Linux kernel (OMAP4) vulnerabilities

2013-08-20T00:00:00
ID USN-1933-1
Type ubuntu
Reporter Ubuntu
Modified 2013-08-20T00:00:00

Description

Chanam Park reported a Null pointer flaw in the Linux kernel’s Ceph client. A remote attacker could exploit this flaw to cause a denial of service (system crash). (CVE-2013-1059)

An information leak was discovered in the Linux kernel’s fanotify interface. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2148)

Jonathan Salwan discovered an information leak in the Linux kernel’s cdrom driver. A local user can exploit this leak to obtain sensitive information from kernel memory if the CD-ROM drive is malfunctioning. (CVE-2013-2164)

Kees Cook discovered a format string vulnerability in the Linux kernel’s disk block layer. A local user with administrator privileges could exploit this flaw to gain kernel privileges. (CVE-2013-2851)