Lucene search

K
ubuntuUbuntuUSN-1671-1
HistoryDec 19, 2012 - 12:00 a.m.

Linux kernel vulnerability

2012-12-1900:00:00
ubuntu.com
62

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

AI Score

5.6

Confidence

High

EPSS

0

Percentile

10.1%

Releases

  • Ubuntu 12.10

Packages

  • linux - Linux kernel

Details

Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem
that can expose stale data. An unprivileged user could exploit this flaw to
cause an information leak. (CVE-2012-4508)

A flaw was discovered in the Linux kernel’s handling of new hot-plugged
memory. An unprivileged local user could exploit this flaw to cause a
denial of service by crashing the system. (CVE-2012-5517)

An information leak was discovered in the Linux kernel’s /dev/dvb device. A
local user could exploit this flaw to obtain sensitive information from the
kernel’s stack memory. (CVE-2013-1928)

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

AI Score

5.6

Confidence

High

EPSS

0

Percentile

10.1%