7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.028 Low
EPSS
Percentile
90.6%
Heap-based buffer overflow in the udf_load_logicalvol function in
fs/udf/super.c in the Linux kernel before 3.4.5 allows remote attackers to
cause a denial of service (system crash) or possibly have unspecified other
impact via a crafted UDF filesystem.
Author | Note |
---|---|
jdstrand | linux-armadaxp is maintained by OEM |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | linux | < 2.6.32-42.96 | UNKNOWN |
ubuntu | 11.04 | noarch | linux | < 2.6.38-15.66 | UNKNOWN |
ubuntu | 11.10 | noarch | linux | < 3.0.0-24.40 | UNKNOWN |
ubuntu | 12.04 | noarch | linux | < 3.2.0-29.46 | UNKNOWN |
ubuntu | 12.04 | noarch | linux-armadaxp | < 3.2.0-1606.9 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-ec2 | < 2.6.32-347.53 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-lts-backport-natty | < 2.6.38-15.66~lucid1 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-lts-backport-oneiric | < 3.0.0-24.40~lucid1 | UNKNOWN |
ubuntu | 11.10 | noarch | linux-ti-omap4 | < 3.0.0-1214.26 | UNKNOWN |
ubuntu | 12.04 | noarch | linux-ti-omap4 | < 3.2.0-1417.23 | UNKNOWN |
www.openwall.com/lists/oss-security/2012/07/03/1
launchpad.net/bugs/cve/CVE-2012-3400
nvd.nist.gov/vuln/detail/CVE-2012-3400
security-tracker.debian.org/tracker/CVE-2012-3400
ubuntu.com/security/notices/USN-1514-1
ubuntu.com/security/notices/USN-1529-1
ubuntu.com/security/notices/USN-1532-1
ubuntu.com/security/notices/USN-1533-1
ubuntu.com/security/notices/USN-1539-1
ubuntu.com/security/notices/USN-1555-1
ubuntu.com/security/notices/USN-1556-1
ubuntu.com/security/notices/USN-1557-1
ubuntu.com/security/notices/USN-1562-1
www.cve.org/CVERecord?id=CVE-2012-3400