Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-2020-1
HistoryNov 08, 2013 - 12:00 a.m.

Linux kernel (Raring HWE) vulnerabilities

2013-11-0800:00:00
ubuntu.com
51

6.3 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.025 Low

EPSS

Percentile

89.9%

JSON

Releases

  • Ubuntu 12.04

Packages

  • linux-lts-raring - Linux hardware enablement kernel from Raring

Details

An information leak was discovered in the handling of ICMPv6 Router
Advertisement (RA) messages in the Linux kernel’s IPv6 network stack. A
remote attacker could exploit this flaw to cause a denial of service
(excessive retries and address-generation outage), and consequently obtain
sensitive information. (CVE-2013-0343)

Dan Carpenter discovered an information leak in the HP Smart Array and
Compaq SMART2 disk-array driver in the Linux kernel. A local user could
exploit this flaw to obtain sensitive information from kernel memory.
(CVE-2013-2147)

Kees Cook discovered flaw in the Human Interface Device (HID) subsystem
when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could
leverage this flaw to cause a denial of service via a specially crafted
device. (CVE-2013-2889)

Kees Cook discovered another flaw in the Human Interface Device (HID)
subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF,
CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially
proximate attacker can leverage this flaw to cause a denial of service vias
a specially crafted device. (CVE-2013-2893)

Kees Cook discovered a flaw in the Human Interface Device (HID) subsystem
of the Linux kernel when CONFIG_HID_LENOVO_TPKBD is enabled. A physically
proximate attacker could exploit this flaw to cause a denial of service via
a specially crafted device. (CVE-2013-2894)

Kees Cook discovered another flaw in the Human Interface Device (HID)
subsystem of the Linux kernel when CONFIG_HID_LOGITECH_DJ is enabled. A
physically proximate attacker could cause a denial of service (OOPS) or
obtain sensitive information from kernel memory via a specially crafted
device. (CVE-2013-2895)

Kees Cook discovered yet another flaw in the Human Interface Device (HID)
subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A
physically proximate attacker could leverage this flaw to cause a denial of
service (OOPS) via a specially crafted device. (CVE-2013-2897)

Miroslav Vadkerti discovered a flaw in how the permissions for network
sysctls are handled in the Linux kernel. An unprivileged local user could
exploit this flaw to have privileged access to files in /proc/sys/net/.
(CVE-2013-4270)

Wannes Rombouts reported a vulnerability in the networking tuntap interface
of the Linux kernel. A local user with the CAP_NET_ADMIN capability could
leverage this flaw to gain full admin privileges. (CVE-2013-4343)

OSVersionArchitecturePackageVersionFilename
Ubuntu12.04noarchlinux-image-3.8.0-33-generic<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchblock-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchcrypto-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchfat-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchfb-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchfirewire-core-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchfloppy-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchfs-core-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchfs-secondary-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Ubuntu12.04noarchinput-modules-3.8.0-33-generic-di<Β 3.8.0-33.48~precise1UNKNOWN
Rows per page:
1-10 of 391

Related

ubuntu 18
openvas 64
nessus 28
securityvulns 4
fedora 16
veracode 13
redhat 1
ubuntucve 10
debiancve 10
prion 10
cve 10
amazon 1
f5 1
seebug 1
oraclelinux 2
mageia 10
ubuntu
ubuntu
Linux kernel vulnerabilities
2013-11-08 00:00:00
Linux kernel vulnerabilities
2013-11-08 00:00:00
Linux kernel (EC2) vulnerabilities
2013-11-08 00:00:00
openvas
openvas
Ubuntu Update for linux-lts-raring USN-2020-1
2013-11-18 00:00:00
Ubuntu Update for linux-lts-raring USN-2020-1
2013-11-18 00:00:00
Ubuntu Update for linux USN-2015-1
2013-11-18 00:00:00
nessus
nessus
Ubuntu 12.04 LTS : linux-lts-raring vulnerabilities (USN-2020-1)
2013-11-09 00:00:00
Ubuntu 13.04 : linux vulnerabilities (USN-2023-1)
2013-11-09 00:00:00
Ubuntu 10.04 LTS : linux vulnerabilities (USN-2015-1)
2013-11-09 00:00:00
securityvulns
securityvulns
[USN-2015-1] Linux kernel vulnerabilities
2013-11-13 00:00:00
Linux kernel security vulnerabilities
2013-11-26 00:00:00
[USN-2049-1] Linux kernel vulnerabilities
2013-12-09 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: kernel-3.11.1-200.fc19
2013-09-19 02:05:03
[SECURITY] Fedora 19 Update: kernel-3.11.2-201.fc19
2013-10-01 01:59:01
[SECURITY] Fedora 19 Update: kernel-3.10.11-200.fc19
2013-09-13 01:05:37
veracode
veracode
Sensitive Information DIsclosure
2019-05-02 04:56:55
Arbitrary Code Execution
2019-05-02 04:56:54
Heap-based Out-Of-Bounds Write
2019-05-02 04:56:54
redhat
redhat
(RHSA-2013:1490) Important: kernel-rt security and bug fix update
2013-10-31 00:00:00
ubuntucve
ubuntucve
CVE-2013-4270
2013-11-08 00:00:00
CVE-2013-2147
2013-06-07 00:00:00
CVE-2013-0343
2013-02-28 00:00:00
debiancve
debiancve
CVE-2013-4270
2013-12-09 18:55:00
CVE-2013-2147
2013-06-07 14:03:00
CVE-2013-0343
2013-02-28 19:55:00
prion
prion
Code injection
2013-12-09 18:55:00
Heap overflow
2013-09-16 13:01:00
Design/Logic Flaw
2013-06-07 14:03:00
cve
cve
CVE-2013-4270
2013-12-09 18:55:00
CVE-2013-2897
2013-09-16 13:01:00
CVE-2013-0343
2013-02-28 19:55:00
amazon
amazon
Medium: kernel
2013-09-24 19:43:00
f5
f5
K56923528 : Linux kernel vulnerability CVE-2013-4343
2018-09-14 00:00:00
seebug
seebug
Linux Kernel TUNSETIFFι‡Šζ”ΎεŽι‡η”¨ζœ¬εœ°ζ‹’η»ζœεŠ‘ζΌζ΄ž(CVE-2013-4343)
2013-09-16 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security and bug fix update (Unbreakable Enterprise Kernel Release 3 QU1)
2014-02-11 00:00:00
Unbreakable Enterprise Kernel security update
2013-11-28 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2013-12-18 03:19:07
Updated kernel-rt package fixes security vulnerabilites.
2013-11-22 23:04:02
Updated kernel package fixes security vulnerabilites.
2013-11-22 22:57:32

6.3 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.025 Low

EPSS

Percentile

89.9%

JSON
Related for USN-2020-1
ubuntu18openvas64nessus28securityvulns4fedora16veracode13redhat1ubuntucve10debiancve10prion10cve10amazon1f51seebug1oraclelinux2mageia10