Ubuntu Security Notice (C) 2012 Canonical, Inc. / NASL script (C) 2012 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related
Andy Adamson discovered a flaw in the Linux kernel's NFSv4
implementation. A remote NFS server (attacker) could exploit this
flaw to cause a denial of service. (CVE-2011-4131)
Steve Grubb reported a flaw with Linux fscaps (file system base
capabilities) when used to increase the permissions of a process. For
application on which fscaps are in use a local attacker can disable
address space randomization to make attacking the process with raised
privileges easier. (CVE-2012-2123)
An error was discovered in the Linux kernel's network TUN/TAP device
implementation. A local user with access to the TUN/TAP interface
(which is not available to unprivileged users until granted by a root
user) could exploit this flaw to crash the system or potential gain
administrative privileges. (CVE-2012-2136)
Stephan Mueller reported a flaw in the Linux kernel's dl2k network
driver's handling of ioctls. An unprivileged local user could
leverage this flaw to cause a denial of service. (CVE-2012-2313)
Timo Warns reported multiple flaws in the Linux kernel's hfsplus
filesystem. An unprivileged local user could exploit these flaws to
gain root system priviliges. (CVE-2012-2319)
A flaw was found in the Linux kernel's Reliable Datagram Sockets
(RDS) protocol implementation. A local, unprivileged user could use
this flaw to cause a denial of service. (CVE-2012-2372)
A flaw was discovered in the Linux kernel's NFSv4 (Network file
system) handling of ACLs (access control lists). A remote NFS server
(attacker) could cause a denial of service (OOPS). (CVE-2012-2375)
See also :
Update the affected package(s).
Risk factor :
High / CVSS Base Score : 7.2
Family: Ubuntu Local Security Checks
Nessus Plugin ID: 61508 ()
CVE ID: CVE-2011-4131CVE-2012-2123CVE-2012-2136CVE-2012-2313CVE-2012-2319CVE-2012-2372CVE-2012-2375
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.