Ubuntu Security Notice (C) 2009-2013 Canonical, Inc. / NASL script (C) 2009-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
Sebastian Krahmer discovered that udev did not correctly validate
netlink message senders. A local attacker could send specially crafted
messages to udev in order to gain root privileges. (CVE-2009-1185)
Sebastian Krahmer discovered a buffer overflow in the path encoding
routines in udev. A local attacker could exploit this to crash udev,
leading to a denial of service. (CVE-2009-1186).
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.2
Public Exploit Available : true