUNTU_USN-1649-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=63121", "sourceData": "# This script was automatically generated from Ubuntu Security\n# Notice USN-1649-1. It is released under the Nessus Script \n# Licence.\n#\n# Ubuntu Security Notices are (C) Canonical, Inc.\n# See http://www.ubuntu.com/usn/\n# Ubuntu(R) is a registered trademark of Canonical, Inc.\n\nif (!defined_func(\"bn_random\")) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(63121);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2016/12/01 20:56:51 $\");\n\n script_cve_id(\"CVE-2012-0957\", \"CVE-2012-4565\");\n script_xref(name:\"USN\", value:\"1649-1\");\n\n script_name(english:\"USN-1649-1 : linux-ti-omap4 vulnerabilities\");\n script_summary(english:\"Checks dpkg output for updated package(s)\");\n\n script_set_attribute(attribute:\"synopsis\", value: \n\"The remote Ubuntu host is missing one or more security-related\npatches.\");\n script_set_attribute(attribute:\"description\", value:\n\"Brad Spengler discovered a flaw in the Linux kernel's uname system\ncall. An unprivileged user could exploit this flaw to read kernel\nstack memory. (CVE-2012-0957)\n\nRodrigo Freire discovered a flaw in the Linux kernel's TCP illinois\ncongestion control algorithm. A local attacker could use this to\ncause a denial of service. (CVE-2012-4565)\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.ubuntu.com/usn/usn-1649-1/\");\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package(s).\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/11/30\");\n\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux\");\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/12/02\");\n script_end_attributes();\n \n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(\"Ubuntu Security Notice (C) 2012 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude(\"ubuntu.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/Ubuntu/release\")) exit(0, \"The host is not running Ubuntu.\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) exit(1, \"Could not obtain the list of installed packages.\");\n\nflag = 0;\n\nif (ubuntu_check(osver:\"11.10\", pkgname:\"linux-image-3.0.0-1218-omap4\", pkgver:\"3.0.0-1218.31\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:ubuntu_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:NONE/A:NONE/"}}], "centos": [{"lastseen": "2017-10-03T18:26:17", "references": ["https://rhn.redhat.com/errata/RHSA-2013-0747.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-2.6.18-348.4.1.el5.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-PAE-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-PAE", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-xen-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-xen", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-xen-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-xen", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-PAE-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.i386.rpm", "packageName": "kernel-headers", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-doc-2.6.18-348.4.1.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "packageFilename": "kernel-doc-2.6.18-348.4.1.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2013:0747\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the Xen netback driver implementation in the Linux\nkernel. A privileged guest user with access to a para-virtualized network\ndevice could use this flaw to cause a long loop in netback, leading to a\ndenial of service that could potentially affect the entire system.\n(CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver implementation in\nthe Linux kernel. A privileged guest user in a guest that has a PCI\npassthrough device could use this flaw to cause a denial of service that\ncould potentially affect the entire system. (CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet transformation\nframework (XFRM) implementation in the Linux kernel. A local user who has\nthe CAP_NET_ADMIN capability could use this flaw to cause a denial of\nservice. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the\nLinux kernel. A local user who has the CAP_NET_ADMIN capability could use\nthese flaws to leak kernel stack memory to user-space. (CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC)\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to leak kernel stack memory to user-space. (CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's Asynchronous\nTransfer Mode (ATM) subsystem. A local, unprivileged user could use these\nflaws to leak kernel stack memory to user-space. (CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in the\nLinux kernel's networking implementation. A local user with access to a\nTUN/TAP virtual interface could use this flaw to leak kernel stack memory\nto user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the CVE-2013-0216\nand CVE-2013-0231 issues.\n\nThis update also fixes the following bugs:\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit (MTU) of\nthe designed interface when receiving ICMP Fragmentation Needed packets.\nConsequently, a remote host did not respond correctly to ping attempts.\nWith this update, the IPv4 code has been modified so the MTU of the\ndesigned interface is adjusted as expected in this situation. The ping\ncommand now provides the expected output. (BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC completion\nmessage from the firmware to be transferred by direct memory access (DMA)\nat once. However, this is not always true, and could therefore cause the\nBUG_ON() macro to be triggered in the be_mcc_compl_is_new() function,\nconsequently leading to a kernel panic. The BUG_ON() macro has been\nremoved from be_mcc_compl_is_new(), and the kernel panic no longer occurs\nin this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to\n32-bit. Consequently, the cookies became invalid, which affected all file\nsystem operations depending on these cookies, such as the READDIR operation\nthat is used to read entries from a directory. This led to various\nproblems, such as exported directories being empty or displayed\nincorrectly, or an endless loop of the READDIRPLUS procedure which could\npotentially cause a buffer overflow. This update modifies knfsd code so\nthat 64-bit cookies are now handled correctly and all file system\noperations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-April/019690.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-0747.html", "edition": 1, "reporter": "CentOS Project", "published": "2013-04-17T04:13:17", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2013-04-17T04:13:17", "href": "http://lists.centos.org/pipermail/centos-announce/2013-April/019690.html", "id": "CESA-2013:0747", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:26:38", "references": ["https://rhn.redhat.com/errata/RHSA-2013-0744.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.6.1.el6.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "perf", "packageFilename": "perf-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-358.6.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-358.6.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-358.6.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-358.6.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2013:0744\n\n\nSecurity:\n\n* An integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the way the Intel i915 driver in the Linux kernel handled the\nallocation of the buffer used for relocation copies. A local user with\nconsole access could use this flaw to cause a denial of service or escalate\ntheir privileges. (CVE-2013-0913, Important)\n\n* A buffer overflow flaw was found in the way UTF-8 characters were\nconverted to UTF-16 in the utf8s_to_utf16s() function of the Linux kernel's\nFAT file system implementation. A local user able to mount a FAT file\nsystem with the \"utf8=1\" option could use this flaw to crash the system or,\npotentially, to escalate their privileges. (CVE-2013-1773, Important)\n\n* A flaw was found in the way KVM handled guest time updates when the\nbuffer the guest registered by writing to the MSR_KVM_SYSTEM_TIME machine\nstate register (MSR) crossed a page boundary. A privileged guest user could\nuse this flaw to crash the host or, potentially, escalate their privileges,\nallowing them to execute arbitrary code at the host kernel level.\n(CVE-2013-1796, Important)\n\n* A potential use-after-free flaw was found in the way KVM handled guest\ntime updates when the GPA (guest physical address) the guest registered by\nwriting to the MSR_KVM_SYSTEM_TIME machine state register (MSR) fell into a\nmovable or removable memory region of the hosting user-space process (by\ndefault, QEMU-KVM) on the host. If that memory region is deregistered from\nKVM using KVM_SET_USER_MEMORY_REGION and the allocated virtual memory\nreused, a privileged guest user could potentially use this flaw to\nescalate their privileges on the host. (CVE-2013-1797, Important)\n\n* A flaw was found in the way KVM emulated IOAPIC (I/O Advanced\nProgrammable Interrupt Controller). A missing validation check in the\nioapic_read_indirect() function could allow a privileged guest user to\ncrash the host, or read a substantial portion of host kernel memory.\n(CVE-2013-1798, Important)\n\n* A race condition in install_user_keyrings(), leading to a NULL pointer\ndereference, was found in the key management facility. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2013-1792, Moderate)\n\n* A NULL pointer dereference in the XFRM implementation could allow a local\nuser who has the CAP_NET_ADMIN capability to cause a denial of service.\n(CVE-2013-1826, Moderate)\n\n* A NULL pointer dereference in the Datagram Congestion Control Protocol\n(DCCP) implementation could allow a local user to cause a denial of\nservice. (CVE-2013-1827, Moderate)\n\n* Information leak flaws in the XFRM implementation could allow a local\nuser who has the CAP_NET_ADMIN capability to leak kernel stack memory to\nuser-space. (CVE-2012-6537, Low)\n\n* Two information leak flaws in the Asynchronous Transfer Mode (ATM)\nsubsystem could allow a local, unprivileged user to leak kernel stack\nmemory to user-space. (CVE-2012-6546, Low)\n\n* An information leak was found in the TUN/TAP device driver in the\nnetworking implementation. A local user with access to a TUN/TAP virtual\ninterface could use this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6547, Low)\n\n* An information leak in the Bluetooth implementation could allow a local\nuser who has the CAP_NET_ADMIN capability to leak kernel stack memory to\nuser-space. (CVE-2013-0349, Low)\n\n* A use-after-free flaw was found in the tmpfs implementation. A local user\nable to mount and unmount a tmpfs file system could use this flaw to cause\na denial of service or, potentially, escalate their privileges.\n(CVE-2013-1767, Low)\n\n* A NULL pointer dereference was found in the Linux kernel's USB Inside Out\nEdgeport Serial Driver implementation. An attacker with physical access to\na system could use this flaw to cause a denial of service. (CVE-2013-1774,\nLow)\n\nRed Hat would like to thank Andrew Honig of Google for reporting\nCVE-2013-1796, CVE-2013-1797, and CVE-2013-1798. CVE-2013-1792 was\ndiscovered by Mateusz Guzik of Red Hat EMEA GSS SEG Team.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-April/019701.html\n\n**Affected packages:**\nkernel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-firmware\nkernel-headers\nperf\npython-perf\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-0744.html", "edition": 1, "reporter": "CentOS Project", "published": "2013-04-24T02:13:29", "title": "kernel, perf, python security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2013-1797", "CVE-2013-1767", "CVE-2012-6537", "CVE-2013-1827", "CVE-2013-1792", "CVE-2013-1826", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6547", "CVE-2013-1773", "CVE-2013-0913", "CVE-2012-6538", "CVE-2013-1796", "CVE-2013-1798"], "modified": "2013-04-24T02:13:29", "href": "http://lists.centos.org/pipermail/centos-announce/2013-April/019701.html", "id": "CESA-2013:0744", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:26:33", "references": ["https://rhn.redhat.com/errata/RHSA-2013-1034.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-348.12.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.12.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i386", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.12.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-348.12.1.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-348.12.1.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-348.12.1.el5.i686.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2013:1034\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* Information leaks in the Linux kernel could allow a local, unprivileged\nuser to leak kernel memory to user-space. (CVE-2012-6544, CVE-2012-6545,\nCVE-2013-3222, CVE-2013-3224, CVE-2013-3231, CVE-2013-3235, Low)\n\n* An information leak was found in the Linux kernel's POSIX signals\nimplementation. A local, unprivileged user could use this flaw to bypass\nthe Address Space Layout Randomization (ASLR) security feature.\n(CVE-2013-0914, Low)\n\n* A heap-based buffer overflow in the way the tg3 Ethernet driver parsed\nthe vital product data (VPD) of devices could allow an attacker with\nphysical access to a system to cause a denial of service or, potentially,\nescalate their privileges. (CVE-2013-1929, Low)\n\nThis update also fixes the following bugs:\n\n* Previously on system boot, devices with associated Reserved Memory Region\nReporting (RMRR) information had lost their RMRR information after they\nwere removed from the static identity (SI) domain. Consequently, a system\nunexpectedly terminated in an endless loop due to unexpected NMIs triggered\nby DMA errors. This problem was observed on HP ProLiant Generation 7 (G7)\nand 8 (Gen8) systems. This update prevents non-USB devices that have RMRR\ninformation associated with them from being placed into the SI domain\nduring system boot. HP ProLiant G7 and Gen8 systems that contain devices\nwith the RMRR information now boot as expected. (BZ#957606)\n\n* Previously, the kernel's futex wait code used timeouts that had\ngranularity in milliseconds. Also, when passing these timeouts to system\ncalls, the kernel converted the timeouts to \"jiffies\". Consequently,\nprograms could time out inaccurately which could lead to significant\nlatency problems in certain environments. This update modifies the futex\nwait code to use a high-resolution timer (hrtimer) so the timeout\ngranularity is now in microseconds. Timeouts are no longer converted to\n\"jiffies\" when passed to system calls. Timeouts passed to programs are now\naccurate and the programs time out as expected. (BZ#958021)\n\n* A recent change modified the size of the task_struct structure in the\nfloating point unit (fpu) counter. However, on Intel Itanium systems, this\nchange caused the kernel Application Binary Interface (kABI) to stop\nworking properly when a previously compiled module was loaded, resulting in\na kernel panic. With this update the change causing this bug has been\nreverted so the bug can no longer occur. (BZ#966878)\n\n* The cxgb4 driver previously did not clear data structures used for\nfirmware requests. Consequently, when initializing some Chelsio's\nTerminator 4 (T4) adapters, a probe request could fail because the request\nwas incompatible with the adapter's firmware. This update modifies the\ncxgb4 driver to properly initialize firmware request structures before\nsending a request to the firmware and the problem no longer occurs.\n(BZ#971872)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-July/019845.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-1034.html", "edition": 1, "reporter": "CentOS Project", "published": "2013-07-10T15:50:41", "title": "kernel security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-3231", "CVE-2013-3224", "CVE-2012-6545", "CVE-2013-1929", "CVE-2012-6544", "CVE-2013-3222", "CVE-2013-0914", "CVE-2013-3235"], "modified": "2013-07-10T15:50:41", "href": "http://lists.centos.org/pipermail/centos-announce/2013-July/019845.html", "id": "CESA-2013:1034", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:NONE/A:NONE/"}}, {"lastseen": "2017-10-03T18:25:34", "references": ["https://rhn.redhat.com/errata/RHSA-2013-1645.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "python-perf-2.6.32-431.el6.x86_64.rpm", "packageName": "python-perf", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "perf-2.6.32-431.el6.i686.rpm", "packageName": "perf", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-firmware-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-firmware-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-firmware", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "python-perf-2.6.32-431.el6.i686.rpm", "packageName": "python-perf", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "perf-2.6.32-431.el6.x86_64.rpm", "packageName": "perf", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-debug-2.6.32-431.el6.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-2.6.32-431.el6.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-headers-2.6.32-431.el6.i686.rpm", "packageName": "kernel-headers", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-2.6.32-431.el6.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-devel-2.6.32-431.el6.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-devel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-doc-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-doc-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-abi-whitelists-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-abi-whitelists", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-abi-whitelists-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-abi-whitelists", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-debug-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "packageFilename": "kernel-headers-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2013:1645\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way the Linux kernel's IPv6 implementation\nhandled certain UDP packets when the UDP Fragmentation Offload (UFO)\nfeature was enabled. A remote attacker could use this flaw to crash the\nsystem or, potentially, escalate their privileges on the system.\n(CVE-2013-4387, Important)\n\n* A flaw was found in the way the Linux kernel handled the creation of\ntemporary IPv6 addresses. If the IPv6 privacy extension was enabled\n(/proc/sys/net/ipv6/conf/eth0/use_tempaddr set to '2'), an attacker on the\nlocal network could disable IPv6 temporary address generation, leading to a\npotential information disclosure. (CVE-2013-0343, Moderate)\n\n* A flaw was found in the way the Linux kernel handled HID (Human Interface\nDevice) reports with an out-of-bounds Report ID. An attacker with physical\naccess to the system could use this flaw to crash the system or,\npotentially, escalate their privileges on the system. (CVE-2013-2888,\nModerate)\n\n* An off-by-one flaw was found in the way the ANSI CPRNG implementation in\nthe Linux kernel processed non-block size aligned requests. This could lead\nto random numbers being generated with less bits of entropy than expected\nwhen ANSI CPRNG was used. (CVE-2013-4345, Moderate)\n\n* It was found that the fix for CVE-2012-2375 released via RHSA-2012:1580\naccidentally removed a check for small-sized result buffers. A local,\nunprivileged user with access to an NFSv4 mount with ACL support could use\nthis flaw to crash the system or, potentially, escalate their privileges on\nthe system . (CVE-2013-4591, Moderate)\n\n* A flaw was found in the way IOMMU memory mappings were handled when\nmoving memory slots. A malicious user on a KVM host who has the ability to\nassign a device to a guest could use this flaw to crash the host.\n(CVE-2013-4592, Moderate)\n\n* Heap-based buffer overflow flaws were found in the way the Zeroplus and\nPantherlord/GreenAsia game controllers handled HID reports. An attacker\nwith physical access to the system could use these flaws to crash the\nsystem or, potentially, escalate their privileges on the system.\n(CVE-2013-2889, CVE-2013-2892, Moderate)\n\n* Two information leak flaws were found in the logical link control (LLC)\nimplementation in the Linux kernel. A local, unprivileged user could use\nthese flaws to leak kernel stack memory to user space. (CVE-2012-6542,\nCVE-2013-3231, Low)\n\n* A heap-based buffer overflow in the way the tg3 Ethernet driver parsed\nthe vital product data (VPD) of devices could allow an attacker with\nphysical access to a system to cause a denial of service or, potentially,\nescalate their privileges. (CVE-2013-1929, Low)\n\n* Information leak flaws in the Linux kernel could allow a privileged,\nlocal user to leak kernel memory to user space. (CVE-2012-6545,\nCVE-2013-1928, CVE-2013-2164, CVE-2013-2234, Low)\n\n* A format string flaw was found in the Linux kernel's block layer.\nA privileged, local user could potentially use this flaw to escalate their\nprivileges to kernel level (ring0). (CVE-2013-2851, Low)\n\nRed Hat would like to thank Stephan Mueller for reporting CVE-2013-4345,\nand Kees Cook for reporting CVE-2013-2851.\n\nThis update also fixes several hundred bugs and adds enhancements. Refer to\nthe Red Hat Enterprise Linux 6.5 Release Notes for information on the most\nsignificant of these changes, and the Technical Notes for further\ninformation, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated\npackages, which correct these issues, and fix the bugs and add the\nenhancements noted in the Red Hat Enterprise Linux 6.5 Release Notes and\nTechnical Notes. The system must be rebooted for this update to take\neffect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-cr-announce/2013-November/000976.html\n\n**Affected packages:**\nkernel\nkernel-abi-whitelists\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-firmware\nkernel-headers\nperf\npython-perf\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-1645.html", "edition": 1, "reporter": "CentOS Project", "published": "2013-11-26T13:32:01", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel, perf, python security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2013-2234", "CVE-2013-4345", "CVE-2012-2375", "CVE-2013-3231", "CVE-2013-2892", "CVE-2013-4592", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-1929", "CVE-2013-2851", "CVE-2013-4387", "CVE-2013-0343", "CVE-2013-1928", "CVE-2013-2888", "CVE-2013-2164", "CVE-2013-2889", "CVE-2013-4591"], "modified": "2013-11-26T13:32:01", "href": "http://lists.centos.org/pipermail/centos-cr-announce/2013-November/000976.html", "id": "CESA-2013:1645", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2018-02-06T13:10:10", "references": ["1805-1", "http://www.ubuntu.com/usn/usn-1805-1/"], "pluginID": "841404", "description": "Check for the Version of linux", "edition": 4, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-04-22T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux USN-1805-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6548", "CVE-2013-0228", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6544", "CVE-2013-1796"], "modified": "2018-02-05T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841404", "id": "OPENVAS:841404", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1805_1.nasl 8672 2018-02-05 16:39:18Z teissa $\n#\n# Ubuntu Update for linux USN-1805-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Mathias Krause discovered an information leak in the Linux kernel's\n getsockname implementation for Logical Link Layer (llc) sockets. A local\n user could exploit this flaw to examine some of the kernel's stack memory.\n (CVE-2012-6542)\n\n Mathias Krause discovered information leaks in the Linux kernel's Bluetooth\n Logical Link Control and Adaptation Protocol (L2CAP) implementation. A\n local user could exploit these flaws to examine some of the kernel's stack\n memory. (CVE-2012-6544)\n\n Mathias Krause discovered information leaks in the Linux kernel's Bluetooth\n RFCOMM protocol implementation. A local user could exploit these flaws to\n examine parts of kernel memory. (CVE-2012-6545)\n\n Mathias Krause discovered information leaks in the Linux kernel's\n Asynchronous Transfer Mode (ATM) networking stack. A local user could\n exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\n Mathias Krause discovered an information leak in the Linux kernel's UDF\n file system implementation. A local user could exploit this flaw to examine\n some of the kernel's heap memory. (CVE-2012-6548)\n\n Andrew Jones discovered a flaw with the xen_iret function in Linux kernel's\n Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged\n guest OS user could exploit this flaw to cause a denial of service (crash\n the system) or gain guest OS privilege. (CVE-2013-0228)\n\n An information leak was discovered in the Linux kernel's Bluetooth stack\n when HIDP (Human Interface Device Protocol) support is enabled. A local\n unprivileged user could exploit this flaw to cause an information leak from\n the kernel. (CVE-2013-0349)\n\n A flaw was discovered in the Edgeort USB serial converter driver when the\n device is disconnected while it is in use. A local user could exploit this\n flaw to cause a denial of service (system crash). (CVE-2013-1774)\n\n Andrew Honig discovered a flaw in guest OS time updates in the Linux\n kernel's KVM (Kernel-based Virtual Machine). A privileged guest user could\n exploit this flaw to cause a denial of service (crash host system) or\n potential escalate privilege to the host kernel level. (CVE-2013-1796)\";\n\n\ntag_solution = \"Please Install the Updated Packages.\";\ntag_affected = \"linux on Ubuntu 10.04 LTS\";\n\n\nif(description)\n{\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_id(841404);\n script_version(\"$Revision: 8672 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-02-05 17:39:18 +0100 (Mon, 05 Feb 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-22 10:33:11 +0530 (Mon, 22 Apr 2013)\");\n script_cve_id(\"CVE-2012-6542\", \"CVE-2012-6544\", \"CVE-2012-6545\", \"CVE-2012-6546\",\n \"CVE-2012-6548\", \"CVE-2013-0228\", \"CVE-2013-0349\", \"CVE-2013-1774\",\n \"CVE-2013-1796\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:H/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_name(\"Ubuntu Update for linux USN-1805-1\");\n\n script_xref(name: \"USN\", value: \"1805-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1805-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-386\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-generic\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-generic-pae\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-ia64\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-lpia\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc-smp\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc64-smp\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-preempt\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-server\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-sparc64\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-sparc64-smp\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-versatile\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-virtual\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-18T11:08:41", "references": ["1808-1", "http://www.ubuntu.com/usn/usn-1808-1/"], "pluginID": "841411", "description": "Check for the Version of linux-ec2", "edition": 4, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-06-14T00:00:00", "title": "Ubuntu Update for linux-ec2 USN-1808-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6548", "CVE-2013-0228", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6544", "CVE-2013-1796"], "modified": "2018-01-17T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841411", "id": "OPENVAS:841411", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1808_1.nasl 8448 2018-01-17 16:18:06Z teissa $\n#\n# Ubuntu Update for linux-ec2 USN-1808-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Mathias Krause discovered an information leak in the Linux kernel's\n getsockname implementation for Logical Link Layer (llc) sockets. A local\n user could exploit this flaw to examine some of the kernel's stack memory.\n (CVE-2012-6542)\n\n Mathias Krause discovered information leaks in the Linux kernel's Bluetooth\n Logical Link Control and Adaptation Protocol (L2CAP) implementation. A\n local user could exploit these flaws to examine some of the kernel's stack\n memory. (CVE-2012-6544)\n\n Mathias Krause discovered information leaks in the Linux kernel's Bluetooth\n RFCOMM protocol implementation. A local user could exploit these flaws to\n examine parts of kernel memory. (CVE-2012-6545)\n\n Mathias Krause discovered information leaks in the Linux kernel's\n Asynchronous Transfer Mode (ATM) networking stack. A local user could\n exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\n Mathias Krause discovered an information leak in the Linux kernel's UDF\n file system implementation. A local user could exploit this flaw to examine\n some of the kernel's heap memory. (CVE-2012-6548)\n\n Andrew Jones discovered a flaw with the xen_iret function in Linux kernel's\n Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged\n guest OS user could exploit this flaw to cause a denial of service (crash\n the system) or gain guest OS privilege. (CVE-2013-0228)\n\n An information leak was discovered in the Linux kernel's Bluetooth stack\n when HIDP (Human Interface Device Protocol) support is enabled. A local\n unprivileged user could exploit this flaw to cause an information leak from\n the kernel. (CVE-2013-0349)\n\n A flaw was discovered in the Edgeort USB serial converter driver when the\n device is disconnected while it is in use. A local user could exploit this\n flaw to cause a denial of service (system crash). (CVE-2013-1774)\n\n Andrew Honig discovered a flaw in guest OS time updates in the Linux\n kernel's KVM (Kernel-based Virtual Machine). A privileged guest user could\n exploit this flaw to cause a denial of service (crash host system) or\n potential escalate privilege to the host kernel level. (CVE-2013-1796)\";\n\n\ntag_affected = \"linux-ec2 on Ubuntu 10.04 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\nif(description)\n{\n script_id(841411);\n script_version(\"$Revision: 8448 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-17 17:18:06 +0100 (Wed, 17 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-06-14 12:50:04 +0530 (Fri, 14 Jun 2013)\");\n script_cve_id(\"CVE-2012-6542\", \"CVE-2012-6544\", \"CVE-2012-6545\", \"CVE-2012-6546\",\n \"CVE-2012-6548\", \"CVE-2013-0228\", \"CVE-2013-0349\", \"CVE-2013-1774\",\n \"CVE-2013-1796\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:H/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ec2 USN-1808-1\");\n\n script_xref(name: \"USN\", value: \"1808-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1808-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of linux-ec2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-351-ec2\", ver:\"2.6.32-351.64\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:51:22", "references": ["http://linux.oracle.com/errata/ELSA-2013-0747-1.html"], "pluginID": "1361412562310123641", "description": "Oracle Linux Local Security Checks ELSA-2013-0747-1", "edition": 4, "reporter": "Eero Volotinen", "published": "2015-10-06T00:00:00", "title": "Oracle Linux Local Check: ELSA-2013-0747-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2017-07-06T00:00:00", "id": "OPENVAS:1361412562310123641", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123641", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2013-0747-1.nasl 6558 2017-07-06 11:56:55Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.123641\");\nscript_version(\"$Revision: 6558 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:06:40 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:56:55 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2013-0747-1\");\nscript_tag(name: \"insight\", value: \"ELSA-2013-0747-1 - kernel security and bug fix update - kernel[2.6.18-348.4.1.0.1]- [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030]- [oprofile] export __get_user_pages_fast() function [orabug 14277030]- [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030]- [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030]- [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030]- [kernel] Initialize the local uninitialized variable stats. [orabug 14051367]- [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763]- [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272]- [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075]- fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan)- [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan)- [x86] Fix lvt0 reset when hvm boot up with noapic param- [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275]- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346]- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566]- [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042]- [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646]- fix filp_close() race (Joe Jin) [orabug 10335998]- make xenkbd.abs_pointer=1 by default [orabug 67188919]- [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514]- [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433]- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]- [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839]- [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919]- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465]- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220]- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]- fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033]- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]- [ib] fix memory corruption (Andy Grover) [orabug 9972346]- [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203]- [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203]- [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203][2.6.18-348.4.1]- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216}- [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216}- [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231}- [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524]- [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190]- [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190]- [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537}- [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537}- [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537}- [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546}- [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546}- [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547}- [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542}- [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542}- [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826}- [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862]- [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2013-0747-1\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2013-0747-1.html\");\nscript_cve_id(\"CVE-2013-0231\",\"CVE-2013-0216\",\"CVE-2012-6537\",\"CVE-2012-6542\",\"CVE-2012-6546\",\"CVE-2012-6547\",\"CVE-2013-1826\");\nscript_tag(name:\"cvss_base\", value:\"6.2\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:H/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~348.4.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~348.4.1.0.1.el5~1.4.10~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~348.4.1.0.1.el5PAE~1.4.10~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~348.4.1.0.1.el5debug~1.4.10~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~348.4.1.0.1.el5xen~1.4.10~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~348.4.1.0.1.el5~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~348.4.1.0.1.el5PAE~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~348.4.1.0.1.el5debug~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~348.4.1.0.1.el5xen~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:56:57", "references": ["2013:0747-01", "https://www.redhat.com/archives/rhsa-announce/2013-April/msg00022.html"], "pluginID": "1361412562310870979", "description": "Check for the Version of kernel", "edition": 3, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-04-19T00:00:00", "title": "RedHat Update for kernel RHSA-2013:0747-01", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2013-0217", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310870979", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870979", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for kernel RHSA-2013:0747-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n\n * A flaw was found in the Xen netback driver implementation in the Linux\n kernel. A privileged guest user with access to a para-virtualized network\n device could use this flaw to cause a long loop in netback, leading to a\n denial of service that could potentially affect the entire system.\n (CVE-2013-0216, Moderate)\n\n * A flaw was found in the Xen PCI device back-end driver implementation in\n the Linux kernel. A privileged guest user in a guest that has a PCI\n passthrough device could use this flaw to cause a denial of service that\n could potentially affect the entire system. (CVE-2013-0231, Moderate)\n\n * A NULL pointer dereference flaw was found in the IP packet transformation\n framework (XFRM) implementation in the Linux kernel. A local user who has\n the CAP_NET_ADMIN capability could use this flaw to cause a denial of\n service. (CVE-2013-1826, Moderate)\n\n * Information leak flaws were found in the XFRM implementation in the\n Linux kernel. A local user who has the CAP_NET_ADMIN capability could use\n these flaws to leak kernel stack memory to user-space. (CVE-2012-6537, Low)\n\n * An information leak flaw was found in the logical link control (LLC)\n implementation in the Linux kernel. A local, unprivileged user could use\n this flaw to leak kernel stack memory to user-space. (CVE-2012-6542, Low)\n\n * Two information leak flaws were found in the Linux kernel's Asynchronous\n Transfer Mode (ATM) subsystem. A local, unprivileged user could use these\n flaws to leak kernel stack memory to user-space. (CVE-2012-6546, Low)\n\n * An information leak flaw was found in the TUN/TAP device driver in the\n Linux kernel's networking implementation. A local user with access to a\n TUN/TAP virtual interface could use this flaw to leak kernel stack memory\n to user-space. (CVE-2012-6547, Low)\n\n Red Hat would like to thank the Xen project for reporting the CVE-2013-0216\n and CVE-2013-0231 issues.\n\n This update also fixes the following bugs:\n\n * The IPv4 code did not correctly update the Maximum Transfer Unit (MTU) of\n the designed interface when receiving ICMP Fragmentation Needed packets.\n Consequently, a remote host did not respond correctly to ping attempts.\n With this update, the IPv4 code has been modified so the MTU of the\n designed interface is adjusted as expected in this situation. The ping\n command now provides the expected output. (BZ#923353)\n\n * Previously, the be2net code expected t ...\n\n Description truncated, for more information please check the Reference URL\";\n\n\ntag_affected = \"kernel on Red Hat Enterprise Linux (v. 5 server)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.870979\");\n script_version(\"$Revision: 9353 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:14:20 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-19 09:52:48 +0530 (Fri, 19 Apr 2013)\");\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6542\", \"CVE-2012-6546\", \"CVE-2012-6547\",\n \"CVE-2013-0216\", \"CVE-2013-0231\", \"CVE-2013-1826\", \"CVE-2013-0217\");\n script_tag(name:\"cvss_base\", value:\"6.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_name(\"RedHat Update for kernel RHSA-2013:0747-01\");\n\n script_xref(name: \"RHSA\", value: \"2013:0747-01\");\n script_xref(name: \"URL\" , value: \"https://www.redhat.com/archives/rhsa-announce/2013-April/msg00022.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-debuginfo\", rpm:\"kernel-PAE-debuginfo~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo-common\", rpm:\"kernel-debuginfo-common~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~348.4.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:58:04", "references": ["1808-1", "http://www.ubuntu.com/usn/usn-1808-1/"], "pluginID": "1361412562310841411", "description": "Check for the Version of linux-ec2", "edition": 5, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-06-14T00:00:00", "title": "Ubuntu Update for linux-ec2 USN-1808-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6548", "CVE-2013-0228", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6544", "CVE-2013-1796"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841411", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841411", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1808_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux-ec2 USN-1808-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841411\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-06-14 12:50:04 +0530 (Fri, 14 Jun 2013)\");\n script_cve_id(\"CVE-2012-6542\", \"CVE-2012-6544\", \"CVE-2012-6545\", \"CVE-2012-6546\",\n \"CVE-2012-6548\", \"CVE-2013-0228\", \"CVE-2013-0349\", \"CVE-2013-1774\",\n \"CVE-2013-1796\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:H/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ec2 USN-1808-1\");\n\n script_xref(name:\"USN\", value:\"1808-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1808-1/\");\n script_tag(name:\"summary\", value:\"Check for the Version of linux-ec2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n script_tag(name:\"affected\", value:\"linux-ec2 on Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Mathias Krause discovered an information leak in the Linux kernel's\n getsockname implementation for Logical Link Layer (llc) sockets. A local\n user could exploit this flaw to examine some of the kernel's stack memory.\n (CVE-2012-6542)\n\n Mathias Krause discovered information leaks in the Linux kernel's Bluetooth\n Logical Link Control and Adaptation Protocol (L2CAP) implementation. A\n local user could exploit these flaws to examine some of the kernel's stack\n memory. (CVE-2012-6544)\n\n Mathias Krause discovered information leaks in the Linux kernel's Bluetooth\n RFCOMM protocol implementation. A local user could exploit these flaws to\n examine parts of kernel memory. (CVE-2012-6545)\n\n Mathias Krause discovered information leaks in the Linux kernel's\n Asynchronous Transfer Mode (ATM) networking stack. A local user could\n exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\n Mathias Krause discovered an information leak in the Linux kernel's UDF\n file system implementation. A local user could exploit this flaw to examine\n some of the kernel's heap memory. (CVE-2012-6548)\n\n Andrew Jones discovered a flaw with the xen_iret function in Linux kernel's\n Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged\n guest OS user could exploit this flaw to cause a denial of service (crash\n the system) or gain guest OS privilege. (CVE-2013-0228)\n\n An information leak was discovered in the Linux kernel's Bluetooth stack\n when HIDP (Human Interface Device Protocol) support is enabled. A local\n unprivileged user could exploit this flaw to cause an information leak from\n the kernel. (CVE-2013-0349)\n\n A flaw was discovered in the Edgeort USB serial converter driver when the\n device is disconnected while it is in use. A local user could exploit this\n flaw to cause a denial of service (system crash). (CVE-2013-1774)\n\n Andrew Honig discovered a flaw in guest OS time updates in the Linux\n kernel's KVM (Kernel-based Virtual Machine). A privileged guest user could\n exploit this flaw to cause a denial of service (crash host system) or\n potential escalate privilege to the host kernel level. (CVE-2013-1796)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-351-ec2\", ver:\"2.6.32-351.64\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:56:29", "references": ["1805-1", "http://www.ubuntu.com/usn/usn-1805-1/"], "pluginID": "1361412562310841404", "description": "Check for the Version of linux", "edition": 5, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-04-22T00:00:00", "title": "Ubuntu Update for linux USN-1805-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-6546", "CVE-2012-6548", "CVE-2013-0228", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6544", "CVE-2013-1796"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841404", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841404", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1805_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux USN-1805-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\nif(description)\n{\n script_tag(name:\"affected\", value:\"linux on Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Mathias Krause discovered an information leak in the Linux kernel's\n getsockname implementation for Logical Link Layer (llc) sockets. A local\n user could exploit this flaw to examine some of the kernel's stack memory.\n (CVE-2012-6542)\n\n Mathias Krause discovered information leaks in the Linux kernel's Bluetooth\n Logical Link Control and Adaptation Protocol (L2CAP) implementation. A\n local user could exploit these flaws to examine some of the kernel's stack\n memory. (CVE-2012-6544)\n\n Mathias Krause discovered information leaks in the Linux kernel's Bluetooth\n RFCOMM protocol implementation. A local user could exploit these flaws to\n examine parts of kernel memory. (CVE-2012-6545)\n\n Mathias Krause discovered information leaks in the Linux kernel's\n Asynchronous Transfer Mode (ATM) networking stack. A local user could\n exploit these flaws to examine some parts of kernel memory. (CVE-2012-6546)\n\n Mathias Krause discovered an information leak in the Linux kernel's UDF\n file system implementation. A local user could exploit this flaw to examine\n some of the kernel's heap memory. (CVE-2012-6548)\n\n Andrew Jones discovered a flaw with the xen_iret function in Linux kernel's\n Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged\n guest OS user could exploit this flaw to cause a denial of service (crash\n the system) or gain guest OS privilege. (CVE-2013-0228)\n\n An information leak was discovered in the Linux kernel's Bluetooth stack\n when HIDP (Human Interface Device Protocol) support is enabled. A local\n unprivileged user could exploit this flaw to cause an information leak from\n the kernel. (CVE-2013-0349)\n\n A flaw was discovered in the Edgeort USB serial converter driver when the\n device is disconnected while it is in use. A local user could exploit this\n flaw to cause a denial of service (system crash). (CVE-2013-1774)\n\n Andrew Honig discovered a flaw in guest OS time updates in the Linux\n kernel's KVM (Kernel-based Virtual Machine). A privileged guest user could\n exploit this flaw to cause a denial of service (crash host system) or\n potential escalate privilege to the host kernel level. (CVE-2013-1796)\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841404\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-22 10:33:11 +0530 (Mon, 22 Apr 2013)\");\n script_cve_id(\"CVE-2012-6542\", \"CVE-2012-6544\", \"CVE-2012-6545\", \"CVE-2012-6546\",\n \"CVE-2012-6548\", \"CVE-2013-0228\", \"CVE-2013-0349\", \"CVE-2013-1774\",\n \"CVE-2013-1796\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:H/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_name(\"Ubuntu Update for linux USN-1805-1\");\n\n script_xref(name:\"USN\", value:\"1805-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1805-1/\");\n script_tag(name:\"summary\", value:\"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-386\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-generic\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-generic-pae\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-ia64\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-lpia\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc-smp\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc64-smp\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-preempt\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-server\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-sparc64\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-sparc64-smp\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-versatile\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-virtual\", ver:\"2.6.32-46.108\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:ADJACENT_NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:57:39", "references": ["http://www.ubuntu.com/usn/usn-1792-1/", "1792-1"], "pluginID": "1361412562310841397", "description": "Check for the Version of linux", "edition": 5, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-04-15T00:00:00", "title": "Ubuntu Update for linux USN-1792-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-1767", "CVE-2012-6537", "CVE-2013-1792", "CVE-2012-6539", "CVE-2012-6540", "CVE-2013-0914"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841397", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841397", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1792_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux USN-1792-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841397\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-15 10:20:46 +0530 (Mon, 15 Apr 2013)\");\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6539\", \"CVE-2012-6540\", \"CVE-2013-0914\",\n \"CVE-2013-1767\", \"CVE-2013-1792\");\n script_tag(name:\"cvss_base\", value:\"6.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux USN-1792-1\");\n\n script_xref(name:\"USN\", value:\"1792-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1792-1/\");\n script_tag(name:\"summary\", value:\"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n script_tag(name:\"affected\", value:\"linux on Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Mathias Krause discovered several errors in the Linux kernel's xfrm_user\n implementation. A local attacker could exploit these flaws to examine parts\n of kernel memory. (CVE-2012-6537)\n\n Mathias Krause discovered information leak in the Linux kernel's compat\n ioctl interface. A local user could exploit the flaw to examine parts of\n kernel stack memory (CVE-2012-6539)\n\n Mathias Krause discovered an information leak in the Linux kernel's\n getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw\n to examine parts of kernel stack memory. (CVE-2012-6540)\n\n Emese Revfy discovered that in the Linux kernel signal handlers could leak\n address information across an exec, making it possible to by pass ASLR\n (Address Space Layout Randomization). A local user could use this flaw to\n by pass ASLR to reliably deliver an exploit payload that would otherwise be\n stopped (by ASLR). (CVE-2013-0914)\n\n A memory use after free error was discover in the Linux kernel's tmpfs\n filesystem. A local user could exploit this flaw to gain privileges or\n cause a denial of service (system crash). (CVE-2013-1767)\n\n Mateusz Guzik discovered a race in the Linux kernel's keyring. A local user\n could exploit this flaw to cause a denial of service (system crash).\n (CVE-2013-1792)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-386\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-generic\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-generic-pae\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-ia64\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-lpia\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc-smp\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-powerpc64-smp\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-preempt\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-server\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-sparc64\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-sparc64-smp\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-versatile\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-46-virtual\", ver:\"2.6.32-46.107\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-02-06T13:10:19", "references": ["1798-1", "http://www.ubuntu.com/usn/usn-1798-1/"], "pluginID": "841391", "description": "Check for the Version of linux-ec2", "edition": 4, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-04-15T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux-ec2 USN-1798-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-1767", "CVE-2012-6537", "CVE-2013-1792", "CVE-2012-6539", "CVE-2012-6540", "CVE-2013-0914"], "modified": "2018-02-05T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841391", "id": "OPENVAS:841391", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1798_1.nasl 8672 2018-02-05 16:39:18Z teissa $\n#\n# Ubuntu Update for linux-ec2 USN-1798-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Mathias Krause discovered several errors in the Linux kernel's xfrm_user\n implementation. A local attacker could exploit these flaws to examine parts\n of kernel memory. (CVE-2012-6537)\n\n Mathias Krause discovered information leak in the Linux kernel's compat\n ioctl interface. A local user could exploit the flaw to examine parts of\n kernel stack memory (CVE-2012-6539)\n\n Mathias Krause discovered an information leak in the Linux kernel's\n getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw\n to examine parts of kernel stack memory. (CVE-2012-6540)\n\n Emese Revfy discovered that in the Linux kernel signal handlers could leak\n address information across an exec, making it possible to by pass ASLR\n (Address Space Layout Randomization). A local user could use this flaw to\n by pass ASLR to reliably deliver an exploit payload that would otherwise be\n stopped (by ASLR). (CVE-2013-0914)\n\n A memory use after free error was discover in the Linux kernel's tmpfs\n filesystem. A local user could exploit this flaw to gain privileges or\n cause a denial of service (system crash). (CVE-2013-1767)\n\n Mateusz Guzik discovered a race in the Linux kernel's keyring. A local user\n could exploit this flaw to cause a denial of service (system crash).\n (CVE-2013-1792)\";\n\n\ntag_affected = \"linux-ec2 on Ubuntu 10.04 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\nif(description)\n{\n script_id(841391);\n script_version(\"$Revision: 8672 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-02-05 17:39:18 +0100 (Mon, 05 Feb 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-15 10:17:29 +0530 (Mon, 15 Apr 2013)\");\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6539\", \"CVE-2012-6540\", \"CVE-2013-0914\",\n \"CVE-2013-1767\", \"CVE-2013-1792\");\n script_tag(name:\"cvss_base\", value:\"6.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ec2 USN-1798-1\");\n\n script_xref(name: \"USN\", value: \"1798-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1798-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of linux-ec2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-351-ec2\", ver:\"2.6.32-351.63\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:56:24", "references": ["1798-1", "http://www.ubuntu.com/usn/usn-1798-1/"], "pluginID": "1361412562310841391", "description": "Check for the Version of linux-ec2", "edition": 5, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-04-15T00:00:00", "title": "Ubuntu Update for linux-ec2 USN-1798-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-1767", "CVE-2012-6537", "CVE-2013-1792", "CVE-2012-6539", "CVE-2012-6540", "CVE-2013-0914"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841391", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841391", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1798_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux-ec2 USN-1798-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841391\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-15 10:17:29 +0530 (Mon, 15 Apr 2013)\");\n script_cve_id(\"CVE-2012-6537\", \"CVE-2012-6539\", \"CVE-2012-6540\", \"CVE-2013-0914\",\n \"CVE-2013-1767\", \"CVE-2013-1792\");\n script_tag(name:\"cvss_base\", value:\"6.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:H/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ec2 USN-1798-1\");\n\n script_xref(name:\"USN\", value:\"1798-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1798-1/\");\n script_tag(name:\"summary\", value:\"Check for the Version of linux-ec2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU10\\.04 LTS\");\n script_tag(name:\"affected\", value:\"linux-ec2 on Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Mathias Krause discovered several errors in the Linux kernel's xfrm_user\n implementation. A local attacker could exploit these flaws to examine parts\n of kernel memory. (CVE-2012-6537)\n\n Mathias Krause discovered information leak in the Linux kernel's compat\n ioctl interface. A local user could exploit the flaw to examine parts of\n kernel stack memory (CVE-2012-6539)\n\n Mathias Krause discovered an information leak in the Linux kernel's\n getsockopt for IP_VS_SO_GET_TIMEOUT. A local user could exploit this flaw\n to examine parts of kernel stack memory. (CVE-2012-6540)\n\n Emese Revfy discovered that in the Linux kernel signal handlers could leak\n address information across an exec, making it possible to by pass ASLR\n (Address Space Layout Randomization). A local user could use this flaw to\n by pass ASLR to reliably deliver an exploit payload that would otherwise be\n stopped (by ASLR). (CVE-2013-0914)\n\n A memory use after free error was discover in the Linux kernel's tmpfs\n filesystem. A local user could exploit this flaw to gain privileges or\n cause a denial of service (system crash). (CVE-2013-1767)\n\n Mateusz Guzik discovered a race in the Linux kernel's keyring. A local user\n could exploit this flaw to cause a denial of service (system crash).\n (CVE-2013-1792)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.32-351-ec2\", ver:\"2.6.32-351.63\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:00:30", "references": ["1648-1", "http://www.ubuntu.com/usn/usn-1648-1/"], "pluginID": "1361412562310841237", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1648-1", "edition": 5, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-12-04T00:00:00", "title": "Ubuntu Update for linux USN-1648-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-4565", "CVE-2012-0957"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310841237", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841237", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1648_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for linux USN-1648-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1648-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841237\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-12-04 09:48:45 +0530 (Tue, 04 Dec 2012)\");\n script_cve_id(\"CVE-2012-0957\", \"CVE-2012-4565\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:N/A:N\");\n script_xref(name:\"USN\", value:\"1648-1\");\n script_name(\"Ubuntu Update for linux USN-1648-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU11\\.10\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1648-1\");\n script_tag(name:\"affected\", value:\"linux on Ubuntu 11.10\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Brad Spengler discovered a flaw in the Linux kernel's uname system call. An\n unprivileged user could exploit this flaw to read kernel stack memory.\n (CVE-2012-0957)\n\n Rodrigo Freire discovered a flaw in the Linux kernel's TCP illinois\n congestion control algorithm. A local attacker could use this to cause a\n denial of service. (CVE-2012-4565)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-28-generic\", ver:\"3.0.0-28.45\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-28-generic-pae\", ver:\"3.0.0-28.45\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-28-omap\", ver:\"3.0.0-28.45\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-28-powerpc\", ver:\"3.0.0-28.45\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-28-powerpc-smp\", ver:\"3.0.0-28.45\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-28-powerpc64-smp\", ver:\"3.0.0-28.45\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-28-server\", ver:\"3.0.0-28.45\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.0.0-28-virtual\", ver:\"3.0.0-28.45\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:NONE/A:NONE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:43:22", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.0.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.4.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.4.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.4.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.0.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.0.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-348.4.1.0.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.4.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.4.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.4.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-348.4.1.0.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-348.4.1.0.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.0.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-348.4.1.0.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.0.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-348.4.1.0.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.0.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-348.4.1.0.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-348.4.1.0.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-348.4.1.0.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-348.4.1.0.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.4.1.0.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-348.4.1.0.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-348.4.1.0.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-348.4.1.0.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-348.4.1.0.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-348.4.1.0.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-348.4.1.0.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-348.4.1.0.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-348.4.1.0.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.4.1.0.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.4.1.0.1.el5PAE", "operator": "lt"}], "description": "kernel\n[2.6.18-348.4.1.0.1]\n- [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030]\n- [oprofile] export __get_user_pages_fast() function [orabug 14277030]\n- [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030]\n- [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030]\n- [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030]\n- [kernel] Initialize the local uninitialized variable stats. [orabug 14051367]\n- [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763]\n- [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272]\n- [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075]\n- fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan)\n- [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan)\n- [x86] Fix lvt0 reset when hvm boot up with noapic param\n- [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason)\n [orabug 12342275]\n- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346]\n- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566]\n- [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042]\n- [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646]\n- fix filp_close() race (Joe Jin) [orabug 10335998]\n- make xenkbd.abs_pointer=1 by default [orabug 67188919]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki)\n [orabug 10315433]\n- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]\n- [mm] Patch shrink_zone to yield during severe mempressure events, avoiding\n hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839]\n- [mm] Enhance shrink_zone patch allow full swap utilization, and also be\n NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)\n [orabug 9107465]\n- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)\n [orabug 9764220]\n- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]\n- fix overcommit memory to use percpu_counter for (KOSAKI Motohiro,\n Guru Anbalagane) [orabug 6124033]\n- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]\n- [ib] fix memory corruption (Andy Grover) [orabug 9972346]\n- [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203]\n- [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203]\n- [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203]\n[2.6.18-348.4.1]\n- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216}\n- [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216}\n- [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231}\n- [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524]\n- [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190]\n- [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190]\n- [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537}\n- [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537}\n- [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537}\n- [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546}\n- [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546}\n- [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547}\n- [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542}\n- [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542}\n- [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826}\n- [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862]\n- [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]", "edition": 4, "reporter": "Oracle", "published": "2013-04-16T00:00:00", "title": "1 ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2013-04-16T00:00:00", "id": "ELSA-2013-0747-1", "href": "http://linux.oracle.com/errata/ELSA-2013-0747-1.html", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:47:29", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.4.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.4.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.4.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.4.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.4.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.4.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.4.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.4.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.4.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.4.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.4.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.4.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.4.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.4.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.4.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.4.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.4.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.4.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.4.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.4.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.4.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.4.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.4.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.4.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.4.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.4.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.4.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.4.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.4.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.4.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.4.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.4.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.4.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.4.1.el5debug", "operator": "lt"}], "description": "kernel\n[2.6.18-348.4.1]\n- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216}\n- [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216}\n- [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231}\n- [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524]\n- [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190]\n- [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190]\n- [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537}\n- [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537}\n- [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537}\n- [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546}\n- [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546}\n- [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547}\n- [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542}\n- [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542}\n- [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826}\n- [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862]\n- [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]", "edition": 3, "reporter": "Oracle", "published": "2013-04-16T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2012-6537", "CVE-2013-1826", "CVE-2012-6542", "CVE-2012-6547", "CVE-2013-0231", "CVE-2013-0216"], "modified": "2013-04-16T00:00:00", "id": "ELSA-2013-0747", "href": "http://linux.oracle.com/errata/ELSA-2013-0747.html", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:40:55", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-400.26.2.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.26.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.26.2.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-400.26.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.26.2.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.26.2.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.26.2.el6uekdebug-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-400.26.2.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-400.26.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.26.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.26.2.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.26.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.26.2.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-400.26.2.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.26.2.el5uekdebug-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-400.26.2.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.26.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-400.26.2.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.26.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.26.2.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.26.2.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.26.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.26.2.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.26.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.26.2.el5uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.26.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.26.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.26.2.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.26.2.el6uek-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.26.2.el6uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.26.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-400.26.2.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.26.2.el6uekdebug-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.26.2.el5uek-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.26.2.el5uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.26.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-400.26.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-400.26.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-400.26.2.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.26.2.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.26.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.26.2.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.26.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.26.2.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.26.2.el5uekdebug-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-400.26.2.el6uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.26.2.el6uek-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.26.2.el5uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.26.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.26.2.el6uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.26.2.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-400.26.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.26.2.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.26.2.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.26.2.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.26.2.el6uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.26.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.26.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.26.2.el5uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.26.2.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-400.26.2.el5uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-400.26.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.26.2.el6uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.26.2.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.26.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.26.2.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.26.2.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.26.2.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-400.26.2.el5uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.26.2.el5uek-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.26.2.el5uek", "operator": "lt"}], "description": "[2.6.32-400.26.2]\n- mm/hotplug: correctly add new zone to all other nodes' zone lists (Jiang Liu) [Orabug: 16603569] {CVE-2012-5517}\n- ptrace: ptrace_resume() shouldn't wake up !TASK_TRACED thread (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- ptrace: ensure arch_ptrace/ptrace_request can never race with SIGKILL (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- ptrace: introduce signal_wake_up_state() and ptrace_signal_wake_up() (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- Bluetooth: Fix incorrect strncpy() in hidp_setup_hid() (Anderson Lizardo) [Orabug: 16711062] {CVE-2013-0349}\n- dccp: check ccid before dereferencing (Mathias Krause) [Orabug: 16711040] {CVE-2013-1827}\n- USB: io_ti: Fix NULL dereference in chase_port() (Wolfgang Frisch) [Orabug: 16425435] {CVE-2013-1774}\n- keys: fix race with concurrent install_user_keyrings() (David Howells) [Orabug: 16493369] {CVE-2013-1792}\n- KVM: Fix bounds checking in ioapic indirect register reads (CVE-2013-1798) (Andy Honig) [Orabug: 16710937] {CVE-2013-1798}\n- KVM: x86: fix for buffer overflow in handling of MSR_KVM_SYSTEM_TIME (CVE-2013-1796) (Jerry Snitselaar) [Orabug: 16710794] {CVE-2013-1796}\n- net/tun: fix ioctl() based info leaks (Mathias Krause) [Orabug: 16675501] {CVE-2012-6547}\n- atm: fix info leak via getsockname() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546}\n- atm: fix info leak in getsockopt(SO_ATMPVC) (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546}\n- xfrm_user: fix info leak in copy_to_user_tmpl() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537}\n- xfrm_user: fix info leak in copy_to_user_policy() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537}\n- xfrm_user: fix info leak in copy_to_user_state() (Mathias Krause) [Orabug: 16675501] {CVE-2013-6537}\n- xfrm_user: return error pointer instead of NULL #2 (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}\n- xfrm_user: return error pointer instead of NULL (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}", "edition": 3, "reporter": "Oracle", "published": "2013-04-24T00:00:00", "title": "Unbreakable Enterprise kernel security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2013-0871", "CVE-2012-6537", "CVE-2012-4508", "CVE-2013-1827", "CVE-2013-1792", "CVE-2013-1826", "CVE-2013-6537", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6547", "CVE-2012-5517", "CVE-2013-0310", "CVE-2013-1796", "CVE-2013-1798", "CVE-2013-0309"], "modified": "2013-04-24T00:00:00", "id": "ELSA-2013-2520", "href": "http://linux.oracle.com/errata/ELSA-2013-2520.html", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:43:09", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-400.29.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.29.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.29.1.el5uek-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.29.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.29.1.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-400.29.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.29.1.el5uekdebug-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.29.1.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.29.1.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.29.1.el6uek-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-400.29.1.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.29.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.29.1.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-400.29.1.el6uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.29.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.29.1.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.29.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.29.1.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.29.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-400.29.1.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-400.29.1.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.29.1.el5uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.29.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.29.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.29.1.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.29.1.el5uekdebug-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.29.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.29.1.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.29.1.el6uek-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-400.29.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-400.29.1.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.29.1.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.29.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.29.1.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.29.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.29.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-400.29.1.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.29.1.el6uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.29.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.29.1.el6uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.29.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.29.1.el5uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.29.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-400.29.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.29.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.29.1.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-400.29.1.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-400.29.1.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.29.1.el5uek-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.29.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.29.1.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.29.1.el5uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.29.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-400.29.1.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-400.29.1.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.29.1.el6uekdebug-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-400.29.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.29.1.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.29.1.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.29.1.el6uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.29.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.29.1.el5uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.29.1.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.29.1.el6uekdebug-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.29.1.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.29.1.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-400.29.1.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.29.1.el6uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.29.1.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.29.1.el5uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-400.29.1.el5uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}], "description": "[2.6.32-400.29.1]\n- KVM: add missing void __user COPYING CREDITS Documentation Kbuild MAINTAINERS Makefile README REPORTING-BUGS arch block crypto drivers firmware fs include init ipc kernel lib mm net samples scripts security sound tools uek-rpm usr virt cast to access_ok() call (Heiko Carstens) [Orabug: 16941620] {CVE-2013-1943}\n- KVM: Validate userspace_addr of memslot when registered (Takuya Yoshikawa) [Orabug: 16941620] {CVE-2013-1943}\n[2.6.32-400.28.1]\n- do_add_mount()/umount -l races (Jerry Snitselaar) [Orabug: 16311974]\n- tg3: fix length overflow in VPD firmware parsing (Kees Cook) [Orabug: 16837019] {CVE-2013-1929}\n- USB: cdc-wdm: fix buffer overflow (Oliver Neukum) [Orabug: 16837003] {CVE-2013-1860}\n- bonding: emit event when bonding changes MAC (Weiping Pan) [Orabug: 16579025]\n- sched: Fix ancient race in do_exit() (Joe Jin)\n- open debug in page_move_anon_rmap by default. (Xiaowei.Hu) [Orabug: 14046035]\n- block: default SCSI command filter does not accomodate commands overlap across device classes (Jamie Iles) [Orabug: 16387136] {CVE-2012-4542}\n- vma_adjust: fix the copying of anon_vma chains (Linus Torvalds) [Orabug: 14046035]\n- xen-netfront: delay gARP until backend switches to Connected (Laszlo Ersek) [Orabug: 16182568]\n- svcrpc: don't hold sv_lock over svc_xprt_put() (J. Bruce Fields) [Orabug: 16032824]\n- mm/hotplug: correctly add new zone to all other nodes' zone lists (Jiang Liu) [Orabug: 16603569] {CVE-2012-5517}\n- ptrace: ptrace_resume() shouldn't wake up !TASK_TRACED thread (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- ptrace: ensure arch_ptrace/ptrace_request can never race with SIGKILL (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- ptrace: introduce signal_wake_up_state() and ptrace_signal_wake_up() (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}\n- Bluetooth: Fix incorrect strncpy() in hidp_setup_hid() (Anderson Lizardo) [Orabug: 16711062] {CVE-2013-0349}\n- dccp: check ccid before dereferencing (Mathias Krause) [Orabug: 16711040] {CVE-2013-1827}\n- USB: io_ti: Fix NULL dereference in chase_port() (Wolfgang Frisch) [Orabug: 16425435] {CVE-2013-1774}\n- keys: fix race with concurrent install_user_keyrings() (David Howells) [Orabug: 16493369] {CVE-2013-1792}\n- KVM: Fix bounds checking in ioapic indirect register reads (CVE-2013-1798) (Andy Honig) [Orabug: 16710937] {CVE-2013-1798}\n- KVM: x86: fix for buffer overflow in handling of MSR_KVM_SYSTEM_TIME (CVE-2013-1796) (Jerry Snitselaar) [Orabug: 16710794] {CVE-2013-1796}\n[2.6.32-400.27.1]\n- net/tun: fix ioctl() based info leaks (Mathias Krause) [Orabug: 16675501] {CVE-2012-6547}\n- atm: fix info leak via getsockname() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546}\n- atm: fix info leak in getsockopt(SO_ATMPVC) (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546}\n- xfrm_user: fix info leak in copy_to_user_tmpl() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537}\n- xfrm_user: fix info leak in copy_to_user_policy() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537}\n- xfrm_user: fix info leak in copy_to_user_state() (Mathias Krause) [Orabug: 16675501] {CVE-2013-6537}\n- xfrm_user: return error pointer instead of NULL #2 (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}\n- xfrm_user: return error pointer instead of NULL (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}\n- llc: fix info leak via getsockname() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6542}\n- x86/mm: Check if PUD is large when validating a kernel address (Mel Gorman) [Orabug: 14251997]", "edition": 3, "reporter": "Oracle", "published": "2013-06-11T00:00:00", "title": "Unbreakable Enterprise kernel Security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2013-0871", "CVE-2012-6537", "CVE-2013-1827", "CVE-2013-1860", "CVE-2013-1943", "CVE-2013-1792", "CVE-2013-1826", "CVE-2012-6542", "CVE-2013-6537", "CVE-2013-0349", "CVE-2013-1774", "CVE-2013-1929", "CVE-2012-6547", "CVE-2012-4542", "CVE-2012-5517", "CVE-2013-1796", "CVE-2013-1798"], "modified": "2013-06-11T00:00:00", "id": "ELSA-2013-2534", "href": "http://linux.oracle.com/errata/ELSA-2013-2534.html", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:37:47", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-348.12.1.0.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-348.12.1.0.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-348.12.1.0.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-348.12.1.0.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.12.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.12.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.12.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-348.12.1.0.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.0.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.0.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-348.12.1.0.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.0.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.0.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-348.12.1.0.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-348.12.1.0.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-348.12.1.0.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-348.12.1.0.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-348.12.1.0.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-348.12.1.0.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-348.12.1.0.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.0.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-348.12.1.0.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-348.12.1.0.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.12.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.12.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.12.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.12.1.0.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.12.1.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-348.12.1.0.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.0.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.12.1.0.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.12.1.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-348.12.1.0.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}], "description": "kernel\n[2.6.18-348.12.1.0.1]\n- [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030]\n- [oprofile] export __get_user_pages_fast() function [orabug 14277030]\n- [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030]\n- [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030]\n- [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030]\n- [kernel] Initialize the local uninitialized variable stats. [orabug 14051367]\n- [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763]\n- [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272]\n- [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075]\n- fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan)\n- [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan)\n- [x86] Fix lvt0 reset when hvm boot up with noapic param\n- [scsi] remove printks when doing I/O to a dead device (John Sobecki, Chris Mason)\n [orabug 12342275]\n- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346]\n- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566]\n- [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042]\n- [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646]\n- fix filp_close() race (Joe Jin) [orabug 10335998]\n- make xenkbd.abs_pointer=1 by default [orabug 67188919]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki)\n [orabug 10315433]\n- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]\n- [mm] Patch shrink_zone to yield during severe mempressure events, avoiding\n hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839]\n- [mm] Enhance shrink_zone patch allow full swap utilization, and also be\n NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)\n [orabug 9107465]\n- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)\n [orabug 9764220]\n- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]\n- fix overcommit memory to use percpu_counter for (KOSAKI Motohiro,\n Guru Anbalagane) [orabug 6124033]\n- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]\n- [ib] fix memory corruption (Andy Grover) [orabug 9972346]\n- [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203]\n- [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203]\n- [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203]\n[2.6.18-348.12.1]\n- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]\n[2.6.18-348.11.1]\n- Revert: [kernel] kmod: make request_module() killable (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] kmod: avoid deadlock from recursive kmod call (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] wait_for_helper: remove unneeded do_sigaction() (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] Fix ____call_usermodehelper errs being silently ignored (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] wait_for_helper: SIGCHLD from u/s cause use-after-free (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] kmod: avoid deadlock from recursive request_module call (Frantisek Hrbata) [957152 949568]\n- Revert: [x86-64] non lazy sleazy fpu implementation (Prarit Bhargava) [948187 731531]\n- Revert: [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531]\n- Revert: [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531]\n- Revert: [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783]\n[2.6.18-348.10.1]\n- [net] Bluetooth: fix possible info leak in bt_sock_recvmsg() (Radomir Vrbovsky) [955600 955601] {CVE-2013-3224}\n- [net] Bluetooth: HCI & L2CAP information leaks (Jacob Tanenbaum) [922415 922416] {CVE-2012-6544}\n- [misc] signal: use __ARCH_HAS_SA_RESTORER instead of SA_RESTORER (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}\n- [misc] signal: always clear sa_restorer on execve (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}\n- [misc] signal: Def __ARCH_HAS_SA_RESTORER for sa_restorer clear (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}\n- [net] cxgb4: zero out another firmware request struct (Jay Fenlason) [971872 872531]\n- [net] cxgb4: clear out most firmware request structures (Jay Fenlason) [971872 872531]\n- [kernel] Make futex_wait() use an hrtimer for timeout (Prarit Bhargava) [958021 864648]\n[2.6.18-348.9.1]\n- [net] tg3: buffer overflow in VPD firmware parsing (Jacob Tanenbaum) [949939 949940] {CVE-2013-1929}\n- [net] atm: update msg_namelen in vcc_recvmsg() (Nikola Pajkovsky) [955222 955223] {CVE-2013-3222}\n- [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]\n- [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071]\n- [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071]\n- [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071]\n- [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071]\n- [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071]\n- [net] llc: Fix missing msg_namelen update in llc_ui_recvmsg() (Jesper Brouer) [956096 956097] {CVE-2013-3231}\n- [net] tipc: fix info leaks via msg_name in recv_msg/recv_stream (Jesper Brouer) [956148 956149] {CVE-2013-3235}\n- [net] Bluetooth: RFCOMM Fix info leak in ioctl(RFCOMMGETDEVLIST) (Radomir Vrbovsky) [922406 922407] {CVE-2012-6545}\n- [net] Bluetooth: RFCOMM - Fix info leak via getsockname() (Radomir Vrbovsky) [922406 922407] {CVE-2012-6545}\n- [kernel] kmod: avoid deadlock from recursive request_module call (Frantisek Hrbata) [957152 949568]\n- [kernel] wait_for_helper: SIGCHLD from u/s cause use-after-free (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- [kernel] Fix ____call_usermodehelper errs being silently ignored (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- [kernel] wait_for_helper: remove unneeded do_sigaction() (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- [kernel] kmod: avoid deadlock from recursive kmod call (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- [kernel] kmod: make request_module() killable (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n[2.6.18-348.8.1]\n- [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783]\n[2.6.18-348.7.1]\n- [pci] intel-iommu: Prev devs with RMRRs from going in SI Domain (Tony Camuso) [957606 839334]", "edition": 4, "reporter": "Oracle", "published": "2013-07-10T00:00:00", "title": "1 ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-3231", "CVE-2013-3224", "CVE-2012-6545", "CVE-2013-1929", "CVE-2012-6544", "CVE-2013-3222", "CVE-2012-4398", "CVE-2013-0914", "CVE-2013-3235"], "modified": "2013-07-10T00:00:00", "id": "ELSA-2013-1034-1", "href": "http://linux.oracle.com/errata/ELSA-2013-1034-1.html", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:38:20", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-348.12.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.12.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.12.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-348.12.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.12.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.12.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-348.12.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-348.12.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.12.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.12.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.12.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.12.1.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.12.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.12.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-348.12.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.12.1.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.12.1.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-348.12.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.12.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.12.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.12.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.12.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.12.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-348.12.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.12.1.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.12.1.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-348.12.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-348.12.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.12.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.12.1.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-348.12.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-348.12.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-348.12.1.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-348.12.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-348.12.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.12.1.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-348.12.1.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-348.12.1.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.12.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.12.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-348.12.1.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-348.12.1.el5", "operator": "lt"}], "description": "kernel\n[2.6.18-348.12.1]\n- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071]\n- Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]\n[2.6.18-348.11.1]\n- Revert: [kernel] kmod: make request_module() killable (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] kmod: avoid deadlock from recursive kmod call (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] wait_for_helper: remove unneeded do_sigaction() (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] Fix ____call_usermodehelper errs being silently ignored (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] wait_for_helper: SIGCHLD from u/s cause use-after-free (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- Revert: [kernel] kmod: avoid deadlock from recursive request_module call (Frantisek Hrbata) [957152 949568]\n- Revert: [x86-64] non lazy sleazy fpu implementation (Prarit Bhargava) [948187 731531]\n- Revert: [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531]\n- Revert: [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531]\n- Revert: [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783]\n[2.6.18-348.10.1]\n- [net] Bluetooth: fix possible info leak in bt_sock_recvmsg() (Radomir Vrbovsky) [955600 955601] {CVE-2013-3224}\n- [net] Bluetooth: HCI & L2CAP information leaks (Jacob Tanenbaum) [922415 922416] {CVE-2012-6544}\n- [misc] signal: use __ARCH_HAS_SA_RESTORER instead of SA_RESTORER (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}\n- [misc] signal: always clear sa_restorer on execve (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}\n- [misc] signal: Def __ARCH_HAS_SA_RESTORER for sa_restorer clear (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}\n- [net] cxgb4: zero out another firmware request struct (Jay Fenlason) [971872 872531]\n- [net] cxgb4: clear out most firmware request structures (Jay Fenlason) [971872 872531]\n- [kernel] Make futex_wait() use an hrtimer for timeout (Prarit Bhargava) [958021 864648]\n[2.6.18-348.9.1]\n- [net] tg3: buffer overflow in VPD firmware parsing (Jacob Tanenbaum) [949939 949940] {CVE-2013-1929}\n- [net] atm: update msg_namelen in vcc_recvmsg() (Nikola Pajkovsky) [955222 955223] {CVE-2013-3222}\n- [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]\n- [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071]\n- [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071]\n- [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071]\n- [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071]\n- [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071]\n- [net] llc: Fix missing msg_namelen update in llc_ui_recvmsg() (Jesper Brouer) [956096 956097] {CVE-2013-3231}\n- [net] tipc: fix info leaks via msg_name in recv_msg/recv_stream (Jesper Brouer) [956148 956149] {CVE-2013-3235}\n- [net] Bluetooth: RFCOMM Fix info leak in ioctl(RFCOMMGETDEVLIST) (Radomir Vrbovsky) [922406 922407] {CVE-2012-6545}\n- [net] Bluetooth: RFCOMM - Fix info leak via getsockname() (Radomir Vrbovsky) [922406 922407] {CVE-2012-6545}\n- [kernel] kmod: avoid deadlock from recursive request_module call (Frantisek Hrbata) [957152 949568]\n- [kernel] wait_for_helper: SIGCHLD from u/s cause use-after-free (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- [kernel] Fix ____call_usermodehelper errs being silently ignored (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- [kernel] wait_for_helper: remove unneeded do_sigaction() (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- [kernel] kmod: avoid deadlock from recursive kmod call (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n- [kernel] kmod: make request_module() killable (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}\n[2.6.18-348.8.1]\n- [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783]\n[2.6.18-348.7.1]\n- [pci] intel-iommu: Prev devs with RMRRs from going in SI Domain (Tony Camuso) [957606 839334]", "edition": 3, "reporter": "Oracle", "published": "2013-07-10T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-3231", "CVE-2013-3224", "CVE-2012-6545", "CVE-2013-1929", "CVE-2012-6544", "CVE-2013-3222", "CVE-2012-4398", "CVE-2013-0914", "CVE-2013-3235"], "modified": "2013-07-10T00:00:00", "id": "ELSA-2013-1034", "href": "http://linux.oracle.com/errata/ELSA-2013-1034.html", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:46:10", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-371.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.el5xen-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-371.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-371.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-371.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.el5debug-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-371.el5-1.4.10-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-371.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-371.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.el5-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-371.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.el5debug-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.el5xen-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-371.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-371.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-371.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-371.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-371.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-371.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-371.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-371.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-371.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-371.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-371.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-371.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-371.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.el5xen-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-371.el5debug-1.4.10-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-371.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.el5-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-371.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-371.el5PAE-1.4.10-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-371.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-371.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-371.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-371.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-371.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-371.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-371.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-371.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-371.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-371.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.10-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-371.el5-1.4.10-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-371.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-371.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-371.el5", "arch": "src", "packageFilename": "kernel-2.6.18-371.el5.src.rpm", "packageName": "kernel", "operator": "lt"}], "description": "kernel\r\n[2.6.18-371]\r\n- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]\r\n \n[2.6.18-370]\r\n- [net] be2net: Fix to avoid hardware workaround when not needed (Ivan Vecera) [995961]\r\n- [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970875] {CVE-2013-2141}\r\n \n[2.6.18-369]\r\n- [fs] nlm: Ensure we resend pending blocking locks after a reclaim (Steve Dickson) [918592]\r\n- [kernel] kmod: kthread_run causes oom killer deadlock (Frantisek Hrbata) [983506]\r\n- [fs] nfs4: ratelimit some messages, add name to bad seq-id mess (Dave Wysochanski) [953121]\r\n- [fs] nfsd: fix EXDEV checking in rename (J. Bruce Fields) [515599]\r\n- [misc] tty: Fix abusers of current-sighand->tty (Aaron Tomlin) [858981]\r\n- [net] ipv6: don't call addrconf_dst_alloc again when enable lo (Jiri Benc) [981417]\r\n- [redhat] kabi: Adding symbol fc_fabric_login (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fcoe_ctlr_recv (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_exch_mgr_reset (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_lport_init (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_exch_recv (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_lport_destroy (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fcoe_ctlr_els_send (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fcoe_ctlr_destroy (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_exch_init (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_fabric_logoff (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_set_mfs (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_elsct_init (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fcoe_ctlr_link_up (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fcoe_ctlr_recv_flogi (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_change_queue_depth (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fcoe_ctlr_init (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fcoe_ctlr_link_down (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_change_queue_type (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_exch_mgr_free (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_exch_mgr_alloc (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_lport_config (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_disc_init (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol strict_strtoul (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_rport_init (Jiri Olsa) [864256]\r\n- [redhat] kabi: Adding symbol fc_get_host_port_state (Jiri Olsa) [864256]\r\n \n[2.6.18-368]\r\n- [net] tg3: Add read dma workaround for 5720 (Ivan Vecera) [984064]\r\n- [net] tg3: Add New 5719 Read DMA workaround (Ivan Vecera) [984064]\r\n- [net] vlan: fix perf regression due to missing features flags (Michal Schmidt) [977711]\r\n \n[2.6.18-367]\r\n- [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987648] {CVE-2013-4162}\r\n- [net] mlx4: restore pre-RHEL5.9 default value of log_num_mac (Michal Schmidt) [968352]\r\n- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [987244]\r\n- [fs] vfs: remove unused __d_splice_alias argument (J. Bruce Fields) [785916]\r\n- [fs] vfs: stop d_splice_alias creating directory aliases (J. Bruce Fields) [785916]\r\n- [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [967053]\r\n \n[2.6.18-366]\r\n- [net] be2net: Activate new FW after FW download for Lancer (Ivan Vecera) [982590]\r\n- [net] be2net: Fix initialization sequence for Lancer (Ivan Vecera) [982590]\r\n- [net] be2net: Fix FW download in Lancer (Ivan Vecera) [982590]\r\n- [net] qlge: Fix receive path to drop error frames (Chad Dupuis) [975852]\r\n- [net] qlge: remove NETIF_F_TSO6 flag (Chad Dupuis) [975852]\r\n- [net] qlge: Moving low level frame error to ethtool statistics (Chad Dupuis) [975852]\r\n- [net] qlge: Fixed double pci free on tx_ring->q allocation fail (Chad Dupuis) [975852]\r\n \n[2.6.18-365]\r\n- [net] be2net: Mark checksum fail for IP fragmented packets (Ivan Vecera) [956322]\r\n- [net] be2net: Avoid double insertion of vlan tags (Ivan Vecera) [956322]\r\n- [net] be2net: disable TX in be_close() (Ivan Vecera) [956322]\r\n- [net] be2net: fix EQ from getting full while cleaning RX CQ (Ivan Vecera) [956322]\r\n- [net] be2net: avoid napi_disable() when not enabled (Ivan Vecera) [956322]\r\n- [net] be2net: Fix receive Multicast Packets w/ Promiscuous mode (Ivan Vecera) [956322]\r\n- [net] be2net: Fixed memory leak (Ivan Vecera) [956322]\r\n- [net] be2net: Fix PVID tag offload for packets w/ inline VLAN tag (Ivan Vecera) [956322]\r\n- [net] be2net: fix a Tx stall bug caused by a specific ipv6 packet (Ivan Vecera) [956322]\r\n- [net] be2net: Remove an incorrect pvid check in Tx (Ivan Vecera) [956322]\r\n- [net] be2net: Fix issues in error recovery with wrong queue state (Ivan Vecera) [956322]\r\n- [net] netpoll: revert 6bdb7fe3104 and fix be_poll() instead (Ivan Vecera) [956322]\r\n- [net] be2net: Fix to parse RSS hash Receive completions correctly (Ivan Vecera) [956322]\r\n- [net] be2net: Fix cleanup path when EQ creation fails (Ivan Vecera) [956322]\r\n- [net] be2net: Fix Endian (Ivan Vecera) [956322]\r\n- [net] be2net: Fix to trim skb for padded vlan packets (Ivan Vecera) [956322]\r\n- [net] be2net: Explicitly clear reserved field in Tx Descriptor (Ivan Vecera) [956322]\r\n- [net] be2net: remove unnecessary usage of unlikely() (Ivan Vecera) [956322]\r\n- [net] be2net: do not modify PCI MaxReadReq size (Ivan Vecera) [956322]\r\n- [net] be2net: cleanup be_vid_config() (Ivan Vecera) [956322]\r\n- [net] be2net: don't call vid_config() when there no vlan config (Ivan Vecera) [956322]\r\n- [net] be2net: Ignore status of some ioctls during driver load (Ivan Vecera) [956322]\r\n- [net] be2net: Fix wrong status getting returned for MCC commands (Ivan Vecera) [956322]\r\n- [net] be2net: Fix VLAN/multicast packet reception (Ivan Vecera) [956322]\r\n- [net] be2net: fix wrong frag_idx reported by RX CQ (Ivan Vecera) [956322]\r\n- [infiniband] cxgb4: Compile when CXGB4 is set, not CXGB3 (Doug Ledford) [871555]\r\n- Revert: [infiniband] qib: add qib, mod ipath to only support HTX (Doug Ledford) [871555]\r\n- Revert: [infiniband] Enable Kconfig for ipath (Doug Ledford) [871555]\r\n- Revert: [infiniband] Revert upstream 'Infiniband: make ipath' (Doug Ledford) [871555]\r\n- Revert: [infiniband] Revert upstream 'IB/ipath: Make ipath_port' (Doug Ledford) [871555]\r\n- Revert: [infiniband] Revert upstream 'IB/ipath: Convert from ...' (Doug Ledford) [871555]\r\n- Revert: [infiniband] Revert upstream 'cpumask: use new cpumask' (Doug Ledford) [871555]\r\n- Revert: [infiniband] Import of backport patch from ofed 1.4.2 (Doug Ledford) [871555]\r\n- Revert: [infiniband] Pull in backport from ofed 1.4.2 (Doug Ledford) [871555]\r\n- Revert: [infiniband] aio_write not right entrypoint to use in our (Doug Ledford) [871555]\r\n- Revert: [infiniband] make up for lack of HT_IRQ config option (Doug Ledford) [871555]\r\n- Revert: [infiniband] Don't use vmalloc_user (Doug Ledford) [871555]\r\n- Revert: [infiniband] More device->class_device conversions (Doug Ledford) [871555]\r\n- Revert: [scsi] qla4xxx: ISP8xxx: Correct retry of adapter initial (Chad Dupuis) [978150]\r\n- [net] af_key: fix info leaks in notify messages (Jiri Benc) [981000] {CVE-2013-2234}\r\n- [net] af_key: initialize satype in key_notify_policy_flush() (Jiri Benc) [981224] {CVE-2013-2237}\r\n- [net] Fix panic for vlan over gre via tun (Thomas Graf) [981337]\r\n- [net] ipv6: ip6_sk_dst_check() must not assume ipv6 dst (Jiri Pirko) [981557] {CVE-2013-2232}\r\n \n[2.6.18-364]\r\n- [net] sctp: Disallow new connection on a closing socket (Daniel Borkmann) [974936] {CVE-2013-2206}\r\n- [net] sctp: Use correct sideffect command in dup cookie handling (Daniel Borkmann) [974936] {CVE-2013-2206}\r\n- [net] sctp: deal with multiple COOKIE_ECHO chunks (Daniel Borkmann) [974936] {CVE-2013-2206}\r\n- [scsi] qla4xxx: Update vers to 5.02.04.06.05.10-d0 for Inbox rel (Chad Dupuis) [978150]\r\n- [scsi] qla4xxx: ISP8xxx: Correct retry of adapter initialization (Chad Dupuis) [978150]\r\n- [scsi] qla4xxx: Fix req queue count manipulation on response path (Chad Dupuis) [978150]\r\n- [scsi] qla4xxx: Fix targets not coming back if chap is enabled (Chad Dupuis) [978150]\r\n- [scsi] qla4xxx: Correct early completion of pending mbox (Chad Dupuis) [978150]\r\n- [net] fix invalid free in ip_cmsg_send() callers (Petr Matousek) [980142] {CVE-2013-2224}\r\n- [x86_64] Early segment setup for VT (Paolo Bonzini) [978305]\r\n- [block] cpqarray: info leak in ida_locked_ioctl() (Tomas Henzl) [971246] {CVE-2013-2147}\r\n- [net] tcp: bind() use stronger condition for bind_conflict (Flavio Leitner) [957604]\r\n \n[2.6.18-363]\r\n- [virt] netback: don't disconnect frontend with oversize packet (Andrew Jones) [971155]\r\n- [virt] netfront: reduce gso_max_size to account max TCP header (Andrew Jones) [971155]\r\n- [block] cdrom: use kzalloc() for failing hardware (Frantisek Hrbata) [973104] {CVE-2013-2164}\r\n- [block] cciss: Update version string (Linda Knippers) [919633]\r\n \n[2.6.18-362]\r\n- [block] cciss: Silence noisy per-device cciss messages (Tomas Henzl) [827515]\r\n- [fs] gfs2: flush work queue before clearing glock hash tables (Abhijith Das) [959532]\r\n- [fs] extN: tighten restrictions on inode flags (Eric Sandeen) [756309]\r\n- [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849736] {CVE-2012-3511}\r\n- [internal] kernel.spec: add Provides line to kernel-debug-devel (Phillip Lougher) [709658]\r\n \n[2.6.18-361]\r\n- [fs] ext4: Avoid crashing on NULL ptr dereference on fs error (Carlos Maiolino) [867748]\r\n- [fs] ext4: set extents flag when migrating file to use extents (Carlos Maiolino) [867748]\r\n- [fs] ext4: Convert more i_flags references to use accessors (Carlos Maiolino) [867748]\r\n- [fs] ext4: Fix remaining racy updates of EXT4_I(inode)->i_flags (Carlos Maiolino) [867748]\r\n- [fs] ext4: Use bitops to read/modify i_flags in ext4_inode_info (Carlos Maiolino) [867748]\r\n- [fs] ext3/4: don't clear orphan list on ro mount with errors (Eric Sandeen) [850803]\r\n- [fs] jbd2: round commit timer up to avoid uncommitted transaction (Carlos Maiolino) [892393]\r\n- [scsi] ibmvfc: Ignore fabric RSCNs when link is dead (Steve Best) [964334]\r\n- [mm] Page migration: Don't accept invalid nodes in target nodeset (Jan Stancek) [848473]\r\n- [mm] Break out when there is nothing more to write for the fs. (Larry Woodman) [965359]\r\n- [sound] ALSA - fix the no-sound issue for Creative Recon3D cards (Jaroslav Kysela) [796912]\r\n \n[2.6.18-360]\r\n- [fs] zisofs: fix readpage() outside i_size (Eric Sandeen) [952860]\r\n- [net] fixed: fix module unloading for the 'fixed' driver (Nikolay Aleksandrov) [647894]\r\n- [net] ipv6: assign rt6_info to inet6_ifaddr in init_loopback (Jiri Benc) [971067]\r\n- [net] Bluetooth: fix possible info leak in bt_sock_recvmsg() (Radomir Vrbovsky) [955601] {CVE-2013-3224}\r\n- [block] gen8plus Smart Array IDs (Linda Knippers) [919633]\r\n- [net] Bluetooth: HCI & L2CAP information leaks (Jacob Tanenbaum) [922416] {CVE-2012-6544}\r\n- [virt] xen PV passthru: assign SR-IOV VFs to sep virtual slots (Laszlo Ersek) [865736]\r\n- [scsi] be2iscsi: This patch bumps the version number (Rob Evers) [962503]\r\n- [scsi] be2iscsi: This patch fixes the NOPIN issues (Rob Evers) [962503]\r\n- [xen] cap physmem at 1TB (Andrew Jones) [961667]\r\n- [xen] cleanup invalid checksum error (Andrew Jones) [914814]\r\n- [xen] mask cpuid avx (Andrew Jones) [894360]\r\n \n[2.6.18-359]\r\n- [fs] autofs4: use __simple_empty() for empty directory check (Ian Kent) [873922]\r\n- [fs] autofs: remove autofs dentry mount check (Ian Kent) [928098]\r\n- [redhat] kabi: Adding symbol register_lro_netdev (Jiri Olsa) [873514]\r\n- [redhat] kabi: Adding symbol unregister_lro_netdev (Jiri Olsa) [873514]\r\n- [misc] signal: use __ARCH_HAS_SA_RESTORER instead of SA_RESTORER (Nikola Pajkovsky) [920504] {CVE-2013-0914}\r\n- [misc] signal: always clear sa_restorer on execve (Nikola Pajkovsky) [920504] {CVE-2013-0914}\r\n- [misc] signal: Def __ARCH_HAS_SA_RESTORER for sa_restorer clear (Nikola Pajkovsky) [920504] {CVE-2013-0914}\r\n- [net] ipv6: Fix broken IPv6 routing table after loopback down-up (Jiri Benc) [745321]\r\n- [v i r t ] h v : u s e g r a c e f u l l y s h u t d o w n i n s t e a d o f p o w e r o f f ( J a s o n W a n g ) [ 9 0 3 4 6 0 ] \r b r > - [ m d ] d m k c o p y d t h r o t t l i n g ( M i k u l a s P a t o c k a ) [ 9 5 8 5 5 6 ] \r b r > - [ s c s i ] s t o r v s c : P r o p e r l y h a n d l e i n - t r a n s i t p a c k e t s d u r i n g a r e s e t ( J a s o n W a n g ) [ 8 6 5 2 9 2 ] \r b r > - [ n e t ] s k y 2 : f i x s c h e d u l i n g w h i l e a t o m i c i n s k y 2 _ v l a n _ r x _ r e g i s t e r ( N i k o l a y A l e k s a n d r o v ) [ 9 2 0 7 5 7 ] \r b r > - [ x 8 6 ] f i x t i m e o u t o f p o l l ( 2 ) w / 3 2 - b i t p r o c e s s e s o n x 8 6 _ 6 4 ( N a o y a H o r i g u c h i ) [ 7 9 4 6 7 0 ] \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 8 ] \r b r > - [ n e t ] t g 3 : b u f f e r o v e r f l o w i n V P D f i r m w a r e p a r s i n g ( J a c o b T a n e n b a u m ) [ 9 4 9 9 4 0 ] { C V E - 2 0 1 3 - 1 9 2 9 } \r b r > - [ n e t ] a t m : u p d a t e m s g _ n a m e l e n i n v c c _ r e c v m s g ( ) ( N i k o l a P a j k o v s k y ) [ 9 5 5 2 2 3 ] { C V E - 2 0 1 3 - 3 2 2 2 } \r b r > - [ i a 6 4 ] f i x K A B I b r e a k a g e o n i a 6 4 ( P r a r i t B h a r g a v a ) [ 9 6 0 7 8 3 ] \r b r > - [ c p u f r e q ] a c p i - c p u f r e q m o r e d e f e n s i v e a g a i n s t B I O S f r e q c h a n g e s ( L e n n y S z u b o w i c z ) [ 9 2 1 8 5 6 ] \r b r > - [ n e t ] t c p : c o n n e c t ( ) r a c e w i t h t i m e w a i t r e u s e ( J i r i P i r k o ) [ 9 4 7 0 3 8 ] \r b r > - [ b l o c k ] i d e : A l l o w c o n f i g u r a t i o n o f p r e f e r _ m s _ h y p e r v ( R a d o m i r V r b o v s k y ) [ 9 0 7 2 3 1 ] \r b r > - [ i n f i n i b a n d ] R e t u r n l i n k l a y e r t y p e t o u s e r s p a c e q u e r y p o r t o p ( J a y F e n l a s o n ) [ 8 6 6 3 3 1 ] \r b r > - [ s c s i ] i p r : F i x o o p s w h i l e r e s e t t i n g a n i p r a d a p t e r ( S t e v e B e s t ) [ 9 1 4 3 9 1 ] \r b r > - [ n e t ] i p v 6 : R e m o v e I P V 6 _ A D D R _ R E S E R V E D ( A m e r i g o W a n g ) [ 7 2 8 9 2 2 ] \r b r > - [ n e t ] I P _ M U L T I C A S T _ I F s e t s o c k o p t n o w r e c o g n i z e s s t r u c t m r e q ( J i r i P i r k o ) [ 8 4 7 6 1 3 ] \r b r > - [ n e t ] r e d u c e p e r c p u r a m u s e d f o r l o o p b a c k s t a t s ( W e i p i n g P a n ) [ 8 7 2 4 6 6 ] \r b r > - [ n e t ] i p v 4 : c h e c k o p t l e n f o r I P _ M U L T I C A S T _ I F o p t i o n ( J i r i P i r k o ) [ 8 6 6 7 4 3 ] \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 7 ] \r b r > - [ f s ] e x t 4 : p r e v e n t r a c e w h i l e w a l k i n g e x t e n t t r e e f o r f i e m a p ( L u k a s C z e r n e r ) [ 6 9 2 0 7 1 ] \r b r > - [ f s ] e x t 4 : F i x p o s s i b l y v e r y l o n g l o o p i n f i e m a p ( L u k a s C z e r n e r ) [ 6 9 2 0 7 1 ] \r b r > - [ f s ] e x t 4 : m a k e F I E M A P a n d d e l a y e d a l l o c a t i o n p l a y w e l l t o g e t h e r ( L u k a s C z e r n e r ) [ 6 9 2 0 7 1 ] \r b r > - [ f s ] e x t 4 : h a n d l e N U L L p _ e x t i n e x t 4 _ e x t _ n e x t _ a l l o c a t e d _ b l o c k ( ) ( L u k a s C z e r n e r ) [ 6 9 2 0 7 1 ] \r b r > - [ f s ] e x t 4 : d r o p e c _ t y p e f r o m t h e e x t 4 _ e x t _ c a c h e s t r u c t u r e ( L u k a s C z e r n e r ) [ 6 9 2 0 7 1 ] \r b r > - [ f s ] a f s : e x p o r t a c o u p l e o f c o r e f u n c t i o n s f o r A F S w r i t e s u p p o r t ( L u k a s C z e r n e r ) [ 6 9 2 0 7 1 ] \r b r > - [ f s ] c i f s : s h o w s e c = o p t i o n i n / p r o c / m o u n t s ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : I n t r o d u c e w o r k a r o u n d f o r c r y p t o m o d u l e l o a d i n g p r o b l e m ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : F i x e x t e n d e d s e c u r i t y a u t h f a i l u r e ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : s i l e n c e p r i n t k w h e n e s t a b l i s h i n g f i r s t s e s s o n s o c k e t ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : F i x s i g n f a i l u r e w h e n s e r v m a n d a t e s s i g n f o r N T L M S S P ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : S u p p o r t N T L M 2 s e s s s e c u r i t y d u r N T L M S S P a u t h e n t i c a t e ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : i g n o r e e v e r y t h i n g i n S P N E G O b l o b a f t e r m e c h T y p e s ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : c h e c k o f f s e t i n d e c o d e _ n t l m s s p _ c h a l l e n g e ( ) ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : e n d i a n f i x i n d e c o d e _ n t l m s s p _ c h a l l e n g e ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : N T L M a u t h / s i g n - c r e a t e & s e n d k e y s f o r k e y e x c h a n g e ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : m v ' n t l m s s p ' & ' l o c a l _ l e a s e s ' o p t s f r o m e x p e r i m e n t a l ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : R e m o v e d i s t i n c t i o n b e t w e e n r a w n t l m s s p a n d n t l m s s p . ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : F i x b r o k e n s e c = n t l m v 2 / i s e c o p t i o n ( t r y # 2 ) ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : N T L M a u t h / s i g n - m i n o r e r r o r c o r r e c t i o n s a n d c l e a n u p ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : N T L M a u t h / s i g n - A l l o c s e s s k e y / c l i e n t r e s d y n a m i c a l l y ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : N T L M a u t h e n t & s i g n i n g - C a l c a u t h r e s p o n s e p e r s e s s ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : n t l m a u t h e n t & s i g n i n g - p r o p e r a v / t i p a i r f o r n t l m v 2 ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : f i x m o d u l e r e f c o u n t l e a k i n f i n d _ d o m a i n _ n a m e ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : n t l m a u t h e n t & s i g n i n g - F i x r e s p o n s e l e n f o r n t l m v 2 ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : N T L M v 2 / N T L M S S P n t l m v 2 w i t h i n n t l m s s p a u t h e n t i c a t e c o d e ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : N T L M v 2 / N T L M S S P C h a n g e v a r n a m e m a c _ k e y t o s e s s i o n k e y ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : n t l m v 2 / n t l m s s p r e m f u n c t i o n C a l c N T L M v 2 _ p a r t i a l _ m a c _ k e y ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : h a v e d e c o d e _ n e g T o k e n I n i t s e t f l a g s i n s e r v e r s t r u c t ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : e l i m i n a t e ' f i r s t _ t i m e ' p a r m t o C I F S _ S e s s S e t u p ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : A l l o w r a w n t l m s s p c o d e t o b e e n a b l e d w i t h s e c = n t l m s s p ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : F i x S M B u i d i n N T L M S S P a u t h e n t i c a t e r e q u e s t ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : N T L M S S P r e e n a b l e d a f t e r m o v e f r o m c o n n e c t . c t o s e s s . c ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ f s ] c i f s : A d d r e m a i n i n g n t l m s s p f l a g s & s t a n d a r d i z e f i e l d n a m e s ( S a c h i n P r a b h u ) [ 8 0 6 4 8 1 ] \r b r > - [ m i s c ] g e n a l l o c : s t o p c r a s h i n g t h e s y s t e m w h e n d e s t r o y i n g a p o o l ( S t e v e B e s t ) [ 8 5 9 1 9 4 ] \r b r > - [ x 8 6 ] m m : i n t r o d u c e p r o p e r m e m b a r r i e r s s m p _ i n v a l i d a t e _ i n t e r r u p t ( R a f a e l A q u i n i ) [ 8 6 5 0 9 5 ] \r b r > - [ x 8 6 ] A d d s y s c t l t o a l l o w p a n i c o n I O C K N M I e r r o r ( P r a r i t B h a r g a v a ) [ 9 1 8 2 7 9 ] \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 6 ] \r b r > - [ f s ] n f s : f l u s h c a c h e d d i r i n f o r m a t i o n s l i g h t l y m o r e r e a d i l y ( S c o t t M a y h e w ) [ 8 5 3 1 4 5 ] \r b r > - [ f s ] n f s : F i x r e s o l u t i o n p r o b w i t h c a c h e _ c h a n g e _ a t t r i b u t e ( S c o t t M a y h e w ) [ 8 5 3 1 4 5 ] \r b r > - [ f s ] n f s : d e f i n e f u n c t i o n t o u p d a t e n f s i - > c a c h e _ c h a n g e _ a t t r i b u t e ( S c o t t M a y h e w ) [ 8 5 3 1 4 5 ] \r b r > - [ f s ] n f s v 4 : S a v e t h e o w n e r / g r o u p n a m e s t r i n g w h e n d o i n g o p e n ( S c o t t M a y h e w ) [ 6 0 9 2 5 2 ] \r b r > - [ f s ] n f s v 4 : D o n ' t d o i d m a p p e r u p c a l l s f o r a s y n c h r o n o u s R P C c a l l s ( S c o t t M a y h e w ) [ 6 0 9 2 5 2 ] \r b r > - [ f s ] n f s v 4 : F i x c a c h e v a l i d a t e b u g w h e r e g e t c w d ( ) r e t u r n s E N O E N T ( S c o t t M a y h e w ) [ 6 0 9 2 5 2 ] \r b r > - [ f s ] n f s v 4 : S i m p l i f y s o m e c a c h e c o n s i s t e n c y p o s t - o p G E T A T T R s ( S c o t t M a y h e w ) [ 6 0 9 2 5 2 ] \r b r > - [ f s ] n f s v 4 : s e t f a t t r - > v a l i d t o r e f l e c t w h a t w a s d e c o d e d ( S c o t t M a y h e w ) [ 6 0 9 2 5 2 ] \r b r > - [ f s ] n f s v 4 : C l e a n u p d e c o d e _ g e t f a t t r ( ) ( S c o t t M a y h e w ) [ 6 0 9 2 5 2 ] \r b r > - [ f s ] n f s v 4 : S u p p o r t N F S v 4 o p t i o n a l a t t r s i n t h e s t r u c t n f s _ f a t t r ( S c o t t M a y h e w ) [ 6 0 9 2 5 2 ] \r b r > - [ f s ] n f s : F i x n f s _ p o s t _ o p _ u p d a t e _ i n o d e _ f o r c e _ w c c ( ) ( S c o t t M a y h e w ) [ 6 0 9 2 5 2 ] \r b r > - [ m d ] s h u t d o w n , d o n ' t s w i t c h t o R O , m a r k c l e a n a n d s e t s a f e m o d e = 2 ( J e s S o r e n s e n ) [ 8 6 4 7 2 7 ] \r b r > - [ n e t ] c x g b 4 : z e r o o u t a n o t h e r f i r m w a r e r e q u e s t s t r u c t ( J a y F e n l a s o n ) [ 8 7 2 5 3 1 ] \r b r > - [ n e t ] c x g b 4 : c l e a r o u t m o s t f i r m w a r e r e q u e s t s t r u c t u r e s ( J a y F e n l a s o n ) [ 8 7 2 5 3 1 ] \r b r > - [ n e t ] e t h t o o l : a l l o w e n a b l e G R O e v e n i f R X c s u m i s d i s a b l e d ( I v a n V e c e r a ) [ 8 9 4 6 3 6 ] \r b r > - [ n e t ] e n a b l e G R O b y d e f a u l t f o r v l a n d e v i c e s ( I v a n V e c e r a ) [ 8 9 4 6 3 6 ] \r b r > - [ n e t ] b o n d i n g : e n a b l e g r o b y d e f a u l t ( I v a n V e c e r a ) [ 8 9 4 6 3 6 ] \r b r > - [ m m ] w r i t e b a c k : r e m o v e u n n e c e s s a r y w a i t i n t h r o t t l e _ v m _ w r i t e o u t ( ) ( F r a n t i s e k H r b a t a ) [ 8 2 2 7 6 8 ] \r b r > - [ m m ] t h r o t t l e _ v m _ w r i t e o u t : d o n ' t l o o p o n G F P _ N O F S / G F P _ N O I O a l l o c ( F r a n t i s e k H r b a t a ) [ 8 2 2 7 6 8 ] \r b r > - [ c h a r ] r a n d o m : m i x i n a r c h i t e c t u r a l r a n d o m n e s s i n e x t r a c t _ b u f ( ) ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ c h a r ] r a n d o m : U s e a r c h - s p e c i f i c R N G t o i n i t t h e e n t r o p y s t o r e ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ x 8 6 ] r a n d o m : V e r i f y R D R A N D f u n c t i o n a n d a l l o w i t t o b e d i s a b l e d ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ x 8 6 ] r a n d o m : A r c h i n l i n e s t o g e t r a n d o m i n t e g e r s w i t h R D R A N D ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ c h a r ] r a n d o m : A d d s u p p o r t f o r a r c h i t e c t u r a l r a n d o m h o o k s ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ c h a r ] r a n d o m : m a k e m i x i n g i n t e r f a c e b y t e - o r i e n t e d ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ c h a r ] r a n d o m : r e m o v e s o m e p r e f e t c h l o g i c ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ c h a r ] r a n d o m : i m p r o v e v a r i a b l e n a m i n g , c l e a r e x t r a c t b u f f e r ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ x 8 6 ] a d d c l e a r _ c p u _ c a p ( ) o p e r a t i o n ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ x 8 6 ] 3 2 - b i t , a d d a l t e r n a t i v e _ i o ( ) ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ x 8 6 ] a d d X 8 6 _ F E A T U R E _ R D R A N D ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ x 8 6 ] a d d A S M _ O U T P U T 2 ( P r a r i t B h a r g a v a ) [ 8 7 1 5 5 9 ] \r b r > - [ x 8 6 ] m c e , k e r n e l s u p p o r t s M C E f o r N e h a l e m ( P r a r i t B h a r g a v a ) [ 9 5 8 9 0 5 ] \r b r > - [ s c s i ] q l a 2 x x x : A d d a m u t e x a r o u n d u s e o f o p t r o m v a r i a b l e s . ( C h a d D u p u i s ) [ 7 9 5 5 5 0 ] \r b r > - [ n e t ] b e 2 n e t : f i x w r o n g f r a g _ i d x r e p o r t e d b y R X C Q ( I v a n V e c e r a ) [ 8 6 2 5 2 0 ] \r b r > - [ n e t ] b n x 2 x : P r e v e n t N U L L p o i n t e r d e r e f e r e n c e i n k d u m p ( M i c h a l S c h m i d t ) [ 8 6 7 3 0 2 ] \r b r > - [ s c s i ] c x g b 4 i h o t - u n p l u g ( J a y F e n l a s o n ) [ 7 8 6 0 2 4 ] \r b r > - [ n e t ] b o n d : a d d s u p p o r t t o r e a d s p e e d a n d d u p l e x v i a e t h t o o l ( A n d y G o s p o d a r e k ) [ 7 0 4 5 7 5 ] \r b r > - [ n e t ] n e t p o l l : w o r k a r o u n d a r a c e c o n d i t i o n ( A m e r i g o W a n g ) [ 7 4 2 4 9 5 ] \r b r > - [ n e t ] I P V 6 : A l l o w a d d r e s s c h a n g e s w h i l e a d m i n i s t r a t i v e d o w n ( F l a v i o L e i t n e r ) [ 8 6 8 6 2 2 ] \r b r > - [ s o u n d ] A L S A - H D A - f i x N U L L p o i n t e r d e r e f e r e n c e f o r A L C 2 6 8 ( J a r o s l a v K y s e l a ) [ 9 0 1 3 3 7 ] \r b r > - [ s c s i ] c c i s s : u s e l u n r e s e t n o t t a r g e t r e s e t ( T o m a s H e n z l ) [ 8 9 3 0 4 9 ] \r b r > - [ n e t ] i g b v f : w o r k a r o u n d i 3 5 0 e r r a t u m ( S t e f a n A s s m a n n ) [ 8 7 8 9 0 4 ] \r b r > - [ n e t ] l l c : F i x m i s s i n g m s g _ n a m e l e n u p d a t e i n l l c _ u i _ r e c v m s g ( ) ( J e s p e r B r o u e r ) [ 9 5 6 0 9 7 ] { C V E - 2 0 1 3 - 3 2 3 1 } \r b r > - [ n e t ] t i p c : f i x i n f o l e a k s v i a m s g _ n a m e i n r e c v _ m s g / r e c v _ s t r e a m ( J e s p e r B r o u e r ) [ 9 5 6 1 4 9 ] { C V E - 2 0 1 3 - 3 2 3 5 } \r b r > - [ n e t ] B l u e t o o t h : R F C O M M F i x i n f o l e a k i n i o c t l ( R F C O M M G E T D E V L I S T ) ( R a d o m i r V r b o v s k y ) [ 9 2 2 4 0 7 ] { C V E - 2 0 1 2 - 6 5 4 5 } \r b r > - [ n e t ] B l u e t o o t h : R F C O M M - F i x i n f o l e a k v i a g e t s o c k n a m e ( ) ( R a d o m i r V r b o v s k y ) [ 9 2 2 4 0 7 ] { C V E - 2 0 1 2 - 6 5 4 5 } \r b r > - [ k e r n e l ] M a k e f u t e x _ w a i t ( ) u s e a n h r t i m e r f o r t i m e o u t ( P r a r i t B h a r g a v a ) [ 8 6 4 6 4 8 ] \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 5 ] \r b r > - [ c h a r ] i p m i : u s e a t a s k l e t f o r h a n d l i n g r e c e i v e d m e s s a g e s ( T o n y C a m u s o ) [ 9 4 7 7 3 2 ] \r b r > - [ c h a r ] i p m i : d o r u n _ t o _ c o m p l e t i o n p r o p e r l y i n d e l i v e r _ r e c v _ m s g ( T o n y C a m u s o ) [ 9 4 7 7 3 2 ] \r b r > - [ f s ] n f s 4 : f i x l o c k i n g a r o u n d c l _ s t a t e _ o w n e r s l i s t ( D a v e W y s o c h a n s k i ) [ 9 4 8 3 1 7 ] \r b r > - [ s 3 9 0 ] q e t h : f i x q e t h _ w a i t _ f o r _ t h r e a d s ( ) d e a d l o c k f o r O S N d e v i c e s ( H e n d r i k B r u e c k n e r ) [ 9 5 2 4 5 1 ] \r b r > - [ f s ] e x t 4 : c h e c k f o r z e r o l e n g t h e x t e n t ( L u k a s C z e r n e r ) [ 8 6 6 4 3 3 ] \r b r > - [ n e t ] b e 2 n e t : f i x b e _ c l o s e ( ) t o e n s u r e a l l e v e n t s a r e a c k ' e d ( I v a n V e c e r a ) [ 9 5 0 1 3 7 ] \r b r > - [ n e t ] b e 2 n e t : f i x a r a c e i n b e _ x m i t ( ) ( I v a n V e c e r a ) [ 9 4 9 9 5 9 ] \r b r > - [ k e r n e l ] k m o d : a v o i d d e a d l o c k f r o m r e c u r s i v e r e q u e s t _ m o d u l e c a l l ( F r a n t i s e k H r b a t a ) [ 9 4 9 5 6 8 ] \r b r > - [ n e t ] n e t x e n : w r i t e I P a d d r e s s t o f i r m w a r e w h e n u s i n g b o n d i n g ( N i k o l a y A l e k s a n d r o v ) [ 7 5 6 5 0 2 ] \r b r > - [ s 3 9 0 ] k e r n e l : s c h e d _ c l o c k ( ) o v e r f l o w ( H e n d r i k B r u e c k n e r ) [ 9 0 3 3 3 8 ] \r b r > - [ n e t ] d e v i n e t : R e g i s t e r i n e t d e v e a r l i e r ( J i r i P i r k o ) [ 7 7 0 8 1 3 ] \r b r > - [ f s ] n f s : F i x b u g s o n s h o r t r e a d ( S a c h i n P r a b h u ) [ 9 2 4 0 1 1 ] \r b r > - [ f s ] n f s : D o n ' t a l l o w N F S s i l l y - r e n a m e d f i l e s t o b e d e l e t e d ( D a v e W y s o c h a n s k i ) [ 9 0 6 4 7 2 ] \r b r > - [ x e n ] A M D I O M M U : s p o t m i s s i n g I O - A P I C e n t r i e s i n I V R S t a b l e ( I g o r M a m m e d o v ) [ 9 1 0 9 1 3 ] { C V E - 2 0 1 3 - 0 1 5 3 } \r b r > - [ x e n ] A M D , I O M M U : M a k e p e r - d e v i c e i n t e r r u p t r e m a p t a b l e d e f a u l t ( I g o r M a m m e d o v ) [ 9 1 0 9 1 3 ] { C V E - 2 0 1 3 - 0 1 5 3 } \r b r > - [ x e n ] A M D , I O M M U : D i s a b l e I O M M U i f S A T A C o m b i n e d m o d e i s o n ( I g o r M a m m e d o v ) [ 9 1 0 9 1 3 ] { C V E - 2 0 1 3 - 0 1 5 3 } \r b r > - [ x e n ] A M D , I O M M U : O n c r e a t i n g e n t r y c l e a n u p i n r e m a p p i n g t a b l e s ( I g o r M a m m e d o v ) [ 9 1 0 9 1 3 ] { C V E - 2 0 1 3 - 0 1 5 3 } \r b r > - [ x e n ] A C P I : a c p i _ t a b l e _ p a r s e ( ) s h o u l d r e t u r n h a n d l e r ' s e r r c o d e ( I g o r M a m m e d o v ) [ 9 1 0 9 1 3 ] { C V E - 2 0 1 3 - 0 1 5 3 } \r b r > - [ x e n ] i n t r o d u c e x z a l l o c ( ) & C o ( I g o r M a m m e d o v ) [ 9 1 0 9 1 3 ] { C V E - 2 0 1 3 - 0 1 5 3 } \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 4 ] \r b r > - [ x 8 6 ] f p u : f i x C O N F I G _ P R E E M P T = y c o r r u p t i o n o f F P U s t a c k ( P r a r i t B h a r g a v a ) [ 7 3 1 5 3 1 ] \r b r > - [ i 3 8 6 ] a d d s l e a z y F P U o p t i m i z a t i o n ( P r a r i t B h a r g a v a ) [ 7 3 1 5 3 1 ] \r b r > - [ x 8 6 - 6 4 ] n o n l a z y ' s l e a z y ' f p u i m p l e m e n t a t i o n ( P r a r i t B h a r g a v a ) [ 7 3 1 5 3 1 ] \r b r > - [ n e t ] b e 2 n e t : f i x c a l l i n g _ _ v l a n _ p u t _ t a g ( ) a f t e r e t h _ t y p e _ t r a n s ( ) ( I v a n V e c e r a ) [ 9 1 6 6 4 0 ] \r b r > - [ n e t ] b e 2 n e t : i n c r e m e n t / d e c r e m e n t v l a n s _ a d d e d o n l y o n c e ( I v a n V e c e r a ) [ 9 2 2 2 2 3 ] \r b r > - [ n e t ] t g 3 : u s e P C I P M c o r e f u n c s n o t d i r e c t a c c e s s t o r e g i s t e r s ( I v a n V e c e r a ) [ 8 6 6 8 2 2 ] \r b r > - [ f s ] e x t 3 : f i x u p d a t e o f m t i m e a n d c t i m e o n r e n a m e ( C a r l o s M a i o l i n o ) [ 9 1 9 1 9 1 ] \r b r > - [ f s ] n f s : h a n d l e g e t a t t r f a i l u r e d u r i n g n f s v 4 o p e n ( D a v i d J e f f e r y ) [ 9 0 6 9 0 9 ] \r b r > - [ p c i ] r e a d - m o d i f y - w r i t e P C I e d e v c o n t r o l r e g w h e n i n i t i a t i n g F L R ( M y r o n S t o w e ) [ 8 5 4 0 0 1 ] \r b r > - [ f s ] e x t 3 : f i x w r o n g g f p t y p e u n d e r t r a n s a c t i o n ( L u k a s C z e r n e r ) [ 8 1 6 6 6 5 ] \r b r > - [ p c i ] i n t e l - i o m m u : P r e v d e v s w i t h R M R R s f r o m g o i n g i n S I D o m a i n ( T o n y C a m u s o ) [ 8 3 9 3 3 4 ] \r b r > - [ n e t ] t c p : f i x > 2 i w s e l e c t i o n ( D a n i e l B o r k m a n n ) [ 8 7 1 7 8 7 ] \r b r > - [ a t a ] s a t a _ s v w : c h e c k D M A s t a r t b i t b e f o r e r e s e t ( D a v i d M i l b u r n ) [ 7 5 4 3 1 1 ] \r b r > - [ s 3 9 0 ] q e t h : s e t n e w m a c e v e n i f o l d m a c i s g o n e ( H e n d r i k B r u e c k n e r ) [ 8 8 3 4 5 9 ] \r b r > - [ s 3 9 0 ] q e t h : f i x d e a d l o c k b e t w e e n r e c o v e r y a n d b o n d i n g d r i v e r ( H e n d r i k B r u e c k n e r ) [ 8 6 9 6 4 6 ] \r b r > - [ s 3 9 0 ] d a s d : c h e c k c o u n t a d d r e s s d u r i n g o n l i n e s e t t i n g ( H e n d r i k B r u e c k n e r ) [ 8 5 9 5 2 7 ] \r b r > - [ s 3 9 0 ] h u g e t l b : u s e d i r e c t T L B f l u s h i n g f o r h u g e t l b f s p a g e s ( H e n d r i k B r u e c k n e r ) [ 8 6 1 1 7 8 ] \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 3 ] \r b r > - [ v i r t ] x e n - n e t b a c k : b a c k p o r t s ( A n d r e w J o n e s ) [ 9 1 0 8 8 5 ] { C V E - 2 0 1 3 - 0 2 1 6 C V E - 2 0 1 3 - 0 2 1 7 } \r b r > - [ v i r t ] x e n - n e t b a c k : n e t i f _ s c h e d u l a b l e s h o u l d t a k e a n e t i f ( A n d r e w J o n e s ) [ 9 1 0 8 8 5 ] { C V E - 2 0 1 3 - 0 2 1 6 C V E - 2 0 1 3 - 0 2 1 7 } \r b r > - [ v i r t ] p c i b a c k : r a t e l i m i t e r r o r m e s s f r o m p c i b a c k _ e n a b l e _ m s i ( ) ( I g o r M a m m e d o v ) [ 9 1 0 8 7 7 ] { C V E - 2 0 1 3 - 0 2 3 1 } \r b r > - [ n e t ] b e 2 n e t : r e m o v e B U G _ O N ( ) i n b e _ m c c _ c o m p l _ i s _ n e w ( ) ( I v a n V e c e r a ) [ 9 0 7 5 2 4 ] \r b r > - [ n e t ] i p v 4 : U p d a t e M T U t o a l l r e l a t e d c a c h e e n t r i e s ( A m e r i g o W a n g ) [ 9 0 5 1 9 0 ] \r b r > - [ n e t ] a n n o t a t e r t _ h a s h _ c o d e ( ) u s e r s ( A m e r i g o W a n g ) [ 9 0 5 1 9 0 ] \r b r > - [ n e t ] x f r m _ u s e r : f i x i n f o l e a k i n c o p y _ t o _ u s e r _ s t a t e ( ) ( T h o m a s G r a f ) [ 9 2 2 4 2 7 ] { C V E - 2 0 1 2 - 6 5 3 7 } \r b r > - [ n e t ] x f r m _ u s e r : f i x i n f o l e a k i n c o p y _ t o _ u s e r _ p o l i c y ( ) ( T h o m a s G r a f ) [ 9 2 2 4 2 7 ] { C V E - 2 0 1 2 - 6 5 3 7 } \r b r > - [ n e t ] x f r m _ u s e r : f i x i n f o l e a k i n c o p y _ t o _ u s e r _ t m p l ( ) ( T h o m a s G r a f ) [ 9 2 2 4 2 7 ] { C V E - 2 0 1 2 - 6 5 3 7 } \r b r > - [ n e t ] a t m : f i x i n f o l e a k i n g e t s o c k o p t ( S O _ A T M P V C ) ( T h o m a s G r a f ) [ 9 2 2 3 8 5 ] { C V E - 2 0 1 2 - 6 5 4 6 } \r b r > - [ n e t ] a t m : f i x i n f o l e a k v i a g e t s o c k n a m e ( ) ( T h o m a s G r a f ) [ 9 2 2 3 8 5 ] { C V E - 2 0 1 2 - 6 5 4 6 } \r b r > - [ n e t ] t u n : f i x i o c t l ( ) b a s e d i n f o l e a k s ( T h o m a s G r a f ) [ 9 2 2 3 4 9 ] { C V E - 2 0 1 2 - 6 5 4 7 } \r b r > - [ n e t ] l l c , z e r o s o c k a d d r _ l l c s t r u c t ( T h o m a s G r a f ) [ 9 2 2 3 2 9 ] { C V E - 2 0 1 2 - 6 5 4 2 } \r b r > - [ n e t ] l l c : f i x i n f o l e a k v i a g e t s o c k n a m e ( ) ( T h o m a s G r a f ) [ 9 2 2 3 2 9 ] { C V E - 2 0 1 2 - 6 5 4 2 } \r b r > - [ n e t ] x f r m _ u s e r : r e t u r n e r r o r p o i n t e r i n s t e a d o f N U L L ( T h o m a s G r a f ) [ 9 1 9 3 8 7 ] { C V E - 2 0 1 3 - 1 8 2 6 } \r b r > - [ k e r n e l ] w a i t _ f o r _ h e l p e r : S I G C H L D f r o m u / s c a u s e u s e - a f t e r - f r e e ( F r a n t i s e k H r b a t a ) [ 8 5 8 7 5 3 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] F i x _ _ _ _ c a l l _ u s e r m o d e h e l p e r e r r s b e i n g s i l e n t l y i g n o r e d ( F r a n t i s e k H r b a t a ) [ 8 5 8 7 5 3 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] w a i t _ f o r _ h e l p e r : r e m o v e u n n e e d e d d o _ s i g a c t i o n ( ) ( F r a n t i s e k H r b a t a ) [ 8 5 8 7 5 3 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] k m o d : a v o i d d e a d l o c k f r o m r e c u r s i v e k m o d c a l l ( F r a n t i s e k H r b a t a ) [ 8 5 8 7 5 3 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ k e r n e l ] k m o d : m a k e r e q u e s t _ m o d u l e ( ) k i l l a b l e ( F r a n t i s e k H r b a t a ) [ 8 5 8 7 5 3 ] { C V E - 2 0 1 2 - 4 3 9 8 } \r b r > - [ n e t ] i x g b e v f : a l l o c a t e r o o m f o r m a i l b o x M S I - X i n t e r r u p t ' s n a m e ( L a s z l o E r s e k ) [ 8 6 2 8 6 2 ] \r b r > - [ f s ] k n f s d : a l l o w n f s d R E A D D I R t o r e t u r n 6 4 b i t c o o k i e s ( N i e l s d e V o s ) [ 9 1 8 9 5 2 ] \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 2 ] \r b r > - [ u t r a c e ] e n s u r e a r c h _ p t r a c e ( ) c a n n e v e r r a c e w i t h S I G K I L L ( O l e g N e s t e r o v ) [ 9 1 2 0 7 2 ] { C V E - 2 0 1 3 - 0 8 7 1 } \r b r > - [ x 8 6 ] m s r : A d d c a p a b i l i t i e s c h e c k ( N i k o l a P a j k o v s k y ) [ 9 0 8 6 9 7 ] { C V E - 2 0 1 3 - 0 2 6 8 } \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 1 ] \r b r > - [ m i s c ] t a i n t e d f l a g s , f i x b u f f e r s i z e ( P r a r i t B h a r g a v a ) [ 9 0 1 5 4 7 ] \r b r > - [ n e t ] b e 2 n e t : f i x u n c o n d i t i o n a l l y r e t u r n i n g I R Q _ H A N D L E D i n I N T x ( I v a n V e c e r a ) [ 8 7 8 3 1 6 ] \r b r > - [ n e t ] b e 2 n e t : f i x I N T x I S R f o r i n t e r r u p t b e h a v i o u r o n B E 2 ( I v a n V e c e r a ) [ 8 7 8 3 1 6 ] \r b r > - [ n e t ] b e 2 n e t : f i x a p o s s i b l e e v e n t s _ g e t ( ) r a c e o n B E 2 ( I v a n V e c e r a ) [ 8 7 8 3 1 6 ] \r b r > \r b r > [ 2 . 6 . 1 8 - 3 5 0 ] \r b r > - [ f i r m w a r e ] E x p a n d k e r n e l b o o t - t i m e s t o r a g e f o r D M I t a b l e s t r u c t s ( L e n n y S z u b o w i c z ) [ 8 6 2 8 6 5 ] \r b r > - [ f s ] u d f : F o r t i f y l o a d i n g o f s p a r i n g t a b l e ( N i k o l a P a j k o v s k y ) [ 8 4 3 1 4 1 ] { C V E - 2 0 1 2 - 3 4 0 0 } \r b r > - [ f s ] u d f : I m p r o v e t a b l e l e n g t h c h e c k t o a v o i d p o s s i b l e o v e r f l o w ( N i k o l a P a j k o v s k y ) [ 8 4 3 1 4 1 ] { C V E - 2 0 1 2 - 3 4 0 0 } \r b r > - [ f s ] u d f : A v o i d r u n a w a y l o o p w h e n p a r t i t i o n t a b l e i s c o r r u p t e d ( N i k o l a P a j k o v s k y ) [ 8 4 3 1 4 1 ] { C V E - 2 0 1 2 - 3 4 0 0 } \r b r > \r b r > [ 2 . 6 . 1 8 - 3 4 9 ] \r b r > - [ p c i ] i n t e l - i o m m u : r e d u c e m a x n u m o f d o m a i n s s u p p o r t e d ( D o n D u t i l e ) [ 8 8 5 1 2 5 ] \r b r > - [ f s ] g f s 2 : F i x l e a k o f c a c h e d d i r e c t o r y h a s h t a b l e ( S t e v e n W h i t e h o u s e ) [ 8 3 1 3 3 0 ] \r b r > - [ x 8 6 ] m m : r a n d o m i z e S H L I B _ B A S E ( P e t r M a t o u s e k ) [ 8 0 4 9 5 4 ] { C V E - 2 0 1 2 - 1 5 6 8 } \r b r > - [ n e t ] b e 2 n e t : c r e a t e R S S r i n g s e v e n i n m u l t i - c h a n n e l c o n f i g s ( I v a n V e c e r a ) [ 8 7 8 2 0 9 ] \r b r > - [ n e t ] t g 3 : A v o i d d m a r e a d e r r o r ( J o h n F e e n e y ) [ 8 7 7 4 7 4 ] \r b r > - [ m i s c ] F i x u n s u p p o r t e d h a r d w a r e m e s s a g e ( P r a r i t B h a r g a v a ) [ 8 7 6 5 8 7 ] \r b r > - [ n e t ] i p v 6 : d i s c a r d o v e r l a p p i n g f r a g m e n t ( J i r i P i r k o ) [ 8 7 4 8 3 8 ] { C V E - 2 0 1 2 - 4 4 4 4 } \r b r > - [ u s b ] F i x s e r i a l p o r t r e f e r e n c e c o u n t i n g o n h o t p l u g r e m o v e ( D o n Z i c k u s ) [ 8 4 5 4 4 7 ] \r b r > - [ n e t ] b r i d g e : e x p o r t i t s p r e s e n c e a n d f i x b o n d i n g i g m p r e p o r t i n g ( V e a c e s l a v F a l i c o ) [ 8 4 3 4 7 3 ] \r b r > - [ f s ] n f s : m o v e w a i t f o r s e r v e r - > a c t i v e f r o m p u t _ s u p e r t o k i l l _ s b ( J e f f L a y t o n ) [ 8 3 9 8 3 9 ] \r b r > - [ s c s i ] l i b f c : f i x i n d e f i n i t e r p o r t r e s t a r t ( N e i l H o r m a n ) [ 5 9 5 1 8 4 ] \r b r > - [ s c s i ] l i b f c : R e t r y a r e j e c t e d P R L I r e q u e s t ( N e i l H o r m a n ) [ 5 9 5 1 8 4 ] \r b r > - [ s c s i ] l i b f c : F i x r e m o t e p o r t r e s t a r t p r o b l e m ( N e i l H o r m a n ) [ 5 9 5 1 8 4 ] \r b r > - [ x e n ] m e m o p : l i m i t g u e s t s p e c i f i e d e x t e n t o r d e r ( L a s z l o E r s e k ) [ 8 7 8 4 5 0 ] { C V E - 2 0 1 2 - 5 5 1 5 } \r b r > - [ x e n ] g e t b o t t o m o f E B D A f r o m t h e m u l t i b o o t d a t a s t r u c t u r e ( P a o l o B o n z i n i ) [ 8 8 1 8 8 5 ] \r b r > / p > \n \n \n b r > h 2 > R e l a t e d C V E s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 2 - 4 3 9 8 . h t m l \" > C V E - 2 0 1 2 - 4 3 9 8 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n b r > h 2 > U p d a t e d P a c k a g e s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r s t y l e = \" c o l o r : # F F 0 0 0 0 ; \" > t d > b > R e l e a s e / A r c h i t e c t u r e / b > t d > b > F i l e n a m e / b > / t d > t d > b > M D 5 s u m / b > / t d > t d > b > S u p e r s e d e d B y A d v i s o r y / b > / t d > / t r > \n t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 5 ( i 3 8 6 ) / t d > t d > k e r n e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . s r c . r p m / t d > t d > 0 5 f 1 0 a 5 d c 1 6 e a 6 e 0 7 3 3 8 0 7 a c 6 9 7 8 3 9 f e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 1 . 4 . 1 0 - 1 . e l 5 . s r c . r p m / t d > t d > 4 9 a 6 c e 2 e a 3 a 1 3 c 1 0 5 a 1 1 9 6 2 2 4 a 0 0 e 5 2 f / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . s r c . r p m / t d > t d > 5 0 5 2 4 7 2 0 3 1 0 3 b b 1 6 1 a b 5 3 e 3 c 8 e a e c 1 0 3 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 6 8 6 . r p m / t d > t d > b c 4 c f b 8 5 c b 3 e 4 7 a 7 4 a 8 6 9 b 8 6 9 8 c d d 2 6 c / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - P A E - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 2 d c f 0 1 3 3 2 2 e d 6 3 6 1 e b 3 b 7 2 f 2 9 c 7 2 6 e f 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - P A E - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 6 0 6 6 8 c c 7 1 5 4 f 7 f d 9 1 4 c f c 2 6 b 0 e 7 3 2 d d a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 6 9 0 b 8 d 1 a 4 e a f 1 c c 4 6 b b 7 f 2 a c 2 6 0 b 9 c 1 9 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 7 5 5 e 4 d 4 c 0 5 9 b b e 3 c 5 a 8 c f 6 0 1 b d d e 0 c d f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 6 8 6 . r p m / t d > t d > a 1 e e 8 e 5 f 6 9 1 e 0 f 9 3 a a 3 4 9 9 e 6 3 0 5 4 6 b f 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 1 8 - 3 7 1 . e l 5 . n o a r c h . r p m / t d > t d > a a 1 7 0 3 0 a b 5 5 2 a d b b 1 3 1 9 5 0 f 9 e 3 d 1 8 e 6 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 3 8 6 . r p m / t d > t d > 4 a f 3 4 7 c 0 7 e 0 5 7 a 5 1 6 2 b 6 0 3 c f e 4 f 0 4 6 a 6 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 0 e 2 f 5 0 a b 2 8 6 3 c c 3 5 7 7 0 9 3 4 7 a 9 a 5 8 e 7 b a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 6 0 a 7 b 3 a 1 1 f 8 4 1 2 4 9 b 0 5 2 9 d f 4 7 9 a 3 3 4 4 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 1 . 4 . 1 0 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 6 d 0 e 4 4 f 3 8 b 8 7 4 9 4 e 6 0 c 7 e c a a 3 d f 1 0 0 b d / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 P A E - 1 . 4 . 1 0 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 8 a e 0 3 d 1 c 5 8 7 b 3 6 5 7 d 6 a d d b 9 0 0 3 8 c 5 6 4 4 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 d e b u g - 1 . 4 . 1 0 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 5 8 6 9 b a c e 1 6 d 3 b b 7 c c e f 8 b 5 5 e 8 8 1 e 0 0 6 c / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 x e n - 1 . 4 . 1 0 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 2 b a b 6 5 1 4 4 5 d 5 d 9 1 b 5 0 6 e b 3 1 0 3 e 6 8 2 6 6 9 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > e 8 c 6 b 7 3 e 2 8 4 8 4 5 6 8 7 5 d 4 c 2 c 6 2 7 a c 3 7 8 3 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 P A E - 2 . 0 . 5 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > f 4 c 4 e 7 1 e 5 2 3 c 4 f 4 9 1 1 b b 8 5 7 7 8 7 3 8 8 2 d 4 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 d e b u g - 2 . 0 . 5 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 8 e d 0 2 c c 1 2 9 6 b c 6 5 6 8 7 c a e f e 0 a b 7 b b 0 2 d / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 x e n - 2 . 0 . 5 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 7 9 e d 3 a 9 3 9 a 0 4 4 4 f 3 8 3 5 d 2 8 f 6 d 5 3 1 6 2 f 2 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 5 ( i a 6 4 ) / t d > t d > k e r n e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . s r c . r p m / t d > t d > 0 5 f 1 0 a 5 d c 1 6 e a 6 e 0 7 3 3 8 0 7 a c 6 9 7 8 3 9 f e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 1 . 4 . 1 0 - 1 . e l 5 . s r c . r p m / t d > t d > 4 9 a 6 c e 2 e a 3 a 1 3 c 1 0 5 a 1 1 9 6 2 2 4 a 0 0 e 5 2 f / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . s r c . r p m / t d > t d > 5 0 5 2 4 7 2 0 3 1 0 3 b b 1 6 1 a b 5 3 e 3 c 8 e a e c 1 0 3 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i a 6 4 . r p m / t d > t d > 1 0 b b f 3 a 1 8 a e 0 e d 7 7 0 9 9 0 8 2 d 7 c f 9 6 b 4 6 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i a 6 4 . r p m / t d > t d > e a d d 9 c b 3 3 3 6 3 0 5 2 2 4 7 0 9 a e 1 1 e 7 5 d d c 1 a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i a 6 4 . r p m / t d > t d > b 6 1 c d 8 a 4 6 8 0 9 2 e e d 8 a 2 c b f 5 3 5 c 2 a 5 1 0 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i a 6 4 . r p m / t d > t d > 5 e 9 e 8 b d d 2 7 c 7 5 8 8 c 7 9 e 8 e e d 6 6 f 8 8 b 2 d d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 1 8 - 3 7 1 . e l 5 . n o a r c h . r p m / t d > t d > a a 1 7 0 3 0 a b 5 5 2 a d b b 1 3 1 9 5 0 f 9 e 3 d 1 8 e 6 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i a 6 4 . r p m / t d > t d > 5 9 1 9 9 9 f 0 4 7 0 4 d b 8 6 7 c 8 9 8 0 0 8 a a 8 6 c d 4 5 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i a 6 4 . r p m / t d > t d > 4 a 6 c 8 4 2 c 2 9 3 d d 9 f f 7 4 f 7 5 d c 1 e 9 6 f 0 a f f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . i a 6 4 . r p m / t d > t d > 9 f 5 a c c 5 4 8 f b e a 7 c b 9 6 e a 9 4 4 1 7 1 6 f f 9 7 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 1 . 4 . 1 0 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > d f 5 d d a c e b c 9 2 0 e e 8 0 1 5 1 8 7 a 1 4 3 1 6 5 1 3 8 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 d e b u g - 1 . 4 . 1 0 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > f 7 2 c 2 3 c e d 3 b c d f 6 9 0 2 7 0 5 5 0 6 7 4 f 8 b d c 8 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 x e n - 1 . 4 . 1 0 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > 1 e e d 8 b 3 1 7 e 4 f f f 7 3 8 8 0 c 8 0 6 8 d 6 e 3 8 d f 0 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > 0 6 c 1 6 8 3 e 8 c f 9 8 7 2 2 8 d e e c 8 3 6 1 0 d b 1 3 d 6 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 d e b u g - 2 . 0 . 5 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > d d 0 f 7 c 0 7 4 4 9 9 f 1 0 7 7 7 3 7 6 9 b e 8 7 b 6 6 1 5 7 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 x e n - 2 . 0 . 5 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > e 0 0 1 1 b f 1 d c 3 8 0 d 3 8 7 a 7 4 5 b 5 d 6 e e 2 6 4 d 2 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 5 ( x 8 6 _ 6 4 ) / t d > t d > k e r n e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . s r c . r p m / t d > t d > 0 5 f 1 0 a 5 d c 1 6 e a 6 e 0 7 3 3 8 0 7 a c 6 9 7 8 3 9 f e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 1 . 4 . 1 0 - 1 . e l 5 . s r c . r p m / t d > t d > 4 9 a 6 c e 2 e a 3 a 1 3 c 1 0 5 a 1 1 9 6 2 2 4 a 0 0 e 5 2 f / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . s r c . r p m / t d > t d > 5 0 5 2 4 7 2 0 3 1 0 3 b b 1 6 1 a b 5 3 e 3 c 8 e a e c 1 0 3 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 7 7 a 2 e 6 4 6 2 4 2 f 1 4 4 6 9 9 5 3 5 1 8 4 1 d 1 a e 1 b d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 1 8 - 3 7 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > a 1 4 b a b d 4 f c 8 6 9 7 0 d 5 a 8 3 3 b 7 e b 2 8 a 8 2 8 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > e e e 1 b f 9 5 b 0 b 9 1 b 2 7 c f 4 5 f f 2 b 7 e f d 3 a f b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > a 9 e 9 9 3 0 b 2 0 3 4 5 1 8 3 d 5 b e 6 f 2 f 0 6 4 b 0 d a e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 1 8 - 3 7 1 . e l 5 . n o a r c h . r p m / t d > t d > a a 1 7 0 3 0 a b 5 5 2 a d b b 1 3 1 9 5 0 f 9 e 3 d 1 8 e 6 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 1 8 - 3 7 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > e 0 9 0 d 7 b 9 e a 7 c e 4 3 a f 9 d f 7 c 3 7 e 8 c 2 4 a 6 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - 2 . 6 . 1 8 - 3 7 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > b 0 4 9 8 6 1 8 9 4 9 4 5 f 3 e e 3 c 8 7 a 1 1 4 d a 5 a 6 8 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - d e v e l - 2 . 6 . 1 8 - 3 7 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > f 2 0 4 f 5 8 8 d d 6 9 7 3 9 c c e 7 6 3 a 2 5 a 7 8 f 0 e 8 5 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 1 . 4 . 1 0 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > d 9 7 1 6 1 b 5 1 2 0 4 0 e c 3 a 8 6 1 d 5 0 d 2 a d b e 2 b 6 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 d e b u g - 1 . 4 . 1 0 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 2 8 6 d 7 c d f 7 8 d 1 e e 2 f d 8 8 e a 7 e 1 d 9 d f 8 9 6 5 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 3 7 1 . e l 5 x e n - 1 . 4 . 1 0 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > b 5 8 a a e f e f 1 5 9 6 f a 0 e 2 4 4 c 9 7 2 f 9 5 d d f b 4 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 7 6 0 c 8 5 5 7 c c f 2 9 0 3 4 9 c c 1 8 8 a 9 f a 0 2 4 8 c a / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 d e b u g - 2 . 0 . 5 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 1 9 b 2 7 c f d 5 6 6 9 1 4 a c 8 6 f 1 7 d a 1 8 c 7 f d 7 3 1 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 3 7 1 . e l 5 x e n - 2 . 0 . 5 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > c 2 c d 8 3 0 c 4 a 8 b 6 0 6 8 5 1 a e 6 d 2 d 2 8 0 a 5 2 e 6 / t d > t d > a h r e f = # > - / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n \n b r > b r > \n b r > p > \n T h i s p a g e i s g e n e r a t e d a u t o m a t i c a l l y a n d h a s n o t b e e n c h e c k e d f o r e r r o r s o r o m i s s i o n s . F o r c l a r i f i c a t i o n \n o r c o r r e c t i o n s p l e a s e c o n t a c t t h e a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / \" > O r a c l e L i n u x U L N t e a m / a > / p > \n \n \n \n / d i v > \n ! - - \n / d i v > \n - - > \n / d i v > \n / d i v > \n \n \n d i v i d = \" m c 1 6 \" c l a s s = \" m c 1 6 v 0 \" > \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > T e c h n i c a l i n f o r m a t i o n / h 2 > \n u l > \n l i > a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / h a r d w a r e - c e r t i f i c a t i o n s \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x C e r t i f i e d H a r d w a r e / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / l i b r a r y / e l s p - l i f e t i m e - 0 6 9 3 3 8 . p d f \" > O r a c l e L i n u x S u p p o r t e d R e l e a s e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > O r a c l e L i n u x S u p p o r t / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / t e c h n o l o g i e s / l i n u x / O r a c l e L i n u x S u p p o r t / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x S u p p o r t / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / p r e m i e r / s e r v e r s - s t o r a g e / o v e r v i e w / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e P r e m i e r S u p p o r t f o r S y s t e m s / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / a d v a n c e d - c u s t o m e r - s e r v i c e s / o v e r v i e w / \" > A d v a n c e d C u s t o m e r S e r v i c e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 2 \" > \n h 2 > C o n n e c t / h 2 > \n u l > \n l i c l a s s = \" f b i c o n \" > a h r e f = \" h t t p : / / w w w . f a c e b o o k . c o m / o r a c l e l i n u x \" t i t l e = \" F a c e b o o k \" n a m e = \" F a c e b o o k \" t a r g e t = \" _ b l a n k \" i d = \" F a c e b o o k \" > F a c e b o o k / a > / l i > \n l i c l a s s = \" t w i c o n \" > a h r e f = \" h t t p : / / w w w . t w i t t e r . c o m / O r a c l e L i n u x \" t i t l e = \" T w i t t e r \" n a m e = \" T w i t t e r \" t a r g e t = \" _ b l a n k \" i d = \" T w i t t e r \" > T w i t t e r / a > / l i > \n l i c l a s s = \" i n i c o n \" > a h r e f = \" h t t p : / / w w w . l i n k e d i n . c o m / g r o u p s ? g i d = 1 2 0 2 3 8 \" t i t l e = \" L i n k e d I n \" n a m e = \" L i n k e d I n \" t a r g e t = \" _ b l a n k \" i d = \" L i n k e d I n \" > L i n k e d I n / a > / l i > \n l i c l a s s = \" y t i c o n \" > a h r e f = \" h t t p : / / w w w . y o u t u b e . c o m / o r a c l e l i n u x c h a n n e l \" t i t l e = \" Y o u T u b e \" n a m e = \" Y o u T u b e \" t a r g e t = \" _ b l a n k \" i d = \" Y o u T u b e \" > Y o u T u b e / a > / l i > \n l i c l a s s = \" b l o g i c o n \" > a h r e f = \" h t t p : / / b l o g s . o r a c l e . c o m / l i n u x \" t i t l e = \" B l o g \" n a m e = \" B l o g \" > B l o g / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 3 \" > \n h 2 > C o n t a c t U s / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / c o r p o r a t e / c o n t a c t / g l o b a l - 0 7 0 5 1 1 . h t m l \" > G l o b a l c o n t a c t s / a > / l i > \n l i > O r a c l e 1 - 8 0 0 - 6 3 3 - 0 6 9 1 / l i > \n / u l > \n / d i v > \n / d i v > \n / d i v > \n \n d i v i d = \" m c 0 4 \" c l a s s = \" m c 0 4 v 1 \" > \n d i v c l a s s = \" m c 0 4 w 1 \" > \n a h r e f = \" h t t p : / / o r a c l e . c o m \" > i m g s r c = \" / / w w w . o r a c l e i m g . c o m / a s s e t s / m c 0 4 - f o o t e r - l o g o . p n g \" b o r d e r = \" 0 \" a l t = \" s o f t w a r e . h a r d w a r e . c o m p l e t e \" / > / a > \n / d i v > \n \n d i v c l a s s = \" m c 0 4 w 2 \" > \n a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / s u b s c r i b e / i n d e x . h t m l \" > S u b s c r i b e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / e m p l o y m e n t / i n d e x . h t m l \" > C a r e e r s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / c o n t a c t / i n d e x . h t m l \" > C o n t a c t U s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / c o p y r i g h t . h t m l \" > L e g a l N o t i c e s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / t e r m s . h t m l \" > T e r m s o f U s e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / p r i v a c y . h t m l \" > Y o u r P r i v a c y R i g h t s / a > \n / d i v > \n / d i v > \n / d i v > \n / b o d y > \n / h t m l > \n ", "edition": 4, "reporter": "Oracle", "published": "2013-10-02T00:00:00", "title": "Oracle linux 5 kernel update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2234", "CVE-2012-6546", "CVE-2013-0871", "CVE-2012-6537", "CVE-2013-2141", "CVE-2012-5515", "CVE-2013-2206", "CVE-2013-0268", "CVE-2012-4444", "CVE-2013-3231", "CVE-2012-3511", "CVE-2013-1826", "CVE-2013-3224", "CVE-2012-6545", "CVE-2013-2147", "CVE-2013-4162", "CVE-2012-6542", "CVE-2013-0153", "CVE-2012-1568", "CVE-2013-0217", "CVE-2013-1929", "CVE-2012-6547", "CVE-2013-2232", "CVE-2012-6544", "CVE-2013-0231", "CVE-2013-3222", "CVE-2012-4398", "CVE-2013-0914", "CVE-2013-2237", "CVE-2013-0216", "CVE-2013-2224", "CVE-2012-3400", "CVE-2013-3235", "CVE-2013-2164"], "modified": "2013-10-02T00:00:00", "id": "ELSA-2013-1348", "href": "http://linux.oracle.com/errata/ELSA-2013-1348.html", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:43:08", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageFilename": "perf-2.6.32-358.6.1.el6.i686.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-358.6.1.el6.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageFilename": "perf-2.6.32-358.6.1.el6.x86_64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageFilename": "python-perf-2.6.32-358.6.1.el6.i686.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "src", "packageFilename": "kernel-2.6.32-358.6.1.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "src", "packageFilename": "kernel-2.6.32-358.6.1.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-358.6.1.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-358.6.1.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-358.6.1.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageFilename": "kernel-2.6.32-358.6.1.el6.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageFilename": "python-perf-2.6.32-358.6.1.el6.x86_64.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-358.6.1.el6.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-358.6.1.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-358.6.1.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-358.6.1.el6.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-358.6.1.el6.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageFilename": "kernel-devel-2.6.32-358.6.1.el6.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageFilename": "kernel-debug-2.6.32-358.6.1.el6.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageFilename": "kernel-2.6.32-358.6.1.el6.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageFilename": "kernel-headers-2.6.32-358.6.1.el6.i686.rpm", "packageName": "kernel-headers", "operator": "lt"}], "description": "[2.6.32-358.6.1]\n- [virt] kvm: accept unaligned MSR_KVM_SYSTEM_TIME writes (Petr Matousek) [917020 917021] {CVE-2013-1796}\n- [char] tty: hold lock across tty buffer finding and buffer filling (Prarit Bhargava) [928686 901780]\n- [net] tcp: fix for zero packets_in_flight was too broad (Thomas Graf) [927309 920794]\n- [net] tcp: frto should not set snd_cwnd to 0 (Thomas Graf) [927309 920794]\n- [net] tcp: fix an infinite loop in tcp_slow_start() (Thomas Graf) [927309 920794]\n- [net] tcp: fix ABC in tcp_slow_start() (Thomas Graf) [927309 920794]\n- [netdrv] ehea: avoid accessing a NULL vgrp (Steve Best) [921535 911359]\n- [net] sunrpc: Get rid of the redundant xprt->shutdown bit field (J. Bruce Fields) [915579 893584]\n- [virt] kvm: do not #GP on unaligned MSR_KVM_SYSTEM_TIME write (Gleb Natapov) [917020 917021] {CVE-2013-1796}\n- [drm] i915: bounds check execbuffer relocation count (Nikola Pajkovsky) [920523 920525] {CVE-2013-0913}\n- [x86] irq: add quirk for broken interrupt remapping on 55XX chipsets (Neil Horman) [911267 887006]\n- [kvm] Convert MSR_KVM_SYSTEM_TIME to use gfn_to_hva_cache functions (Gleb Natapov) [917024 917025] {CVE-2013-1797}\n- [kvm] Fix for buffer overflow in handling of MSR_KVM_SYSTEM_TIME (Gleb Natapov) [917020 917021] {CVE-2013-1796}\n- [kvm] Fix bounds checking in ioapic indirect register reads (Gleb Natapov) [917030 917032] {CVE-2013-1798}\n- [kvm] x86: release kvmclock page on reset (Gleb Natapov) [917024 917025] {CVE-2013-1797}\n- [security] keys: Fix race with concurrent install_user_keyrings() (David Howells) [916681 913258] {CVE-2013-1792}\n- [virt] hv_balloon: Make adjustments to the pressure report (Jason Wang) [909156 902232]\n[2.6.32-358.5.1]\n- [fs] xfs: use maximum schedule timeout when ail is empty (Brian Foster) [921958 883905]\n- [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922428 922429] {CVE-2012-6537}\n- [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922428 922429] {CVE-2012-6537}\n- [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922428 922429] {CVE-2012-6537}\n- [net] xfrm_user: fix info leak in copy_to_user_auth() (Thomas Graf) [922428 922429] {CVE-2012-6537}\n- [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922386 922387] {CVE-2012-6546}\n- [net] atm: fix info leak via getsockname() (Thomas Graf) [922386 922387] {CVE-2012-6546}\n- [fs] nls: improve UTF8 -> UTF16 string conversion routine (Nikola Pajkovsky) [916118 916119] {CVE-2013-1773}\n- [fs] fat: Fix stat->f_namelen (Nikola Pajkovsky) [916118 916119] {CVE-2013-1773}\n- [netdrv] tun: fix ioctl() based info leaks (Thomas Graf) [922350 922351] {CVE-2012-6547}\n- [virt] x86: Add a check to catch Xen emulation of Hyper-V (Andrew Jones) [923204 918239]\n- [fs] cifs: fix expand_dfs_referral (Sachin Prabhu) [923098 902492]\n- [fs] cifs: factor smb_vol allocation out of cifs_setup_volume_info (Sachin Prabhu) [923098 902492]\n- [fs] cifs: have cifs_cleanup_volume_info not take a double pointer (Sachin Prabhu) [923098 902492]\n- [fs] nfs: Dont allow NFS silly-renamed files to be deleted, no signal (Dave Wysochanski) [920266 905095]\n[2.6.32-358.4.1]\n- [fs] NLM: Ensure that we resend all pending blocking locks after a reclaim (Steve Dickson) [921150 913704]\n- [fs] xfs: remove log force from xfs_buf_cond_lock() (Brian Foster) [921961 896224]\n- [fs] xfs: recheck buffer pinned status after push trylock failure (Brian Foster) [921961 896224]\n- [fs] nfs: Ensure that we check lock exclusive/shared type against open modes (Dave Wysochanski) [920268 916324]\n- [powerpc] pseries: Fix partition migration hang in stop_topology_update (Steve Best) [921963 910597]\n- [infiniband] qib: correction for faulty sparse warning correction (Jay Fenlason) [922154 901701]\n- [usb] io_ti: Fix NULL dereference in chase_port() (Nikola Pajkovsky) [916198 916200] {CVE-2013-1774}\n- [net] bluetooth: Fix incorrect strncpy() in hidp_setup_hid() (Nikola Pajkovsky) [914690 914691] {CVE-2013-0349}\n- [char] tty: set_termios/set_termiox should not return -EINTR (Oleg Nesterov) [921145 904907]\n- [netdrv] ehea: fix VLAN support (Steve Best) [921535 911359]\n- [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919388 919389] {CVE-2013-1826}\n- [net] dccp: check ccid before NULL poiter dereference (Weiping Pan) [919187 919188] {CVE-2013-1827}\n- [mm] tmpfs: fix use-after-free of mempolicy object (Nikola Pajkovsky) [915714 915715] {CVE-2013-1767}\n- [fs] fuse: set page_descs length in fuse_buffered_write() (Brian Foster) [916957 915135]\n- [fs] vfs: fix pointer dereference validation in d_validate (Carlos Maiolino) [915583 876600]\n- [fs] cifs: after upcalling for krb5 creds, invalidate key rather than revoking it (Niels de Vos) [912452 885899]\n- [fs] cifs: tmp_key_invalidate() should not set key->expiry to 0 (Niels de Vos) [912452 885899]\n- [block] disable discard request merge temporarily (Mike Snitzer) [911475 907844]\n[2.6.32-358.3.1]\n- [net] netfilter: improve out-of-sync situation in TCP tracking (Flavio Leitner) [917690 629857]", "edition": 3, "reporter": "Oracle", "published": "2013-04-23T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6546", "CVE-2013-1797", "CVE-2013-1767", "CVE-2012-6537", "CVE-2013-1827", "CVE-2013-1792", "CVE-2013-1826", "CVE-2013-0349", "CVE-2013-1774", "CVE-2012-6547", "CVE-2013-1773", "CVE-2013-0913", "CVE-2013-1796", "CVE-2013-1798"], "modified": "2013-04-23T00:00:00", "id": "ELSA-2013-0744", "href": "http://linux.oracle.com/errata/ELSA-2013-0744.html", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:47:01", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.33.3.el5uek-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-400.33.3.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-400.33.3.el6uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-400.33.3.el5uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.33.3.el5uek-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-headers-2.6.32-400.33.3.el6uek.x86_64.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.33.3.el6uekdebug-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.33.3.el6uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.33.3.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-400.33.3.el6uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.33.3.el5uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "i686", "packageFilename": "kernel-uek-devel-2.6.32-400.33.3.el5uek.i686.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.33.3.el6uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.33.3.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.33.3.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.33.3.el5uek-1.5.7-2.src.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.33.3.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.33.3.el5uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.33.3.el5uek-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.33.3.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-400.33.3.el6uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.33.3.el6uek-1.5.7-0.1.i686.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.33.3.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.33.3.el5uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-2.6.32-400.33.3.el5uek.x86_64.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "i686", "packageFilename": "kernel-uek-headers-2.6.32-400.33.3.el5uek.i686.rpm", "packageName": "kernel-uek-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.33.3.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.33.3.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.33.3.el5uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.33.3.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.33.3.el5uek-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.33.3.el5uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-400.33.3.el5uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-2.6.32-400.33.3.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.33.3.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.33.3.el5uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "i686", "packageFilename": "mlnx_en-2.6.32-400.33.3.el5uekdebug-1.5.7-2.i686.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.33.3.el5uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.33.3.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-400.33.3.el5uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.33.3.el5uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.33.3.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.33.3.el6uekdebug-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-400.33.3.el6uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.33.3.el6uek.x86_64.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-2.6.32-400.33.3.el6uek.i686.rpm", "packageName": "kernel-uek-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.33.3.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-doc-2.6.32-400.33.3.el6uek.noarch.rpm", "packageName": "kernel-uek-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.33.3.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "src", "packageFilename": "kernel-uek-2.6.32-400.33.3.el6uek.src.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.33.3.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.33.3.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "src", "packageFilename": "ofa-2.6.32-400.33.3.el6uek-1.5.1-4.0.58.src.rpm", "packageName": "ofa-2.6.32-400.33.3.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.33.3.el6uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.33.3.el6uek-1.5.7-0.1.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "i686", "packageFilename": "ofa-2.6.32-400.33.3.el6uekdebug-1.5.1-4.0.58.i686.rpm", "packageName": "ofa-2.6.32-400.33.3.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "i686", "packageFilename": "kernel-uek-2.6.32-400.33.3.el5uek.i686.rpm", "packageName": "kernel-uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.33.3.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.7-0.1", "arch": "src", "packageFilename": "mlnx_en-2.6.32-400.33.3.el6uek-1.5.7-0.1.src.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el6uek", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.5.7-2", "arch": "x86_64", "packageFilename": "mlnx_en-2.6.32-400.33.3.el5uekdebug-1.5.7-2.x86_64.rpm", "packageName": "mlnx_en-2.6.32-400.33.3.el5uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.32-400.33.3.el5uek", "arch": "i686", "packageFilename": "kernel-uek-debug-devel-2.6.32-400.33.3.el5uek.i686.rpm", "packageName": "kernel-uek-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.5.1-4.0.58", "arch": "x86_64", "packageFilename": "ofa-2.6.32-400.33.3.el6uekdebug-1.5.1-4.0.58.x86_64.rpm", "packageName": "ofa-2.6.32-400.33.3.el6uekdebug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "x86_64", "packageFilename": "kernel-uek-devel-2.6.32-400.33.3.el6uek.x86_64.rpm", "packageName": "kernel-uek-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.33.3.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-400.33.3.el6uek", "arch": "noarch", "packageFilename": "kernel-uek-firmware-2.6.32-400.33.3.el6uek.noarch.rpm", "packageName": "kernel-uek-firmware", "operator": "lt"}], "description": "kernel-uek\n[2.6.32-400.33.3uek]\n- af_key: fix info leaks in notify messages (Mathias Krause) [Orabug: 17837974] {CVE-2013-2234}\n- drivers/cdrom/cdrom.c: use kzalloc() for failing hardware (Jonathan Salwan) [Orabug: 17837971] {CVE-2013-2164}\n- fs/compat_ioctl.c: VIDEO_SET_SPU_PALETTE missing error check (Kees Cook) [Orabug: 17837966] {CVE-2013-1928}\n- Bluetooth: RFCOMM - Fix info leak in ioctl(RFCOMMGETDEVLIST) (Mathias Krause) [Orabug: 17837959] {CVE-2012-6545}\n- Bluetooth: RFCOMM - Fix info leak via getsockname() (Mathias Krause) [Orabug: 17838023] {CVE-2012-6545}\n- llc: Fix missing msg_namelen update in llc_ui_recvmsg() (Mathias Krause) [Orabug: 17837945] {CVE-2013-3231}\n- HID: pantherlord: validate output report details (Kees Cook) [Orabug: 17837942] {CVE-2013-2892}\n- HID: zeroplus: validate output report details (Kees Cook) [Orabug: 17837936] {CVE-2013-2889}\n- HID: provide a helper for validating hid reports (Kees Cook) [Orabug: 17837936] \n- NFSv4: Check for buffer length in __nfs4_get_acl_uncached (Sven Wegener) [Orabug: 17837931] {CVE-2013-4591}\n- ansi_cprng: Fix off by one error in non-block size request (Neil Horman) [Orabug: 17837999] {CVE-2013-4345}\n- HID: validate HID report id size (Kees Cook) [Orabug: 17837925] {CVE-2013-2888}\n- ipv6: remove max_addresses check from ipv6_create_tempaddr (Hannes Frederic Sowa) [Orabug: 17837923] {CVE-2013-0343}", "edition": 3, "reporter": "Oracle", "published": "2013-11-28T00:00:00", "title": "Unbreakable Enterprise Kernel security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2234", "CVE-2013-4345", "CVE-2013-3231", "CVE-2013-2892", "CVE-2012-6545", "CVE-2013-0343", "CVE-2013-1928", "CVE-2013-2888", "CVE-2013-2164", "CVE-2013-2889", "CVE-2013-4591"], "modified": "2013-11-28T00:00:00", "id": "ELSA-2013-2585", "href": "http://linux.oracle.com/errata/ELSA-2013-2585.html", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:38:51", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "perf-2.6.32-431.el6.x86_64.rpm", "packageName": "perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-firmware-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-firmware", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-doc-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-debug-2.6.32-431.el6.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-headers-2.6.32-431.el6.i686.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "src", "packageFilename": "kernel-2.6.32-431.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "src", "packageFilename": "kernel-2.6.32-431.el6.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-devel-2.6.32-431.el6.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "python-perf-2.6.32-431.el6.x86_64.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-2.6.32-431.el6.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-abi-whitelists-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-abi-whitelists", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageFilename": "kernel-abi-whitelists-2.6.32-431.el6.noarch.rpm", "packageName": "kernel-abi-whitelists", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "python-perf-2.6.32-431.el6.i686.rpm", "packageName": "python-perf", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageFilename": "perf-2.6.32-431.el6.i686.rpm", "packageName": "perf", "operator": "lt"}], "description": "[2.6.32-431] \r\n- [md] Disabling of TRIM on RAID5 for RHEL6.5 was too aggressive (Jes Sorensen) [1028426] \r\n \n[2.6.32-430] \r\n- [x86] Revert 'efi: be more paranoid about available space when creating variables' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efivars: firmware bug workarounds should be in platform code' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Export efi_query_variable_store() for efivars.ko' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Check max_size only if it is non-zero' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Distinguish between 'remaining space' and actually used space' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Implement efi_no_storage_paranoia parameter' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'Modify UEFI anti-bricking code' (Rafael Aquini) [1012370 1023173] \r\n- [x86] Revert 'efi: Fix dummy variable buffer allocation' (Rafael Aquini) [1012370 1023173] \r\n \n[2.6.32-429] \r\n- [fs] revert xfs: prevent deadlock trying to cover an active log (Eric Sandeen) [1014867] \r\n \n[2.6.32-428] \r\n- [fs] Revert 'vfs: allow umount to handle mountpoints without revalidating them' (Rafael Aquini) [1024607] \r\n- [fs] Revert 'vfs: massage umount_lookup_last() a bit to reduce nesting' (Rafael Aquini) [1024607] \r\n- [fs] Revert 'vfs: rename user_path_umountat() to user_path_mountpoint_at()' (Rafael Aquini) [1024607] \r\n- [fs] Revert 'vfs: introduce kern_path_mountpoint()' (Rafael Aquini) [1024607] \r\n- [fs] Revert 'autofs4: fix device ioctl mount lookup' (Rafael Aquini) [1024607] \r\n \n[2.6.32-427] \r\n- [tools] perf: Add ref-cycles into array of tested events (Jiri Olsa) [968806] \r\n- [pci] Revert 'make SRIOV resources optional' (Myron Stowe) [1022270] \r\n- [pci] Revert 'ability to relocate assigned pci-resources' (Myron Stowe) [1022270] \r\n- [pci] Revert 'honor child buses add_size in hot plug configuration' (Myron Stowe) [1022270] \r\n- [pci] Revert 'make cardbus-bridge resources optional' (Myron Stowe) [1022270] \r\n- [pci] Revert 'code and comments cleanup' (Myron Stowe) [1022270] \r\n- [pci] Revert 'make re-allocation try harder by reassigning ranges higher in the heirarchy' (Myron Stowe) [1022270] \r\n- [pci] Revert 'Calculate right add_size' (Myron Stowe) [1022270] \r\n \n[2.6.32-426] \r\n- [block] loop: unplug_fn only when backing file is attached (Lukas Czerner) [1022997] \r\n- [fs] ext4: Remove warning from ext4_da_update_reserve_space() (Lukas Czerner) [1011876] \r\n- [kernel] async: Revert MAX_THREADS to 256 (Neil Horman) [1021705] \r\n- [net] ipv6: restrict neighbor entry creation to output flow (Jiri Pirko) [997103] \r\n- [net] ipv6: udp packets following an UFO enqueued packet need also be handled by UFO (Jiri Pirko) [1011930] {CVE-2013-4387} \r\n- [net] ipv4: blackhole route should always be recalculated (Herbert Xu) [1010347] \r\n- [net] unix: revert/fix race in stream sockets with SOCK_PASS* flags (Daniel Borkmann) [1019343] \r\n- [net] Loosen constraints for recalculating checksum in skb_segment() (Vlad Yasevich) [1020298] \r\n- [drm] nouveau: fix vblank deadlock (Rob Clark) [1013388] \r\n- [usb] xhci: refactor EHCI/xHCI port switching (Don Zickus) [970715] \r\n- [fs] compat_ioctl: VIDEO_SET_SPU_PALETTE missing error check (Phillip Lougher) [949573] {CVE-2013-1928} \r\n- [fs] vfs: fix d_mountpoint() (Ian Kent) [1011337] \r\n- [fs] autofs4: fix device ioctl mount lookup (Ian Kent) [999708] \r\n- [fs] vfs: introduce kern_path_mountpoint() (Ian Kent) [999708] \r\n- [fs] vfs: rename user_path_umountat() to user_path_mountpoint_at() (Ian Kent) [999708] \r\n- [fs] vfs: massage umount_lookup_last() a bit to reduce nesting (Ian Kent) [999708] \r\n- [fs] vfs: allow umount to handle mountpoints without revalidating them (Ian Kent) [999708] \r\n- [fs] nfs: Remove the 'FIFO' behaviour for nfs41_setup_sequence (Steve Dickson) [1022257] \r\n- [fs] nfs: Record the OPEN create mode used in the nfs4_opendata structure (Steve Dickson) [1019439] \r\n- [fs] nfs: Simulate the change attribute (Steve Dickson) [1018653] \r\n- [scsi] megaraid_sas: Fix synchronization problem between sysPD IO path and AEN path (Tomas Henzl) [1019811] \r\n \n[2.6.32-425] \r\n- [md] dm-snapshot: fix data corruption (Mikulas Patocka) [974481] {CVE-2013-4299} \r\n- [watchdog] iTCO_wdt: add platform driver module alias (Neil Horman) [1019497] \r\n- [hda] alsa: disable 44.1kHz rate for Haswell HDMI/DP audio (Jaroslav Kysela) [831970] \r\n- [x86] Update UV3 hub revision ID (George Beshers) [1018962] \r\n- [fs] xfs: Don't reference the EFI after it is freed (Eric Sandeen) [1018469] \r\n- [security] keys: Fix a race between negating a key and reading the error set (Dave Wysochanski) [890231] \r\n- [fs] nfsv4: Ensure memory ordering between nfs4_ds_connect and nfs4_fl_prepare_ds (Jeff Layton) [1012439] \r\n- [fs] nfsv4: nfs4_fl_prepare_ds - fix bugs when the connect attempt fails (Jeff Layton) [1012439] \r\n- [md] Disable TRIM on RAID5 for RHEL 6.5 (Jes Sorensen) [837097] \r\n- [md] raid5: BIO_RW_SYNCIO is a bit number, not a bitmask (Jes Sorensen) [837097] \r\n- [virt] hyperv: framebuffer pci stub (Gerd Hoffmann) [1013335] \r\n- [netdrv] bnx2x: add missing enum channel_tlvs definitions (Michal Schmidt) [1015137] \r\n- [netdrv] bnx2x: KR2 disablement fix (Michal Schmidt) [1015137] \r\n- [netdrv] bnx2x: Specific Active-DAC is not detected on 57810 (Michal Schmidt) [1015137] \r\n- [netdrv] bnx2x: Generalize KR work-around (Michal Schmidt) [1015137] \r\n- [usb] usbnet: use ethd name for known ethernet devices (Don Zickus) [1014224] \r\n- [usb] cdc_ether: use ethd name for known ethernet devices (Don Zickus) [1014224] \r\n- [mm] Revert 'Find_early_table_space based on ranges that are actually being mapped' (Rafael Aquini) \r\n- [mm] Revert 'Exclude E820_RESERVED regions and memory holes above 4 GB from direct mapping' (Rafael Aquini) \r\n- [mm] Revert 'Group e820 entries together and add map_individual_e820 boot option' (Rafael Aquini) \r\n- [net] bridge: update mdb expiration timer upon reports (Vlad Yasevich) [1013816] \r\n- [net] veth: Remove NETIF_F_HW_VLAN_RX capability (Thomas Graf) [1018158] \r\n- [net] gre/vxlan: handle 802.1Q inner header properly (Thomas Graf) [997632] \r\n- [net] disable the new NAPI weight error message for RHEL 6.5 (Michal Schmidt) [1012090] \r\n- [scsi] sd: Fix parsing of 'temporary ' cache mode prefix (Ewan Milne) [955441] \r\n- [scsi] sd: fix array cache flushing bug causing performance problems (Ewan Milne) [955441] \r\n- [scsi] bfa: firmware update to 3.2.1.1 (Rob Evers) [1002770] \r\n- [netdrv] bna: firmware update to 3.2.1.1 (Ivan Vecera) [1002771] \r\n \n[2.6.32-424] \r\n- [block] loop: fix crash when using unassigned loop device (Mike Snitzer) [989795] \r\n- [fs] xfs: prevent deadlock trying to cover an active log (Dave Chinner) [1014867] \r\n- [x86] microcode: Fix patch level reporting for AMD family 15h (Prarit Bhargava) [1014401] \r\n- [hda] alsa: enable switcheroo code in the snd-hda-intel driver (Jaroslav Kysela) [1013993] \r\n- [x86] reboot: Fix a warning message triggered by stop_other_cpus() (Jerome Marchand) [840710] \r\n- [kernel] async: Bump up the MAX_THREADS count for the async subsystem (Neil Horman) [1010666] \r\n- [pci] Calculate right add_size (Myron Stowe) [997672] \r\n- [netdrv] iwlwifi: pcie: add SKUs for 6000, 6005 and 6235 series (Stanislaw Gruszka) [1013951] \r\n- [netdrv] iwlwifi: pcie: add new SKUs for 7000 & 3160 NIC series (Stanislaw Gruszka) [1013951] \r\n- [netdrv] iwlwifi: enable shadow registers for 7000 (Stanislaw Gruszka) [1013951] \r\n- [netdrv] iwlwifi: add new 7260 and 3160 series device IDs (Stanislaw Gruszka) [1013951] \r\n- [netdrv] be2net: pass if_id for v1 and V2 versions of TX_CREATE cmd (Ivan Vecera) [1014360] \r\n- [netdrv] be2net: call ENABLE_VF cmd for Skyhawk-R too (Ivan Vecera) [1014360] \r\n- [netdrv] be2net: Fix to prevent Tx stall on SH-R when packet size < 32 (Ivan Vecera) [1014360] \r\n- [scsi] pm8001: Queue rotation logic for inbound and outbound queues (Rich Bono) [1013771] \r\n- [scsi] lpfc: Update lpfc version for 8.3.7.21.4p driver release (Rob Evers) [1004841] \r\n- [scsi] lpfc: Fixed spinlock hang (Rob Evers) [1004841] \r\n- [scsi] lpfc: Fixed spinlock inversion problem (Rob Evers) [1004841] \r\n- [scsi] lpfc: Fixed inconsistent spin lock useage (Rob Evers) [1004841] \r\n- [scsi] qla2xxx: Update version number to 8.05.00.03.06.5-k2 (Chad Dupuis) [912652] \r\n- [scsi] qla2xxx: Fix request queue null dereference (Chad Dupuis) [912652] \r\n- [net] tcp: TSQ can use a dynamic limit (Jiri Pirko) [996802] \r\n- [net] tcp: TSO packets automatic sizing (Jiri Pirko) [996802] \r\n- [net] tcp: Apply device TSO segment limit earlier (Jiri Pirko) [996802] \r\n- [net] Allow driver to limit number of GSO segments per skb (Jiri Pirko) [996802] \r\n- [net] cleanups in RX queue allocation (Ivan Vecera) [1012388] \r\n- [net] Update kernel-doc for netif_set_real_num_rx_queues() (Ivan Vecera) [1012388] \r\n- [net] netif_set_real_num_rx_queues may cap num_rx_queues at init time (Ivan Vecera) [1012388] \r\n \n[2.6.32-423] \r\n- [kvm] pmu: add proper support for fixed counter 2 (Gleb Natapov) [1000956] \r\n- [kvm] vmx: do not check bit 12 of EPT violation exit qualification when undefined (Gleb Natapov) [1006139] \r\n- [kvm] vmx: set 'blocked by NMI' flag if EPT violation happens during IRET from NMI (Gleb Natapov) [1006139] \r\n- [edac] Fix workqueue-related crashes (Aristeu Rozanski) [831127] \r\n- [edac] amd64_edac: Fix driver module removal (Aristeu Rozanski) [831127] \r\n- [md] raid5: BIO flags adjust (Jes Sorensen) [837097] \r\n- [md] Fix skipping recovery for read-only arrays (Jes Sorensen) [1014102] \r\n- [kernel] audit: fix mq_open and mq_unlink to add the MQ root as a hidden parent audit_names record (Richard Guy Briggs) [1009386] \r\n- [kernel] audit: log the audit_names record type (Richard Guy Briggs) [1009386] \r\n- [kernel] audit: add child record before the create to handle case where create fails (Richard Guy Briggs) [1009386] \r\n- [kernel] audit: format user messages to size of MAX_AUDIT_MESSAGE_LENGTH (Richard Guy Briggs) [1007069] \r\n- [netdrv] tg3: Expand led off fix to include 5720 (Ivan Vecera) [991498] \r\n- [netdrv] tg3: Don't turn off led on 5719 serdes port 0 (Ivan Vecera) [991498] \r\n- [netdrv] tg3: Don't turn off led on 5719 serdes port 0 (Ivan Vecera) [991498] \r\n- [netdrv] tg3: Fix UDP fragments treated as RMCP (Ivan Vecera) [991498] \r\n- [netdrv] tg3: Remove incorrect switch to aux power (Ivan Vecera) [991498] \r\n- [i2c] ismt: initialize DMA buffer (Neil Horman) [1014753] \r\n- [scsi] libfcoe: Make fcoe_sysfs optional / fix fnic NULL exception (Neil Horman) [1014864] \r\n- [fs] gfs2: Fix race in iteration of glocks for unfreeze/umount (Abhijith Das) [999909] \r\n- [fs] gfs2: dirty inode correctly in gfs2_write_end (Benjamin Marzinski) [991596] \r\n- [x86] Mark Intel Atom Avoton processor as supported (Prarit Bhargava) [914842] \r\n- [mm] vmscan: fix zone shrinking exit when scan work is done (David Gibson) [985155] \r\n- [block] free bios when failing blk_execute_rq_nowait calls (Jeff Moyer) [1009312] \r\n- [netdrv] be2net: fix disabling TX in be_close() (Ivan Vecera) [951271] \r\n- [crypto] Fix race condition in larval lookup (Herbert Xu) [916361] \r\n \n[2.6.32-422] \r\n- [fs] fuse: drop dentry on failed revalidate (Brian Foster) [924014] \r\n- [fs] fuse: clean up return in fuse_dentry_revalidate() (Brian Foster) [924014] \r\n- [fs] fuse: use d_materialise_unique() (Brian Foster) [924014] \r\n- [mm] Group e820 entries together and add map_individual_e820 boot option (Larry Woodman) [876275] \r\n- [mm] Exclude E820_RESERVED regions and memory holes above 4 GB from direct mapping (Larry Woodman) [876275] \r\n- [mm] Find_early_table_space based on ranges that are actually being mapped (Larry Woodman) [876275] \r\n- [hid] pantherlord: heap overflow flaw (Radomir Vrbovsky) [1000435] {CVE-2013-2892} \r\n- [virt] hv: Correctly support ws2008R2 and earlier (Jason Wang) [1007341] \r\n- [powerpc] iommu: Use GFP_KERNEL instead of GFP_ATOMIC in iommu_init_table() (Steve Best) [1012666] \r\n- [powerpc] Add isync to copy_and_flush (Steve Best) [1014475] \r\n- [block] rsxx: Kernel Panic caused by mapping Discards (Steve Best) [1013728] \r\n- [kernel] audit: avoid soft lockup due to audit_log_start() incorrect loop termination (Richard Guy Briggs) [990806] \r\n- [fs] nfsv4: R e m o v e t h e B U G _ O N ( ) f r o m n f s 4 _ g e t _ l e a s e _ t i m e _ p r e p a r e ( ) ( S t e v e D i c k s o n ) [ 1 0 1 2 6 8 8 ] \r b r > - [ n e t d r v ] b n x 2 x : f i x l o s s o f V L A N p r i o r i t y i n f o r m a t i o n i n r e c e i v e d T P A - a g g r e g a t e d p a c k e t s ( M i c h a l S c h m i d t ) [ 1 0 1 4 6 9 4 ] \r b r > - [ f s ] g f s 2 : g a r b a g e q u o t a u s a g e r e p o r t e d d u e t o u n i n i t i a l i z e d i n o d e d u r i n g c r e a t i o n ( A b h i j i t h D a s ) [ 1 0 0 8 9 4 7 ] \r b r > - [ f s ] n f s : f i x f i l e l a y o u t _ c o m m i t _ c a l l _ o p s ( S c o t t M a y h e w ) [ 1 0 1 2 4 7 9 ] \r b r > - [ n e t d r v ] i g b : f i x d r i v e r r e l o a d w i t h V F a s s i g n e d t o g u e s t ( S t e f a n A s s m a n n ) [ 9 8 5 7 3 3 ] \r b r > - [ m d ] F i x b i o f l a g s f o r m d r a i d 5 ( J e s S o r e n s e n ) [ 8 3 7 0 9 7 ] \r b r > - [ m d ] F i x b i o f l a g s f o r m d r a i d 1 0 ( J e s S o r e n s e n ) [ 8 3 7 0 9 7 ] \r b r > - [ s c s i ] q l a 4 x x x : 5 . 0 3 . 0 0 . 0 0 . 0 6 . 0 5 - k 3 ( C h a d D u p u i s ) [ 1 0 1 1 4 7 6 ] \r b r > - [ s c s i ] q l a 4 x x x : S u p p o r t s e t t i n g o f l o c a l C H A P i n d e x f o r f l a s h t a r g e t e n t r y ( C h a d D u p u i s ) [ 1 0 1 1 4 7 6 ] \r b r > - [ s c s i ] q l a 4 x x x : C o r r e c t t h e c h e c k f o r l o c a l C H A P e n t r y t y p e ( C h a d D u p u i s ) [ 1 0 1 1 4 7 6 ] \r b r > - [ s c s i ] l p f c : U p d a t e l p f c v e r s i o n f o r 8 . 3 . 7 . 2 1 . 3 p d r i v e r r e l e a s e ( R o b E v e r s ) [ 1 0 1 2 9 6 1 ] \r b r > - [ s c s i ] l p f c : F i x e d f u n c t i o n m o d e f i e l d d e f i n e d t o o s m a l l f o r n o t r e c o g n i z i n g d u a l - c h u t e m o d e ( R o b E v e r s ) [ 1 0 1 2 9 6 1 ] \r b r > - [ n e t ] R e v e r t ' n e t : m o r e a c c u r a t e s k b t r u e s i z e ' ( F r a n c e s c o F u s c o ) [ 8 8 9 1 8 1 ] \r b r > - [ n e t ] f i x m u l t i q u e u e s e l e c t i o n ( M i c h a l S c h m i d t ) [ 1 0 1 1 9 3 9 ] \r b r > \r b r > [ 2 . 6 . 3 2 - 4 2 1 ] \r b r > - [ s c s i ] b n x 2 f c : B u m p v e r s i o n f r o m 1 . 0 . 1 4 t o 2 . 4 . 1 ( T o m a s H e n z l ) [ 1 0 0 8 7 3 3 ] \r b r > - [ s c s i ] b n x 2 f c : h u n g t a s k t i m e o u t w a r n i n g o b s e r v e d w h e n r m m o d b n x 2 x w i t h a c t i v e F C o E t a r g e t s ( T o m a s H e n z l ) [ 1 0 0 8 7 3 3 ] \r b r > - [ s c s i ] b n x 2 f c : F i x e d a S C S I C M D c m p l r a c e c o n d i t i o n b e t w e e n A B T S a n d C L E A N U P ( T o m a s H e n z l ) [ 1 0 0 8 7 3 3 ] \r b r > - [ s c s i ] c n i c : F i x c r a s h i n , c n i c _ b n x 2 x _ s e r v i c e _ k c q ( ) ( T o m a s H e n z l ) [ 1 0 0 4 5 5 4 ] \r b r > - [ h i d ] z e r o p l u s : v a l i d a t e o u t p u t r e p o r t d e t a i l s ( F r a n t i s e k H r b a t a ) [ 9 9 9 9 0 6 ] { C V E - 2 0 1 3 - 2 8 8 9 } \r b r > - [ h i d ] p r o v i d e a h e l p e r f o r v a l i d a t i n g h i d r e p o r t s ( F r a n t i s e k H r b a t a ) [ 9 9 9 9 0 6 ] { C V E - 2 0 1 3 - 2 8 8 9 } \r b r > - [ n e t d r v ] s f c : A d d S I O C E F X : E F X _ M C D I _ R E Q U E S T i o c t l t o w o r k a r o u n d M T D l i m i t s ( N i k o l a y A l e k s a n d r o v ) [ 1 0 0 8 7 0 5 ] \r b r > - [ n e t d r v ] s f c : d e n y c h a n g i n g o f u n s u p p o r t e d f l a g s ( N i k o l a y A l e k s a n d r o v ) [ 1 0 1 0 8 4 0 ] \r b r > - [ k e r n e l ] _ _ p t r a c e _ m a y _ a c c e s s ( ) s h o u l d n o t d e n y s u b - t h r e a d s ( O l e g N e s t e r o v ) [ 9 2 7 3 6 0 ] \r b r > - [ t o o l s ] p e r f : M a k e k m e m w o r k f o r n o n n u m a m a c h i n e s ( J i r i O l s a ) [ 9 8 4 7 8 8 ] \r b r > - [ p o w e r p c ] B r i n g a l l t h r e a d s o n l i n e p r i o r t o m i g r a t i o n / h i b e r n a t i o n ( S t e v e B e s t ) [ 1 0 1 0 5 2 8 ] \r b r > - [ k v m ] i n t r o d u c e g u e s t c o u n t u e v e n t ( P a o l o B o n z i n i ) [ 1 0 0 4 8 0 2 ] \r b r > - [ s c s i ] i s c s i _ t c p : c o n s i d e r s e s s i o n s t a t e i n i s c s i _ s w _ s k _ s t a t e _ c h e c k ( C h r i s L e e c h ) [ 8 4 0 6 3 8 ] \r b r > - [ c r y p t o ] a n s i _ c p r n g : F i x o f f b y o n e e r r o r i n n o n - b l o c k s i z e r e q u e s t ( N e i l H o r m a n ) [ 1 0 0 7 6 9 4 ] { C V E - 2 0 1 3 - 4 3 4 5 } \r b r > - [ i n f i n i b a n d ] c a c h e : d o n ' t f i l l t h e c a c h e w i t h j u n k ( D o u g L e d f o r d ) [ 9 2 0 3 0 6 ] \r b r > - [ u s b ] c o r e : d o n ' t t r y t o r e s e t _ d e v i c e ( ) a p o r t t h a t g o t j u s t d i s c o n n e c t e d ( D o n Z i c k u s ) [ 1 0 0 0 9 4 4 ] \r b r > - [ u s b ] F i x c o n n e c t e d d e v i c e s w i t c h t o I n a c t i v e s t a t e ( D o n Z i c k u s ) [ 1 0 0 0 9 4 4 ] \r b r > - [ u s b ] D o n ' t u s e E H C I p o r t s e m p a h o r e f o r U S B 3 . 0 h u b s ( D o n Z i c k u s ) [ 1 0 0 0 9 4 4 ] \r b r > - [ n e t d r v ] m a c v t a p : I g n o r e t a p f e a t u r e s w h e n V N E T _ H D R i s o f f ( V l a d Y a s e v i c h ) [ 9 8 7 2 0 1 ] \r b r > - [ n e t d r v ] m a c v t a p : C o r r e c t l y s e t t a p f e a t u r e s w h e n I F F _ V N E T _ H D R i s d i s a b l e d ( V l a d Y a s e v i c h ) [ 9 8 7 2 0 1 ] \r b r > - [ n e t d r v ] m a c v t a p : s i m p l i f y u s a g e o f t a p _ f e a t u r e s ( V l a d Y a s e v i c h ) [ 9 8 7 2 0 1 ] \r b r > - [ i n f i n i b a n d ] m l x 4 : U s e d e f a u l t p k e y w h e n c r e a t i n g t u n n e l Q P s ( D o u g L e d f o r d ) [ 9 9 3 5 8 7 ] \r b r > - [ i n f i n i b a n d ] c o r e : C r e a t e Q P 1 u s i n g t h e p k e y i n d e x w h i c h c o n t a i n s t h e d e f a u l t p k e y ( D o u g L e d f o r d ) [ 9 9 3 5 8 7 ] \r b r > - [ i n f i n i b a n d ] i p o i b : M a k e s u r e c h i l d d e v i c e s u s e v a l i d / p r o p e r p k e y s ( D o u g L e d f o r d ) [ 9 9 3 5 8 7 ] \r b r > - [ i n f i n i b a n d ] i p o i b : F i x p k e y c h a n g e f l o w f o r v i r t u a l i z a t i o n e n v i r o n m e n t s ( D o u g L e d f o r d ) [ 9 9 3 5 8 7 ] \r b r > - [ n e t d r v ] i g b : d o n ' t d e p r e c a t e t h e m a x _ v f s p a r a m e t e r ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e a d f l o w c o n t r o l f o r i 3 5 0 f r o m c o r r e c t E E P R O M s e c t i o n ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : A d d a d d i t i o n a l g e t _ p h y _ i d c a l l f o r i 3 5 4 d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : U p d a t e v e r s i o n n u m b e r ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : I m p l e m e n t a t i o n t o r e p o r t a d v e r t i s e d / s u p p o r t e d l i n k o n i 3 5 4 d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : G e t s p e e d a n d d u p l e x f o r 1 G n o n _ c o p p e r d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : S u p p o r t t o g e t 2 _ 5 G l i n k s t a t u s f o r a p p r o p r i a t e m e d i a t y p e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : N o P H P M s u p p o r t i n i 3 5 4 d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : M 8 8 E 1 5 4 3 P H Y d o w n s h i f t i m p l e m e n t a t i o n ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : N e w P H Y _ I D f o r i 3 5 4 d e v i c e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : I m p l e m e n t a t i o n o f 1 - s e c d e l a y f o r i 2 1 0 d e v i c e s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : D o n ' t l o o k f o r a P B A i n t h e i N V M w h e n f l a s h l e s s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : E x p o s e R S S i n d i r e c t i o n t a b l e f o r e t h t o o l ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : A d d m a c r o f o r s i z e o f R E T A i n d i r e c t i o n t a b l e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : F i x g e t _ f w _ v e r s i o n f u n c t i o n f o r a l l p a r t s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : A d d d e v i c e s u p p o r t f o r f l a s h l e s s S K U o f i 2 1 0 d e v i c e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e f a c t o r N V M r e a d f u n c t i o n s t o a c c o m m o d a t e d e v i c e s w i t h n o f l a s h ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e f a c t o r o f i n i t _ n v m _ p a r a m s ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : U p d a t e M T U s o t h a t i t i s a l w a y s a t l e a s t a s t a n d a r d f r a m e s i z e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : d o n ' t a l l o w S R - I O V w i t h o u t M S I - X ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : A d d e d r c u _ l o c k t o a v o i d r a c e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e a d r e g i s t e r f o r l a t c h _ o n w i t h o u t r e t u r n v a l u e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] i g b : R e s e t t h e l i n k w h e n E E E s e t t i n g c h a n g e d ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ n e t d r v ] t r e e w i d e : r e l a s e - > r e l e a s e ( S t e f a n A s s m a n n ) [ 1 0 0 5 8 7 7 ] \r b r > - [ s c s i ] i t e r a t e o v e r d e v i c e s i n d i v i d u a l l y f o r / p r o c / s c s i / s c s i ( D a v i d M i l b u r n ) [ 9 6 6 1 7 0 ] \r b r > - [ s c s i ] z f c p : f i x l o c k i m b a l a n c e b y r e w o r k i n g r e q u e s t q u e u e l o c k i n g ( M i k u l a s P a t o c k a ) [ 8 0 3 5 9 2 ] \r b r > - [ k e r n e l ] p i d n s : f i x t w o i n v a l i d t a s k _ a c t i v e _ p i d _ n s ( ) u s a g e s ( A r i s t e u R o z a n s k i ) [ 9 8 4 5 9 7 ] \r b r > - [ n e t d r v ] b e 2 n e t : i m p l e m e n t e t h t o o l s e t / g e t _ c h a n n e l h o o k s ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : r e f a c t o r b e _ s e t u p ( ) t o c o n s o l i d a t e q u e u e c r e a t i o n r o u t i n e s ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : F i x b e _ c m d _ i f _ c r e a t e ( ) t o u s e M B O X i f M C C Q i s n o t c r e a t e d ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : r e f a c t o r b e _ g e t _ r e s o u r c e s ( ) c o d e ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : d o n ' t l i m i t m a x M A C a n d V L A N c o u n t s ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : F i x u p p r o f i l e m a n a g e m e n t r o u t i n e s ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : u s e E Q _ C R E A T E v 2 f o r S H - R ( I v a n V e c e r a ) [ 9 7 5 8 8 5 ] \r b r > - [ n e t d r v ] b e 2 n e t : d e l e t e p r i m a r y M A C a d d r e s s w h i l e u n l o a d i n g ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : u s e S E T / G E T _ M A C _ L I S T f o r S H - R ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : r e f a c t o r M A C - a d d r s e t u p c o d e ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : f i x p m a c _ i d f o r B E 3 V F s ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : a l l o w V F s t o p r o g r a m M A C a n d V L A N f i l t e r s ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : f i x M A C a d d r e s s m o d i f i c a t i o n f o r V F ( I v a n V e c e r a ) [ 8 7 4 7 3 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : d o n ' t u s e d e v _ e r r w h e n A E R e n a b l i n g f a i l s ( I v a n V e c e r a ) [ 9 8 6 5 1 3 ] \r b r > - [ n e t d r v ] b e 2 n e t : C l e a r a n y c a p a b i l i t y f l a g s t h a t d r i v e r i s n o t i n t e r e s t e d i n ( I v a n V e c e r a ) [ 9 9 8 8 5 6 ] \r b r > - [ n e t ] e t h t o o l : f i x R H E L b a c k p o r t o f E T H T O O L _ R E S E T ( J i r i B e n c ) [ 1 0 0 8 6 7 8 ] \r b r > - [ n e t ] g a c t : F i x p o t e n t i a l p a n i c i n t c f _ g a c t ( ) ( J i r i B e n c ) [ 1 0 0 3 7 8 1 ] \r b r > - [ n e t ] t c p : f i x F I O N R E A D / S I O C I N Q ( F r a n c e s c o F u s c o ) [ 1 0 0 1 4 7 9 ] \r b r > - [ n e t ] v x l a n : A v o i d c r e a t i n g f d b e n t r y w i t h N U L L d e s t i n a t i o n ( A m e r i g o W a n g ) [ 9 2 3 9 1 5 ] \r b r > - [ n e t ] b r i d g e : s y n c t h e d e f i n i t i o n o f s t r u c t b r _ m d b _ e n t r y w i t h u p s t r e a m ( A m e r i g o W a n g ) [ 1 0 1 0 2 5 1 ] \r b r > - [ f s ] p r o c / n s : F i x A B I o f p r o c _ i n o d e ( T h o m a s G r a f ) [ 1 0 0 5 2 2 4 ] \r b r > - [ f s ] n f s : F i x w r i t e b a c k p e r f o r m a n c e i s s u e o n c a c h e i n v a l i d a t i o n ( S c o t t M a y h e w ) [ 1 0 1 0 0 3 8 ] \r b r > - [ f s ] x f s : s w i t c h s t a c k s f o r b m a p b t r e e m o d i f i c a t i o n s ( D a v e C h i n n e r ) [ 9 1 8 3 5 9 ] \r b r > - [ f s ] G F S 2 : D o n t f l a g c o n s i s t e n c y e r r o r i f f i r s t m o u n t e r i s a s p e c t a t o r ( R o b e r t S P e t e r s o n ) [ 9 9 7 9 2 9 ] \r b r > - [ x 8 6 ] M a r k I n t e l H a s w e l l - E P a s s u p p o r t e d ( P r a r i t B h a r g a v a ) [ 9 4 8 3 3 9 ] \r b r > - [ s 3 9 0 ] t x : a l l o w p r o g r a m i n t e r r u p t i o n f i l t e r i n g i n u s e r s p a c e ( H e n d r i k B r u e c k n e r ) [ 1 0 0 6 5 2 3 ] \r b r > - [ t t y ] h v c _ i u c v : D i s c o n n e c t I U C V c o n n e c t i o n w h e n l o w e r i n g D T R ( H e n d r i k B r u e c k n e r ) [ 1 0 0 7 5 7 0 ] \r b r > - [ t t y ] h v c _ c o n s o l e : A d d D T R / R T S c a l l b a c k t o h a n d l e H U P C L c o n t r o l ( H e n d r i k B r u e c k n e r ) [ 1 0 0 7 5 7 0 ] \r b r > - [ n e t d r v ] b o n d i n g : f i x b o n d _ a r p _ r c v s e t t i n g a n d a r p v a l i d a t e d e s y n c s t a t e ( N i k o l a y A l e k s a n d r o v ) [ 1 0 0 3 6 9 7 ] \r b r > - [ n e t d r v ] b o n d i n g : f i x s t o r e _ a r p _ v a l i d a t e r a c e w i t h m o d e c h a n g e ( N i k o l a y A l e k s a n d r o v ) [ 1 0 0 3 6 9 7 ] \r b r > - [ n e t d r v ] b o n d i n g : f i x s e t m o d e r a c e c o n d i t i o n s ( N i k o l a y A l e k s a n d r o v ) [ 1 0 0 3 6 9 7 ] \r b r > - [ b l u e t o o t h ] r f c o m m : F i x i n f o l e a k i n R F C O M M G E T D E V L I S T i o c t l ( ) ( R a d o m i r V r b o v s k y ) [ 9 2 2 4 0 9 ] { C V E - 2 0 1 2 - 6 5 4 5 } \r b r > - [ b l u e t o o t h ] r f c o m m : F i x i n f o l e a k v i a g e t s o c k n a m e ( ) ( R a d o m i r V r b o v s k y ) [ 9 2 2 4 0 9 ] { C V E - 2 0 1 2 - 6 5 4 5 } \r b r > - [ m m ] m l o c k : o p e r a t e o n a n y r e g i o n s w i t h p r o t e c t i o n ! = P R O T _ N O N E ( L a r r y W o o d m a n ) [ 9 8 2 4 6 0 ] \r b r > - [ m m ] m l o c k : a v o i d d i r t y i n g p a g e s a n d t r i g g e r i n g w r i t e b a c k ( L a r r y W o o d m a n ) [ 9 8 2 4 6 0 ] / p > \n \n \n b r > h 2 > R e l a t e d C V E s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 2 - 6 5 4 2 . h t m l \" > C V E - 2 0 1 2 - 6 5 4 2 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 1 9 2 9 . h t m l \" > C V E - 2 0 1 3 - 1 9 2 9 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 2 - 6 5 4 5 . h t m l \" > C V E - 2 0 1 2 - 6 5 4 5 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 3 2 3 1 . h t m l \" > C V E - 2 0 1 3 - 3 2 3 1 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 1 6 4 . h t m l \" > C V E - 2 0 1 3 - 2 1 6 4 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 2 3 4 . h t m l \" > C V E - 2 0 1 3 - 2 2 3 4 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 5 1 . h t m l \" > C V E - 2 0 1 3 - 2 8 5 1 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 0 3 4 3 . h t m l \" > C V E - 2 0 1 3 - 0 3 4 3 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 3 4 5 . h t m l \" > C V E - 2 0 1 3 - 4 3 4 5 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 1 9 2 8 . h t m l \" > C V E - 2 0 1 3 - 1 9 2 8 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 8 8 . h t m l \" > C V E - 2 0 1 3 - 2 8 8 8 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 8 9 . h t m l \" > C V E - 2 0 1 3 - 2 8 8 9 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 2 8 9 2 . h t m l \" > C V E - 2 0 1 3 - 2 8 9 2 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 3 8 7 . h t m l \" > C V E - 2 0 1 3 - 4 3 8 7 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 5 9 1 . h t m l \" > C V E - 2 0 1 3 - 4 5 9 1 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 3 - 4 5 9 2 . h t m l \" > C V E - 2 0 1 3 - 4 5 9 2 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n b r > h 2 > U p d a t e d P a c k a g e s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r s t y l e = \" c o l o r : # F F 0 0 0 0 ; \" > t d > b > R e l e a s e / A r c h i t e c t u r e / b > t d > b > F i l e n a m e / b > / t d > t d > b > M D 5 s u m / b > / t d > t d > b > S u p e r s e d e d B y A d v i s o r y / b > / t d > / t r > \n t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( i 3 8 6 ) / t d > t d > k e r n e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . s r c . r p m / t d > t d > b 0 8 1 7 0 5 3 e 2 2 0 b 2 9 9 9 a e 5 b 5 4 0 0 4 3 7 3 1 1 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > 2 3 3 6 c 2 b 3 8 4 a 1 1 c f f 9 8 e 3 d c 1 1 6 4 8 c 0 0 2 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - a b i - w h i t e l i s t s - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > 3 a 4 7 a 1 9 d d e 3 d d 2 1 b c 3 8 5 c b 5 0 c c 9 5 3 3 1 8 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > e a c f e a d 2 9 0 d d 7 7 4 f f 7 4 5 2 4 c d 1 8 b 9 3 b 1 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > a 5 2 0 6 f e 8 9 5 4 7 9 d 9 e 8 5 7 f e 6 c 0 0 5 7 a 7 7 6 a / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > d a 0 a 9 0 a 6 7 4 f 8 0 0 7 f 0 0 b 6 6 a 9 f a 1 c a 7 6 8 8 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > c c b 0 1 5 d 4 5 e 5 1 0 b c 9 0 b c 9 8 e e c 1 d 9 1 0 0 3 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - f i r m w a r e - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > 2 b 3 d d 8 e b 7 b 3 5 0 4 3 8 5 1 e 9 c 6 0 4 5 f 1 c b 7 6 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > 7 c 0 a 1 2 2 b 0 5 9 a 3 9 9 d 8 1 a f 6 a f d 0 5 e 3 9 0 3 e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p e r f - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > a 5 0 4 4 b e 0 1 6 d 6 f 3 1 e 0 2 1 a d 3 3 a 4 0 3 b 8 7 f f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p y t h o n - p e r f - 2 . 6 . 3 2 - 4 3 1 . e l 6 . i 6 8 6 . r p m / t d > t d > d 2 3 1 4 7 b 8 9 6 5 a d 4 3 1 8 f a 9 0 4 3 f c 5 4 b c 9 6 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 6 ( x 8 6 _ 6 4 ) / t d > t d > k e r n e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . s r c . r p m / t d > t d > b 0 8 1 7 0 5 3 e 2 2 0 b 2 9 9 9 a e 5 b 5 4 0 0 4 3 7 3 1 1 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > f 2 3 c 5 b 5 6 3 e 7 4 3 9 f d b 1 6 2 f e 2 9 9 0 9 7 a c f e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - a b i - w h i t e l i s t s - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > 3 a 4 7 a 1 9 d d e 3 d d 2 1 b c 3 8 5 c b 5 0 c c 9 5 3 3 1 8 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > b b d 8 c e f 1 f 3 f 7 5 1 c 6 a 7 1 b 6 a 7 c 9 b 2 3 1 6 5 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 6 1 3 b d 8 a 3 0 1 3 7 e 9 f a d 1 0 d c 3 b d 6 6 d c 5 f a e / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 9 5 b a 5 a e c 4 5 8 c 4 f c d e f f b d 3 5 7 d f a e 3 0 d 5 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > c c b 0 1 5 d 4 5 e 5 1 0 b c 9 0 b c 9 8 e e c 1 d 9 1 0 0 3 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - f i r m w a r e - 2 . 6 . 3 2 - 4 3 1 . e l 6 . n o a r c h . r p m / t d > t d > 2 b 3 d d 8 e b 7 b 3 5 0 4 3 8 5 1 e 9 c 6 0 4 5 f 1 c b 7 6 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > d a a 8 1 b b a a d f 3 1 a 2 4 b e 7 4 3 a 2 f 5 7 4 7 8 0 1 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p e r f - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 9 e 4 1 8 7 a d 4 a a 8 3 3 b 6 2 f 4 0 5 4 4 f d c 9 a b 5 9 3 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > t r > t d > / t d > t d > p y t h o n - p e r f - 2 . 6 . 3 2 - 4 3 1 . e l 6 . x 8 6 _ 6 4 . r p m / t d > t d > 5 d f 1 6 e 0 f 2 c 1 b a a 4 6 a d 0 4 1 3 8 f 7 0 2 8 1 e 2 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 7 2 3 . h t m l \" > E L S A - 2 0 1 7 - 1 7 2 3 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n \n b r > b r > \n b r > p > \n T h i s p a g e i s g e n e r a t e d a u t o m a t i c a l l y a n d h a s n o t b e e n c h e c k e d f o r e r r o r s o r o m i s s i o n s . F o r c l a r i f i c a t i o n \n o r c o r r e c t i o n s p l e a s e c o n t a c t t h e a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / \" > O r a c l e L i n u x U L N t e a m / a > / p > \n \n \n \n / d i v > \n ! - - \n / d i v > \n - - > \n / d i v > \n / d i v > \n \n \n d i v i d = \" m c 1 6 \" c l a s s = \" m c 1 6 v 0 \" > \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > T e c h n i c a l i n f o r m a t i o n / h 2 > \n u l > \n l i > a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / h a r d w a r e - c e r t i f i c a t i o n s \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x C e r t i f i e d H a r d w a r e / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / l i b r a r y / e l s p - l i f e t i m e - 0 6 9 3 3 8 . p d f \" > O r a c l e L i n u x S u p p o r t e d R e l e a s e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > O r a c l e L i n u x S u p p o r t / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / t e c h n o l o g i e s / l i n u x / O r a c l e L i n u x S u p p o r t / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x S u p p o r t / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / p r e m i e r / s e r v e r s - s t o r a g e / o v e r v i e w / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e P r e m i e r S u p p o r t f o r S y s t e m s / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / a d v a n c e d - c u s t o m e r - s e r v i c e s / o v e r v i e w / \" > A d v a n c e d C u s t o m e r S e r v i c e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 2 \" > \n h 2 > C o n n e c t / h 2 > \n u l > \n l i c l a s s = \" f b i c o n \" > a h r e f = \" h t t p : / / w w w . f a c e b o o k . c o m / o r a c l e l i n u x \" t i t l e = \" F a c e b o o k \" n a m e = \" F a c e b o o k \" t a r g e t = \" _ b l a n k \" i d = \" F a c e b o o k \" > F a c e b o o k / a > / l i > \n l i c l a s s = \" t w i c o n \" > a h r e f = \" h t t p : / / w w w . t w i t t e r . c o m / O r a c l e L i n u x \" t i t l e = \" T w i t t e r \" n a m e = \" T w i t t e r \" t a r g e t = \" _ b l a n k \" i d = \" T w i t t e r \" > T w i t t e r / a > / l i > \n l i c l a s s = \" i n i c o n \" > a h r e f = \" h t t p : / / w w w . l i n k e d i n . c o m / g r o u p s ? g i d = 1 2 0 2 3 8 \" t i t l e = \" L i n k e d I n \" n a m e = \" L i n k e d I n \" t a r g e t = \" _ b l a n k \" i d = \" L i n k e d I n \" > L i n k e d I n / a > / l i > \n l i c l a s s = \" y t i c o n \" > a h r e f = \" h t t p : / / w w w . y o u t u b e . c o m / o r a c l e l i n u x c h a n n e l \" t i t l e = \" Y o u T u b e \" n a m e = \" Y o u T u b e \" t a r g e t = \" _ b l a n k \" i d = \" Y o u T u b e \" > Y o u T u b e / a > / l i > \n l i c l a s s = \" b l o g i c o n \" > a h r e f = \" h t t p : / / b l o g s . o r a c l e . c o m / l i n u x \" t i t l e = \" B l o g \" n a m e = \" B l o g \" > B l o g / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 3 \" > \n h 2 > C o n t a c t U s / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / c o r p o r a t e / c o n t a c t / g l o b a l - 0 7 0 5 1 1 . h t m l \" > G l o b a l c o n t a c t s / a > / l i > \n l i > O r a c l e 1 - 8 0 0 - 6 3 3 - 0 6 9 1 / l i > \n / u l > \n / d i v > \n / d i v > \n / d i v > \n \n d i v i d = \" m c 0 4 \" c l a s s = \" m c 0 4 v 1 \" > \n d i v c l a s s = \" m c 0 4 w 1 \" > \n a h r e f = \" h t t p : / / o r a c l e . c o m \" > i m g s r c = \" / / w w w . o r a c l e i m g . c o m / a s s e t s / m c 0 4 - f o o t e r - l o g o . p n g \" b o r d e r = \" 0 \" a l t = \" s o f t w a r e . h a r d w a r e . c o m p l e t e \" / > / a > \n / d i v > \n \n d i v c l a s s = \" m c 0 4 w 2 \" > \n a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / s u b s c r i b e / i n d e x . h t m l \" > S u b s c r i b e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / e m p l o y m e n t / i n d e x . h t m l \" > C a r e e r s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / c o n t a c t / i n d e x . h t m l \" > C o n t a c t U s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / c o p y r i g h t . h t m l \" > L e g a l N o t i c e s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / t e r m s . h t m l \" > T e r m s o f U s e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / p r i v a c y . h t m l \" > Y o u r P r i v a c y R i g h t s / a > \n / d i v > \n / d i v > \n / d i v > \n / b o d y > \n / h t m l > \n ", "edition": 4, "reporter": "Oracle", "published": "2013-11-25T00:00:00", "title": "Oracle Linux 6 kernel update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2013-2234", "CVE-2013-4345", "CVE-2013-3231", "CVE-2013-2892", "CVE-2013-4592", "CVE-2012-6545", "CVE-2012-6542", "CVE-2013-1929", "CVE-2013-2851", "CVE-2013-4387", "CVE-2013-0343", "CVE-2013-1928", "CVE-2013-2888", "CVE-2013-4299", "CVE-2013-2164", "CVE-2013-2889", "CVE-2013-4591"], "modified": "2013-11-25T00:00:00", "id": "ELSA-2013-1645", "href": "http://linux.oracle.com/errata/ELSA-2013-1645.html", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2017-09-09T07:20:14", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-debuginfo-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-debuginfo-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-PAE-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-debuginfo-common-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-348.4.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-debuginfo-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-debuginfo-common-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-348.4.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-debuginfo-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-debuginfo-common-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-debuginfo-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.ppc.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-devel-2.6.18-348.4.1.el5.ppc64.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-debuginfo-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-debuginfo-common-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-debuginfo-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-kdump-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-devel-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "s390x", "packageFilename": "kernel-kdump-2.6.18-348.4.1.el5.s390x.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-debuginfo-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-debuginfo-common-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-debuginfo-common", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.4.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-348.4.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the Xen netback driver implementation in the Linux\nkernel. A privileged guest user with access to a para-virtualized network\ndevice could use this flaw to cause a long loop in netback, leading to a\ndenial of service that could potentially affect the entire system.\n(CVE-2013-0216, Moderate)\n\n* A flaw was found in the Xen PCI device back-end driver implementation in\nthe Linux kernel. A privileged guest user in a guest that has a PCI\npassthrough device could use this flaw to cause a denial of service that\ncould potentially affect the entire system. (CVE-2013-0231, Moderate)\n\n* A NULL pointer dereference flaw was found in the IP packet transformation\nframework (XFRM) implementation in the Linux kernel. A local user who has\nthe CAP_NET_ADMIN capability could use this flaw to cause a denial of\nservice. (CVE-2013-1826, Moderate)\n\n* Information leak flaws were found in the XFRM implementation in the\nLinux kernel. A local user who has the CAP_NET_ADMIN capability could use\nthese flaws to leak kernel stack memory to user-space. (CVE-2012-6537, Low)\n\n* An information leak flaw was found in the logical link control (LLC)\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to leak kernel stack memory to user-space. (CVE-2012-6542, Low)\n\n* Two information leak flaws were found in the Linux kernel's Asynchronous\nTransfer Mode (ATM) subsystem. A local, unprivileged user could use these\nflaws to leak kernel stack memory to user-space. (CVE-2012-6546, Low)\n\n* An information leak flaw was found in the TUN/TAP device driver in the\nLinux kernel's networking implementation. A local user with access to a\nTUN/TAP virtual interface could use this flaw to leak kernel stack memory\nto user-space. (CVE-2012-6547, Low)\n\nRed Hat would like to thank the Xen project for reporting the CVE-2013-0216\nand CVE-2013-0231 issues.\n\nThis update also fixes the following bugs:\n\n* The IPv4 code did not correctly update the Maximum Transfer Unit (MTU) of\nthe designed interface when receiving ICMP Fragmentation Needed packets.\nConsequently, a remote host did not respond correctly to ping attempts.\nWith this update, the IPv4 code has been modified so the MTU of the\ndesigned interface is adjusted as expected in this situation. The ping\ncommand now provides the expected output. (BZ#923353)\n\n* Previously, the be2net code expected the last word of an MCC completion\nmessage from the firmware to be transferred by direct memory access (DMA)\nat once. However, this is not always true, and could therefore cause the\nBUG_ON() macro to be triggered in the be_mcc_compl_is_new() function,\nconsequently leading to a kernel panic. The BUG_ON() macro has been\nremoved from be_mcc_compl_is_new(), and the kernel panic no longer occurs\nin this scenario. (BZ#923910)\n\n* Previously, the NFSv3 server incorrectly converted 64-bit cookies to\n32-bit. Consequently, the cookies became invalid, which affected all file\nsystem operations depending on these cookies, such as the READDIR operation\nthat is used to read entries from a directory. This led to various\nproblems, such as exported directories being empty or displayed\nincorrectly, or an endless loop of the READDIRPLUS procedure which could\npotentially cause a buffer overflow. This update modifies knfsd code so\nthat 64-bit cookies are now handled correctly and all file system\noperations work as expected. (BZ#924087)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "reporter": "RedHat", "published": "2013-04-16T04:00:00", "type": "redhat", "title": "(RHSA-2013:0747) Moderate: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6537", "CVE-2012-6542", "CVE-2012-6546", "CVE-2012-6547", "CVE-2013-0216", "CVE-2013-0231", "CVE-2013-1826"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:14:49", "id": "RHSA-2013:0747", "href": "https://access.redhat.com/errata/RHSA-2013:0747", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-12T21:09:47", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-debuginfo-common-i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "src", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.6.1.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-debuginfo-common-x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-358.6.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-358.6.1.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "i686", "packageName": "perf", "packageFilename": "perf-2.6.32-358.6.1.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.6.1.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel-debuginfo-common-ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "perf", "packageFilename": "perf-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel-bootwrapper", "packageFilename": "kernel-bootwrapper-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "ppc64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.6.1.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-debuginfo-common-s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "perf", "packageFilename": "perf-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel", "packageFilename": "kernel-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-358.6.1.el6", "arch": "s390x", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.32-358.6.1.el6.s390x.rpm", "operator": "lt"}], "description": "Security:\n\n* An integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the way the Intel i915 driver in the Linux kernel handled the\nallocation of the buffer used for relocation copies. A local user with\nconsole access could use this flaw to cause a denial of service or escalate\ntheir privileges. (CVE-2013-0913, Important)\n\n* A buffer overflow flaw was found in the way UTF-8 characters were\nconverted to UTF-16 in the utf8s_to_utf16s() function of the Linux kernel's\nFAT file system implementation. A local user able to mount a FAT file\nsystem with the \"utf8=1\" option could use this flaw to crash the system or,\npotentially, to escalate their privileges. (CVE-2013-1773, Important)\n\n* A flaw was found in the way KVM handled guest time updates when the\nbuffer the guest registered by writing to the MSR_KVM_SYSTEM_TIME machine\nstate register (MSR) crossed a page boundary. A privileged guest user could\nuse this flaw to crash the host or, potentially, escalate their privileges,\nallowing them to execute arbitrary code at the host kernel level.\n(CVE-2013-1796, Important)\n\n* A potential use-after-free flaw was found in the way KVM handled guest\ntime updates when the GPA (guest physical address) the guest registered by\nwriting to the MSR_KVM_SYSTEM_TIME machine state register (MSR) fell into a\nmovable or removable memory region of the hosting user-space process (by\ndefault, QEMU-KVM) on the host. If that memory region is deregistered from\nKVM using KVM_SET_USER_MEMORY_REGION and the allocated virtual memory\nreused, a privileged guest user could potentially use this flaw to\nescalate their privileges on the host. (CVE-2013-1797, Important)\n\n* A flaw was found in the way KVM emulated IOAPIC (I/O Advanced\nProgrammable Interrupt Controller). A missing validation check in the\nioapic_read_indirect() function could allow a privileged guest user to\ncrash the host, or read a substantial portion of host kernel memory.\n(CVE-2013-1798, Important)\n\n* A race condition in install_user_keyrings(), leading to a NULL pointer\ndereference, was found in the key management facility. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2013-1792, Moderate)\n\n* A NULL pointer dereference in the XFRM implementation could allow a local\nuser who has the CAP_NET_ADMIN capability to cause a denial of service.\n(CVE-2013-1826, Moderate)\n\n* A NULL pointer dereference in the Datagram Congestion Control Protocol\n(DCCP) implementation could allow a local user to cause a denial of\nservice. (CVE-2013-1827, Moderate)\n\n* Information leak flaws in the XFRM implementation could allow a local\nuser who has the CAP_NET_ADMIN capability to leak kernel stack memory to\nuser-space. (CVE-2012-6537, Low)\n\n* Two information leak flaws in the Asynchronous Transfer Mode (ATM)\nsubsystem could allow a local, unprivileged user to leak kernel stack\nmemory to user-space. (CVE-2012-6546, Low)\n\n* An information leak was found in the TUN/TAP device driver in the\nnetworking implementation. A local user with access to a TUN/TAP virtual\ninterface could use this flaw to leak kernel stack memory to user-space.\n(CVE-2012-6547, Low)\n\n* An information leak in the Bluetooth implementation could allow a local\nuser who has the CAP_NET_ADMIN capability to leak kernel stack memory to\nuser-space. (CVE-2013-0349, Low)\n\n* A use-after-free flaw was found in the tmpfs implementation. A local user\nable to mount and unmount a tmpfs file system could use this flaw to cause\na denial of service or, potentially, escalate their privileges.\n(CVE-2013-1767, Low)\n\n* A NULL pointer dereference was found in the Linux kernel's USB Inside Out\nEdgeport Serial Driver implementation. An attacker with physical access to\na system could use this flaw to cause a denial of service. (CVE-2013-1774,\nLow)\n\nRed Hat would like to thank Andrew Honig of Google for reporting\nCVE-2013-1796, CVE-2013-1797, and CVE-2013-1798. CVE-2013-1792 was\ndiscovered by Mateusz Guzik of Red Hat EMEA GSS SEG Team.\n", "reporter": "RedHat", "published": "2013-04-23T04:00:00", "type": "redhat", "title": "(RHSA-2013:0744) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6537", "CVE-2012-6538", "CVE-2012-6546", "CVE-2012-6547", "CVE-2013-0349", "CVE-2013-0913", "CVE-2013-1767", "CVE-2013-1773", "CVE-2013-1774", "CVE-2013-1792", "CVE-2013-1796", "CVE-2013-1797", "CVE-2013-1798", "CVE-2013-1826", "CVE-2013-1827"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:20", "id": "RHSA-2013:0744", "href": "https://access.redhat.com/errata/RHSA-2013:0744", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-09-09T07:20:34", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-PAE-debuginfo", "packageFilename": "kernel-PAE-debuginfo-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.src.rpm", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-348.12.1.el5.noarch.rpm", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.12.1.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.18-348.12.1.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.18-348.12.1.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen-debuginfo", "packageFilename": "kernel-xen-debuginfo-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debuginfo-common", "packageFilename": "kernel-debuginfo-common-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-348.12.1.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-348.12.1.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* Information leaks in the Linux kernel could allow a local, unprivileged\nuser to leak kernel memory to user-space. (CVE-2012-6544, CVE-2012-6545,\nCVE-2013-3222, CVE-2013-3224, CVE-2013-3231, CVE-2013-3235, Low)\n\n* An information leak was found in the Linux kernel's POSIX signals\nimplementation. A local, unprivileged user could use this flaw to bypass\nthe Address Space Layout Randomization (ASLR) security feature.\n(CVE-2013-0914, Low)\n\n* A heap-based buffer overflow in the way the tg3 Ethernet driver parsed\nthe vital product data (VPD) of devices could allow an attacker with\nphysical access to a system to cause a denial of service or, potentially,\nescalate their privileges. (CVE-2013-1929, Low)\n\nThis update also fixes the following bugs:\n\n* Previously on system boot, devices with associated Reserved Memory Region\nReporting (RMRR) information had lost their RMRR information after they\nwere removed from the static identity (SI) domain. Consequently, a system\nunexpectedly terminated in an endless loop due to unexpected NMIs triggered\nby DMA errors. This problem was observed on HP ProLiant Generation 7 (G7)\nand 8 (Gen8) systems. This update prevents non-USB devices that have RMRR\ninformation associated with them from being placed into the SI domain\nduring system boot. HP ProLiant G7 and Gen8 systems that contain devices\nwith the RMRR information now boot as expected. (BZ#957606)\n\n* Previously, the kernel's futex wait code used timeouts that had\ngranularity in milliseconds. Also, when passing these timeouts to system\ncalls, the kernel converted the timeouts to \"jiffies\". Consequently,\nprograms could time out inaccurately which could lead to significant\nlatency problems in certain environments. This update modifies the futex\nwait code to use a high-resolution timer (hrtimer) so the timeout\ngranularity is now in microseconds. Timeouts are no longer converted to\n\"jiffies\" when passed to system calls. Timeouts passed to programs are now\naccurate and the programs time out as expected. (BZ#958021)\n\n* A recent change modified the size of the task_struct structure in the\nfloating point unit (fpu) counter. However, on Intel Itanium systems, this\nchange caused the kernel Application Binary Interface (kABI) to stop\nworking properly when a previously compiled module was loaded, resulting in\na kernel panic. With this update the change causing this bug has been\nreverted so the bug can no longer occur. (BZ#966878)\n\n* The cxgb4 driver previously did not clear data structures used for\nfirmware requests. Consequently, when initializing some Chelsio's\nTerminator 4 (T4) adapters, a probe request could fail because the request\nwas incompatible with the adapter's firmware. This update modifies the\ncxgb4 driver to properly initialize firmware request structures before\nsending a request to the firmware and the problem no longer occurs.\n(BZ#971872)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n", "reporter": "RedHat", "published": "2013-07-10T04:00:00", "type": "redhat", "title": "(RHSA-2013:1034) Low: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-6544", "CVE-2012-6545", "CVE-2013-0914", "CVE-2013-1929", "CVE-2013-3222", "CVE-2013-3224", "CVE-2013-3231", "CVE-2013-3235"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:08:22", "id": "RHSA-2013:1034", "href": "https://access.redhat.com/errata/RHSA-2013:1034", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:NONE/A:NONE/"}}, {"lastseen": "2018-06-07T05:59:00", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debuginfo", "packageFilename": "kernel-rt-debuginfo-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug-debuginfo", "packageFilename": "kernel-rt-debug-debuginfo-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debuginfo-common-x86_64", "packageFilename": "kernel-rt-debuginfo-common-x86_64-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace-debuginfo", "packageFilename": "kernel-rt-trace-debuginfo-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla-debuginfo", "packageFilename": "kernel-rt-vanilla-debuginfo-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "src", "packageName": "kernel-rt", "packageFilename": "kernel-rt-3.2.33-rt50.66.el6rt.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "noarch", "packageName": "mrg-rt-release", "packageFilename": "mrg-rt-release-3.2.33-rt50.66.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "noarch", "packageName": "kernel-rt-doc", "packageFilename": "kernel-rt-doc-3.2.33-rt50.66.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "noarch", "packageName": "kernel-rt-firmware", "packageFilename": "kernel-rt-firmware-3.2.33-rt50.66.el6rt.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt", "packageFilename": "kernel-rt-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug", "packageFilename": "kernel-rt-debug-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-debug-devel", "packageFilename": "kernel-rt-debug-devel-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-devel", "packageFilename": "kernel-rt-devel-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace", "packageFilename": "kernel-rt-trace-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla", "packageFilename": "kernel-rt-vanilla-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-trace-devel", "packageFilename": "kernel-rt-trace-devel-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "3.2.33-rt50.66.el6rt", "arch": "x86_64", "packageName": "kernel-rt-vanilla-devel", "packageFilename": "kernel-rt-vanilla-devel-3.2.33-rt50.66.el6rt.x86_64.rpm", "operator": "lt"}], "description": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way Netlink messages without SCM_CREDENTIALS\n(used for authentication) data set were handled. When not explicitly set,\nthe data was sent but with all values set to 0, including the process ID\nand user ID, causing the Netlink message to appear as if it were sent with\nroot privileges. A local, unprivileged user could use this flaw to send\nspoofed Netlink messages to an application, possibly resulting in the\napplication performing privileged operations if it relied on\nSCM_CREDENTIALS data for the authentication of Netlink messages.\n(CVE-2012-3520, Important)\n\n* A race condition was found in the way asynchronous I/O and fallocate()\ninteracted when using the ext4 file system. A local, unprivileged user\ncould use this flaw to expose random data from an extent whose data blocks\nhave not yet been written, and thus contain data from a deleted file.\n(CVE-2012-4508, Important)\n\n* A use-after-free flaw was found in the Linux kernel's memory management\nsubsystem in the way quota handling for huge pages was performed. A local,\nunprivileged user could use this flaw to cause a denial of service or,\npotentially, escalate their privileges. (CVE-2012-2133, Moderate)\n\n* A use-after-free flaw was found in the madvise() system call\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to cause a denial of service or, potentially, escalate their\nprivileges. (CVE-2012-3511, Moderate)\n\n* A divide-by-zero flaw was found in the TCP Illinois congestion control\nalgorithm implementation in the Linux kernel. If the TCP Illinois\ncongestion control algorithm were in use (the sysctl\nnet.ipv4.tcp_congestion_control variable set to \"illinois\"), a local,\nunprivileged user could trigger this flaw and cause a denial of service.\n(CVE-2012-4565, Moderate)\n\n* An information leak flaw was found in the uname() system call\nimplementation in the Linux kernel. A local, unprivileged user could use\nthis flaw to leak kernel stack memory to user-space by setting the UNAME26\npersonality and then calling the uname() system call. (CVE-2012-0957, Low)\n\n* Buffer overflow flaws were found in the udf_load_logicalvol() function in\nthe Universal Disk Format (UDF) file system implementation in the Linux\nkernel. An attacker with physical access to a system could use these flaws\nto cause a denial of service or escalate their privileges. (CVE-2012-3400,\nLow)\n\n* A flaw was found in the way the msg_namelen variable in the rds_recvmsg()\nfunction of the Linux kernel's Reliable Datagram Sockets (RDS) protocol\nimplementation was initialized. A local, unprivileged user could use this\nflaw to leak kernel stack memory to user-space. (CVE-2012-3430, Low)\n\nRed Hat would like to thank Pablo Neira Ayuso for reporting CVE-2012-3520;\nTheodore Ts'o for reporting CVE-2012-4508; Shachar Raindel for reporting\nCVE-2012-2133; and Kees Cook for reporting CVE-2012-0957. Upstream\nacknowledges Dmitry Monakhov as the original reporter of CVE-2012-4508. The\nCVE-2012-4565 issue was discovered by Rodrigo Freire of Red Hat, and the\nCVE-2012-3430 issue was discovered by the Red Hat InfiniBand team.\n\nThis update also fixes multiple bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which upgrade the kernel-rt\nkernel to version kernel-rt-3.2.33-rt50, and correct these issues. The\nsystem must be rebooted for this update to take effect.\n", "reporter": "RedHat", "published": "2012-12-04T05:00:00", "type": "redhat", "title": "(RHSA-2012:1491) Important: kernel-rt security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0957", "CVE-2012-2133", "CVE-2012-3400", "CVE-2012-3430", "CVE-2012-3511", "CVE-2012-3520", "CVE-2012-4508", "CVE-2012-4565"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-07T08:58:29", "id": "RHSA-2012:1491", "href": "https://access.redhat.com/errata/RHSA-2012:1491", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-06T18:04:33", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "kernel-debuginfo-common-i686", "packageFilename": "kernel-debuginfo-common-i686-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "src", "packageName": "kernel", "packageFilename": "kernel-2.6.32-431.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "kernel-debuginfo-common-x86_64", "packageFilename": "kernel-debuginfo-common-x86_64-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "perf", "packageFilename": "perf-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageName": "kernel-abi-whitelists", "packageFilename": "kernel-abi-whitelists-2.6.32-431.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "i686", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-431.el6.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageName": "kernel-firmware", "packageFilename": "kernel-firmware-2.6.32-431.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.32-431.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "x86_64", "packageName": "perf", "packageFilename": "perf-2.6.32-431.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel-debuginfo-common-ppc64", "packageFilename": "kernel-debuginfo-common-ppc64-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "perf", "packageFilename": "perf-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel", "packageFilename": "kernel-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel-bootwrapper", "packageFilename": "kernel-bootwrapper-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "ppc64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-431.el6.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "perf-debuginfo", "packageFilename": "perf-debuginfo-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-debug-debuginfo", "packageFilename": "kernel-debug-debuginfo-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "python-perf-debuginfo", "packageFilename": "python-perf-debuginfo-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-debuginfo", "packageFilename": "kernel-debuginfo-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-debuginfo-common-s390x", "packageFilename": "kernel-debuginfo-common-s390x-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-kdump-debuginfo", "packageFilename": "kernel-kdump-debuginfo-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "python-perf", "packageFilename": "python-perf-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel", "packageFilename": "kernel-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-debug", "packageFilename": "kernel-debug-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-debug-devel", "packageFilename": "kernel-debug-devel-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.32-431.el6.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "2.6.32-431.el6", "arch": "s390x", "packageName": "perf", "packageFilename": "perf-2.6.32-431.el6.s390x.rpm", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* A flaw was found in the way the Linux kernel's IPv6 implementation\nhandled certain UDP packets when the UDP Fragmentation Offload (UFO)\nfeature was enabled. A remote attacker could use this flaw to crash the\nsystem or, potentially, escalate their privileges on the system.\n(CVE-2013-4387, Important)\n\n* A flaw was found in the way the Linux kernel handled the creation of\ntemporary IPv6 addresses. If the IPv6 privacy extension was enabled\n(/proc/sys/net/ipv6/conf/eth0/use_tempaddr set to '2'), an attacker on the\nlocal network could disable IPv6 temporary address generation, leading to a\npotential information disclosure. (CVE-2013-0343, Moderate)\n\n* A flaw was found in the way the Linux kernel handled HID (Human Interface\nDevice) reports with an out-of-bounds Report ID. An attacker with physical\naccess to the system could use this flaw to crash the system or,\npotentially, escalate their privileges on the system. (CVE-2013-2888,\nModerate)\n\n* An off-by-one flaw was found in the way the ANSI CPRNG implementation in\nthe Linux kernel processed non-block size aligned requests. This could lead\nto random numbers being generated with less bits of entropy than expected\nwhen ANSI CPRNG was used. (CVE-2013-4345, Moderate)\n\n* It was found that the fix for CVE-2012-2375 released via RHSA-2012:1580\naccidentally removed a check for small-sized result buffers. A local,\nunprivileged user with access to an NFSv4 mount with ACL support could use\nthis flaw to crash the system or, potentially, escalate their privileges on\nthe system . (CVE-2013-4591, Moderate)\n\n* A flaw was found in the way IOMMU memory mappings were handled when\nmoving memory slots. A malicious user on a KVM host who has the ability to\nassign a device to a guest could use this flaw to crash the host.\n(CVE-2013-4592, Moderate)\n\n* Heap-based buffer overflow flaws were found in the way the Zeroplus and\nPantherlord/GreenAsia game controllers handled HID reports. An attacker\nwith physical access to the system could use these flaws to crash the\nsystem or, potentially, escalate their privileges on the system.\n(CVE-2013-2889, CVE-2013-2892, Moderate)\n\n* Two information leak flaws were found in the logical link control (LLC)\nimplementation in the Linux kernel. A local, unprivileged user could use\nthese flaws to leak kernel stack memory to user space. (CVE-2012-6542,\nCVE-2013-3231, Low)\n\n* A heap-based buffer overflow in the way the tg3 Ethernet driver parsed\nthe vital product data (VPD) of devices could allow an attacker with\nphysical access to a system to cause a denial of service or, potentially,\nescalate their privileges. (CVE-2013-1929, Low)\n\n* Information leak flaws in the Linux kernel could allow a privileged,\nlocal user to leak kernel memory to user space. (CVE-2012-6545,\nCVE-2013-1928, CVE-2013-2164, CVE-2013-2234, Low)\n\n* A format string flaw was found in the Linux kernel's block layer.\nA privileged, local user could potentially use this flaw to escalate their\nprivileges to kernel level (ring0). (CVE-2013-2851, Low)\n\nRed Hat would like to thank Stephan Mueller for reporting CVE-2013-4345,\nand Kees Cook for reporting CVE-2013-2851.\n\nThis update also fixes several hundred bugs and adds enhancements. Refer to\nthe Red Hat Enterprise Linux 6.5 Release Notes for information on the most\nsignificant of these changes, and the Technical Notes for further\ninformation, both linked to in the References.\n\nAll Red Hat Enterprise Linux 6 users are advised to install these updated\npackages, which correct these issues, and fix the bugs and add the\nenhancements noted in the Red Hat Enterprise Linux 6.5 Release Notes and\nTechnical Notes. The system must be rebooted for this update to take\neffect.\n", "reporter": "RedHat", "published": "2013-11-21T05:00:00", "type": "redhat", "title": "(RHSA-2013:1645) Important: Red Hat Enterprise Linux 6 kernel update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-2375", "CVE-2012-6542", "CVE-2012-6545", "CVE-2013-0343", "CVE-2013-1928", "CVE-2013-1929", "CVE-2013-2164", "CVE-2013-2234", "CVE-2013-2851", "CVE-2013-2888", "CVE-2013-2889", "CVE-2013-2892", "CVE-2013-3231", "CVE-2013-4345", "CVE-2013-4387", "CVE-2013-4591", "CVE-2013-4592"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:06", "id": "RHSA-2013:1645", "href": "https://access.redhat.com/errata/RHSA-2013:1645", "cvss": {"score": 6.2, "vector": "AV:LOCAL/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:46", "references": [], "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-1646-1\r\nNovember 30, 2012\r\n\r\nlinux vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 12.10\r\n\r\nSummary:\r\n\r\nSeveral security issues were fixed in the kernel.\r\n\r\nSoftware Description:\r\n- linux: Linux kernel\r\n\r\nDetails:\r\n\r\nBrad Spengler discovered a flaw in the Linux kernel&#39;s uname system call. An\r\nunprivileged user could exploit this flaw to read kernel stack memory.\r\n&#40;CVE-2012-0957&#41;\r\n\r\nRodrigo Freire discovered a flaw in the Linux kernel&#39;s TCP illinois\r\ncongestion control algorithm. A local attacker could use this to cause a\r\ndenial of service. &#40;CVE-2012-4565&#41;\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 12.10:\r\n linux-image-3.5.0-19-generic 3.5.0-19.30\r\n linux-image-3.5.0-19-highbank 3.5.0-19.30\r\n linux-image-3.5.0-19-omap 3.5.0-19.30\r\n linux-image-3.5.0-19-powerpc-smp 3.5.0-19.30\r\n linux-image-3.5.0-19-powerpc64-smp 3.5.0-19.30\r\n\r\nAfter a standard system update you need to reboot your computer to make\r\nall the necessary changes.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-1646-1\r\n CVE-2012-0957, CVE-2012-4565\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/linux/3.5.0-19.30\r\n\r\n\r\nAttached Message Part\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2012-12-02T00:00:00", "title": "[USN-1646-1] Linux kernel vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:46", "vector": "NONE", "value": 2.1}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2012-4565", "CVE-2012-0957"], "modified": "2012-12-02T00:00:00", "id": "SECURITYVULNS:DOC:28785", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:28785", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T11:09:49", "references": ["https://vulners.com/securityvulns/securityvulns:doc:28785"], "description": "Information leakage, DoS.", "edition": 1, "reporter": "BUGTRAQ", "published": "2012-12-02T00:00:00", "title": "Linux security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:49", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "kernel", "version": "3.0", "operator": "eq"}, {"name": "kernel", "version": "2.6", "operator": "eq"}, {"name": "kernel", "version": "3.5", "operator": "eq"}, {"name": "kernel", "version": "3.2", "operator": "eq"}], "cvelist": ["CVE-2012-4565", "CVE-2012-0957"], "modified": "2012-12-02T00:00:00", "id": "SECURITYVULNS:VULN:12730", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12730", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:NONE/A:NONE/"}}], "debian": [{"lastseen": "2016-09-02T18:35:58", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "6", "packageVersion": "2.6.32-48squeeze3", "arch": "all", "packageFilename": "linux-2.6_2.6.32-48squeeze3_all.deb", "packageName": "linux-2.6", "operator": "lt"}], "description": "Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2012-2121](<https://security-tracker.debian.org/tracker/CVE-2012-2121>)\n\nBenjamin Herrenschmidt and Jason Baron discovered issues with the IOMMU mapping of memory slots used in KVM device assignment. Local users with the ability to assign devices could cause a denial of service due to a memory page leak.\n\n * [CVE-2012-3552](<https://security-tracker.debian.org/tracker/CVE-2012-3552>)\n\nHafid Lin reported an issue in the IP networking subsystem. A remote user can cause a denial of service (system crash) on servers running applications that set options on sockets which are actively being processed.\n\n * [CVE-2012-4461](<https://security-tracker.debian.org/tracker/CVE-2012-4461>)\n\nJon Howell reported a denial of service issue in the KVM subsystem. On systems that do not support the XSAVE feature, local users with access to the /dev/kvm interface can cause a system crash.\n\n * [CVE-2012-4508](<https://security-tracker.debian.org/tracker/CVE-2012-4508>)\n\nDmitry Monakhov and Theodore Ts'o reported a race condition in the ext4 filesystem. Local users could gain access to sensitive kernel memory.\n\n * [CVE-2012-6537](<https://security-tracker.debian.org/tracker/CVE-2012-6537>)\n\nMathias Krause discovered information leak issues in the Transformation user configuration interface. Local users with the CAP_NET_ADMIN capability can gain access to sensitive kernel memory.\n\n * [CVE-2012-6539](<https://security-tracker.debian.org/tracker/CVE-2012-6539>)\n\nMathias Krause discovered an issue in the networking subsystem. Local users on 64-bit systems can gain access to sensitive kernel memory.\n\n * [CVE-2012-6540](<https://security-tracker.debian.org/tracker/CVE-2012-6540>)\n\nMathias Krause discovered an issue in the Linux virtual server subsystem. Local users can gain access to sensitive kernel memory. Note: this issue does not affect Debian provided kernels, but may affect custom kernels built from Debian's linux-source-2.6.32 package.\n\n * [CVE-2012-6542](<https://security-tracker.debian.org/tracker/CVE-2012-6542>)\n\nMathias Krause discovered an issue in the LLC protocol support code. Local users can gain access to sensitive kernel memory.\n\n * [CVE-2012-6544](<https://security-tracker.debian.org/tracker/CVE-2012-6544>)\n\nMathias Krause discovered issues in the Bluetooth subsystem. Local users can gain access to sensitive kernel memory.\n\n * [CVE-2012-6545](<https://security-tracker.debian.org/tracker/CVE-2012-6545>)\n\nMathias Krause discovered issues in the Bluetooth RFCOMM protocol support. Local users can gain access to sensitive kernel memory.\n\n * [CVE-2012-6546](<https://security-tracker.debian.org/tracker/CVE-2012-6546>)\n\nMathias Krause discovered issues in the ATM networking support. Local users can gain access to sensitive kernel memory.\n\n * [CVE-2012-6548](<https://security-tracker.debian.org/tracker/CVE-2012-6548>)\n\nMathias Krause discovered an issue in the UDF file system support. Local users can obtain access to sensitive kernel memory.\n\n * [CVE-2012-6549](<https://security-tracker.debian.org/tracker/CVE-2012-6549>)\n\nMathias Krause discovered an issue in the isofs file system support. Local users can obtain access to sensitive kernel memory.\n\n * [CVE-2013-0349](<https://security-tracker.debian.org/tracker/CVE-2013-0349>)\n\nAnderson Lizardo discovered an issue in the Bluetooth Human Interface Device Protocol (HIDP) stack. Local users can obtain access to sensitive kernel memory.\n\n * [CVE-2013-0914](<https://security-tracker.debian.org/tracker/CVE-2013-0914>)\n\nEmese Revfy discovered an issue in the signal implementation. Local users may be able to bypass the address space layout randomization (ASLR) facility due to a leaking of information to child processes.\n\n * [CVE-2013-1767](<https://security-tracker.debian.org/tracker/CVE-2013-1767>)\n\nGreg Thelen reported an issue in the tmpfs virtual memory filesystem. Local users with sufficient privilege to mount filesystems can cause a denial of service or possibly elevated privileges due to a use-after free defect.\n\n * [CVE-2013-1773](<https://security-tracker.debian.org/tracker/CVE-2013-1773>)\n\nAlan Stern provided a fix for a defect in the UTF8-&gt;UTF16 string conversion facility used by the VFAT filesystem. A local user could cause a buffer overflow condition, resulting in a denial of service or potentially elevated privileges.\n\n * [CVE-2013-1774](<https://security-tracker.debian.org/tracker/CVE-2013-1774>)\n\nWolfgang Frisch provided a fix for a NULL-pointer dereference defect in the driver for some serial USB devices from Inside Out Networks. Local users with permission to access these devices can create a denial of service (kernel oops) by causing the device to be removed while it is in use.\n\n * [CVE-2013-1792](<https://security-tracker.debian.org/tracker/CVE-2013-1792>)\n\nMateusz Guzik of Red Hat EMEA GSS SEG Team discovered a race condition in the access key retention support in the kernel. A local user could cause a denial of service (NULL pointer dereference).\n\n * [CVE-2013-1796](<https://security-tracker.debian.org/tracker/CVE-2013-1796>)\n\nAndrew Honig of Google reported an issue in the KVM subsystem. A user in a guest operating system could corrupt kernel memory, resulting in a denial of service.\n\n * [CVE-2013-1798](<https://security-tracker.debian.org/tracker/CVE-2013-1798>)\n\nAndrew Honig of Google reported an issue in the KVM subsystem. A user in a guest operating system could cause a denial of service due to a use after-free defect.\n\n * [CVE-2013-1826](<https://security-tracker.debian.org/tracker/CVE-2013-1826>)\n\nMathias Krause discovered an issue in the Transformation (XFRM)