Lucene search
UbuntuUSN-2282-1HistoryJul 16, 2014 - 12:00 a.m.
Linux kernel vulnerabilities
2014-07-1600:00:00
ubuntu.com
40
6.8 Medium
AI Score
Confidence
High
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.3%
Releases
- Ubuntu 10.04
Packages
- linux - Linux kernel
Details
Sasha Levin reported a flaw in the Linux kernel’s point-to-point protocol
(PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user
could exploit this flaw to gain administrative privileges. (CVE-2014-4943)
An flaw was discovered in the Linux kernel’s audit subsystem when auditing
certain syscalls. A local attacker could exploit this flaw to obtain
potentially sensitive single-bit values from kernel memory or cause a
denial of service (OOPS). (CVE-2014-3917)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 10.04 | noarch | linux-image-2.6.32-64-preempt | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | block-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | char-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | crypto-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | fat-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | fb-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | firewire-core-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | floppy-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | fs-core-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
| Ubuntu | 10.04 | noarch | fs-secondary-modules-2.6.32-64-generic-di | < 2.6.32-64.128 | UNKNOWN |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-2281-1)
2014-07-21 00:00:00
Ubuntu: Security Advisory (USN-2282-1)
2014-07-21 00:00:00
Ubuntu: Security Advisory (USN-2287-1)
2014-07-21 00:00:00
ubuntu
ubuntu
Linux kernel (EC2) vulnerabilities
2014-07-16 00:00:00
Linux kernel (Saucy HWE) vulnerabilities
2014-07-17 00:00:00
Linux kernel (Trusty HWE) vulnerability
2014-08-13 00:00:00
nessus
nessus
Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2281-1)
2014-07-17 00:00:00
Ubuntu 10.04 LTS : linux vulnerabilities (USN-2282-1)
2014-07-17 00:00:00
CentOS 7 : kernel (CESA-2014:1281)
2014-09-23 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2014-09-22 00:00:00
kernel security and bug fix update
2014-09-04 00:00:00
Unbreakable Enterprise kernel security update
2014-09-10 00:00:00
ubuntucve
ubuntucve
CVE-2014-4943
2014-07-16 00:00:00
CVE-2014-3917
2014-06-05 00:00:00
securityvulns
securityvulns
[oss-security] CVE-2014-4943: Linux privilege escalation in ppp over l2tp sockets
2014-07-21 00:00:00
Linux syscall auditing DoS
2014-06-13 00:00:00
[USN-2289-1] Linux kernel vulnerabilities
2014-07-21 00:00:00
debiancve
debiancve
CVE-2014-4943
2014-07-19 19:55:00
CVE-2014-3917
2014-06-05 17:55:00
prion
prion
Design/Logic Flaw
2014-07-19 19:55:00
Denial of service
2014-06-05 17:55:00
canvas
canvas
Immunity Canvas: LINUX_PPPOL2TP
2014-07-19 19:55:00
cve
cve
CVE-2014-4943
2014-07-19 19:55:00
CVE-2014-3917
2014-06-05 17:55:00
exploitdb
exploitdb
Linux x86 - Socket Re-use Shellcode 50 bytes
2014-07-14 00:00:00
Linux Kernel 3.15.6 - PPP-over-L2TP Socket Level Handling Crash (PoC)
2015-03-04 00:00:00
f5
f5
SOL15482 - Linux kernel vulnerability CVE-2014-4943
2014-08-05 00:00:00
K15482 : Linux kernel vulnerability CVE-2014-4943
2014-08-05 00:00:00
redhat
redhat
(RHSA-2014:1025) Important: kernel security and bug fix update
2014-08-06 00:00:00
(RHSA-2014:1143) Moderate: kernel security and bug fix update
2014-09-03 00:00:00
(RHSA-2014:1281) Moderate: kernel security and bug fix update
2014-09-22 00:00:00
centos
centos
kernel, perf, python security update
2014-09-23 05:23:08
kernel security update
2014-09-04 07:18:06
kernel, perf, python security update
2014-07-25 12:19:52
exploitpack
exploitpack
Linux Kernel 3.15.6 - PPP-over-L2TP Socket Level Handling Crash (PoC)
2015-03-04 00:00:00
zdt
zdt
Linux Kernel PPP-over-L2TP Socket Level Handling - Crash PoC
2015-03-05 00:00:00
altlinux
altlinux
osv
osv
linux - security update
2014-07-29 00:00:00
linux-2.6 - security update
2014-12-09 00:00:00
linux-2.6 - security update
2014-07-12 00:00:00
debian
debian
[SECURITY] [DSA 2992-1] linux security update
2014-07-29 06:42:00
[SECURITY] [DSA 2992-1] linux security update
2014-07-29 06:42:00
mageia
mageia
Updated kernel packages fixes security vulnerabilities.
2014-06-19 00:50:01
Updated kernel packages fixes security vulnerabilities
2014-06-23 01:13:23
Updated kernel-tmb package fixes security vulnerabilities
2014-08-18 13:14:56
kitploit
kitploit
Tails 1.1.1 - The Amnesic Incognito Live System
2014-09-09 02:58:00
suse
suse
Security update for the Linux Kernel (important)
2014-09-16 19:04:20
Security update for Linux kernel (important)
2014-10-22 21:04:47
Security update for Linux kernel (important)
2014-10-23 01:08:35
veracode
veracode
Information Disclosure
2019-05-02 05:03:36
Information Disclosure
2019-05-02 05:03:36
Privilege Escalation
2019-05-02 05:03:36
6.8 Medium
AI Score
Confidence
High
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.3%
Related for USN-2282-1