How to Buy
Ubuntu Security Notice (C) 2008-2016 Canonical, Inc. / NASL script (C) 2008-2016 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related
Dirk Nehring discovered that the IPsec protocol stack did not
correctly handle fragmented ESP packets. A remote attacker could
exploit this to crash the system, leading to a denial of service.
Johannes Bauer discovered that the 64bit kernel did not correctly
handle hrtimer updates. A local attacker could request a large
expiration value and cause the system to hang, leading to a denial of
Tavis Ormandy discovered that the ia32 emulation under 64bit kernels
did not fully clear uninitialized data. A local attacker could read
private kernel memory, leading to a loss of privacy. (CVE-2008-0598)
Jan Kratochvil discovered that PTRACE did not correctly handle certain
calls when running under 64bit kernels. A local attacker could exploit
this to crash the system, leading to a denial of service.
Wei Wang discovered that the ASN.1 decoding routines in CIFS and SNMP
NAT did not correctly handle certain length values. Remote attackers
could exploit this to execute arbitrary code or crash the system.
Paul Marks discovered that the SIT interfaces did not correctly manage
allocated memory. A remote attacker could exploit this to fill all
available memory, leading to a denial of service. (CVE-2008-2136)
David Miller and Jan Lieskovsky discovered that the Sparc kernel did
not correctly range-check memory regions allocated with mmap. A local
attacker could exploit this to crash the system, leading to a denial
of service. (CVE-2008-2137)
The sys_utimensat system call did not correctly check file permissions
in certain situations. A local attacker could exploit this to modify
the file times of arbitrary files which could lead to a denial of
Brandon Edwards discovered that the DCCP system in the kernel did not
correctly check feature lengths. A remote attacker could exploit this
to execute arbitrary code. (CVE-2008-2358)
A race condition was discovered between ptrace and utrace in the
kernel. A local attacker could exploit this to crash the system,
leading to a denial of service. (CVE-2008-2365)
The copy_to_user routine in the kernel did not correctly clear memory
destination addresses when running on 64bit kernels. A local attacker
could exploit this to gain access to sensitive kernel memory, leading
to a loss of privacy. (CVE-2008-2729)
The PPP over L2TP routines in the kernel did not correctly handle
certain messages. A remote attacker could send a specially crafted
packet that could crash the system or execute arbitrary code.
Gabriel Campana discovered that SCTP routines did not correctly check
for large addresses. A local user could exploit this to allocate all
available memory, leading to a denial of service. (CVE-2008-2826).
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Update the affected packages.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : false
Family: Ubuntu Local Security Checks
Nessus Plugin ID: 33531 ()
Bugtraq ID: 29081290862923529589296032974729942
CVE ID: CVE-2007-6282CVE-2007-6712CVE-2008-0598CVE-2008-1615CVE-2008-1673CVE-2008-2136CVE-2008-2137CVE-2008-2148CVE-2008-2358CVE-2008-2365CVE-2008-2729CVE-2008-2750CVE-2008-2826
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.