Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2012-2136
HistoryMay 29, 2012 - 12:00 a.m.

CVE-2012-2136

2012-05-2900:00:00
ubuntu.com
ubuntu.com
12

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

The sock_alloc_send_pskb function in net/core/sock.c in the Linux kernel
before 3.4.5 does not properly validate a certain length value, which
allows local users to cause a denial of service (heap-based buffer overflow
and system crash) or possibly gain privileges by leveraging access to a
TUN/TAP device.

Bugs

Notes

Author Note
jdstrand linux-armadaxp is maintained by OEM
tyhicks No upstream fix yet, but an initial patch is under review (see References) Patch tags indicate that 2.6.27+ is affected.
OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchlinux<Β 2.6.24-32.105UNKNOWN
ubuntu10.04noarchlinux<Β 2.6.32-42.95UNKNOWN
ubuntu11.04noarchlinux<Β 2.6.38-15.65UNKNOWN
ubuntu11.10noarchlinux<Β 3.0.0-24.40UNKNOWN
ubuntu12.04noarchlinux<Β 3.2.0-29.46UNKNOWN
ubuntu12.04noarchlinux-armadaxp<Β 3.2.0-1606.9UNKNOWN
ubuntu10.04noarchlinux-ec2<Β 2.6.32-347.52UNKNOWN
ubuntu10.04noarchlinux-lts-backport-natty<Β 2.6.38-15.65~lucid1UNKNOWN
ubuntu10.04noarchlinux-lts-backport-oneiric<Β 3.0.0-24.40~lucid1UNKNOWN
ubuntu11.04noarchlinux-ti-omap4<Β 2.6.38-1209.25UNKNOWN
Rows per page:
1-10 of 121

Related

nessus 37
redhat 3
openvas 42
centos 2
ubuntu 11
oraclelinux 7
debiancve 1
amazon 1
prion 1
seebug 1
cve 1
securityvulns 4
suse 2
nessus
nessus
Oracle Linux 5 : ELSA-2012-0690-1: / kernel (ELSA-2012-06901)
2023-09-07 00:00:00
CentOS 5 : kernel (CESA-2012:0690)
2012-05-31 00:00:00
RHEL 5 : kernel (RHSA-2012:0690)
2012-05-30 00:00:00
redhat
redhat
(RHSA-2012:0690) Important: kernel security and bug fix update
2012-05-29 00:00:00
(RHSA-2012:1087) Important: kernel security and bug fix update
2012-07-17 00:00:00
(RHSA-2012:0743) Important: kernel security and bug fix update
2012-06-18 00:00:00
openvas
openvas
RedHat Update for kernel RHSA-2012:0690-01
2012-06-01 00:00:00
CentOS Update for kernel CESA-2012:0690 centos5
2012-07-30 00:00:00
Ubuntu: Security Advisory (USN-1598-1)
2012-10-11 00:00:00
centos
centos
kernel security update
2012-05-29 22:57:55
kernel, perf, python security update
2012-06-19 10:27:24
ubuntu
ubuntu
Linux kernel vulnerability
2012-10-09 00:00:00
Linux kernel vulnerabilities
2012-08-10 00:00:00
Linux kernel (EC2) vulnerabilities
2012-08-10 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2012-05-30 00:00:00
1
2012-05-30 00:00:00
Unbreakable Enterprise kernel security and bugfix update
2012-06-19 00:00:00
debiancve
debiancve
CVE-2012-2136
2012-08-09 10:29:00
amazon
amazon
Medium: kernel
2012-06-10 11:46:00
prion
prion
Heap overflow
2012-08-09 10:29:00
seebug
seebug
Linux kernel 2.6.x 'sock_alloc_send_pskb()'ε‡½ζ•°ε †ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2012-05-30 00:00:00
cve
cve
CVE-2012-2136
2012-08-09 10:29:00
securityvulns
securityvulns
[USN-1531-1] Linux kernel vulnerabilities
2012-08-13 00:00:00
[USN-1529-1] Linux kernel vulnerabilities
2012-08-13 00:00:00
Linux kernel multiple security vulnerabilities
2012-08-13 00:00:00
suse
suse
Security update for Linux kernel (important)
2012-06-26 02:08:23
Security update for Linux kernel (important)
2012-10-24 09:08:54

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for UB:CVE-2012-2136
nessus37redhat3openvas42centos2ubuntu11oraclelinux7debiancve1amazon1prion1seebug1cve1securityvulns4suse2