The Linux kernel before 3.2.2 does not properly restrict SG_IO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to (1) a partition block device or (2) an LVM volume.
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html
http://secunia.com/advisories/48898
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.2
http://www.openwall.com/lists/oss-security/2011/12/22/5
https://bugzilla.redhat.com/show_bug.cgi?id=752375
https://github.com/torvalds/linux/commit/0bfc96cb77224736dfa35c3c555d37b3646ef35e
https://github.com/torvalds/linux/commit/ec8013beddd717d1740cfefb1a9b900deef85462
OR
OR
cpe:2.3:o:linux:linux_kernel:3.0:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.10:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.11:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.12:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.13:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.14:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.15:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.16:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.17:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.18:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.19:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.20:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.21:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.22:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.23:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.24:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.25:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.26:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.27:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.28:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.29:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.30:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.31:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.32:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.33:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.34:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.10:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 3.2.1 (inclusive)
ID | Name | Product | Family | Severity |
---|---|---|---|---|
83723 | SUSE SLES10 Security Update : kernel (SUSE-SU-2015:0812-1) | Nessus | SuSE Local Security Checks | high |
79507 | OracleVM 2.2 : kernel (OVMSA-2013-0039) | Nessus | OracleVM Local Security Checks | critical |
79484 | OracleVM 3.1 : kernel-uek (OVMSA-2012-0042) | Nessus | OracleVM Local Security Checks | high |
79283 | RHEL 5 : rhev-hypervisor5 (RHSA-2012:0168) | Nessus | Red Hat Local Security Checks | high |
79281 | RHEL 6 : rhev-hypervisor6 (RHSA-2011:1850) | Nessus | Red Hat Local Security Checks | medium |
76639 | RHEL 6 : MRG (RHSA-2012:0333) | Nessus | Red Hat Local Security Checks | high |
69641 | Amazon Linux AMI : kernel (ALAS-2012-34) | Nessus | Amazon Linux Local Security Checks | medium |
68677 | Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2022) | Nessus | Oracle Linux Local Security Checks | medium |
68454 | Oracle Linux 5 : kernel (ELSA-2012-0107) | Nessus | Oracle Linux Local Security Checks | high |
68426 | Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2038) | Nessus | Oracle Linux Local Security Checks | high |
68411 | Oracle Linux 6 : kernel (ELSA-2011-1849) | Nessus | Oracle Linux Local Security Checks | medium |
64030 | RHEL 5 : kernel (RHSA-2012:0358) | Nessus | Red Hat Local Security Checks | high |
61241 | Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20120209) | Nessus | Scientific Linux Local Security Checks | high |
61212 | Scientific Linux Security Update : kernel on SL6.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | medium |
58845 | SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 6163 / 6164 / 6172) | Nessus | SuSE Local Security Checks | critical |
58493 | Ubuntu 11.10 : linux vulnerabilities (USN-1405-1) | Nessus | Ubuntu Local Security Checks | critical |
58270 | Ubuntu 10.04 LTS : linux vulnerabilities (USN-1389-1) | Nessus | Ubuntu Local Security Checks | high |
58269 | Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1388-1) | Nessus | Ubuntu Local Security Checks | high |
58265 | Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1384-1) | Nessus | Ubuntu Local Security Checks | high |
57922 | CentOS 5 : kernel (CESA-2012:0107) | Nessus | CentOS Local Security Checks | high |
57885 | RHEL 5 : kernel (RHSA-2012:0107) | Nessus | Red Hat Local Security Checks | high |
57854 | SuSE 11.1 Security Update : Linux kernel (SAT Patch Number 5732) | Nessus | SuSE Local Security Checks | high |
57853 | SuSE 11.1 Security Update : Linux Kernel (SAT Patch Numbers 5723 / 5725) | Nessus | SuSE Local Security Checks | high |
57674 | Fedora 16 : kernel-3.2.1-3.fc16 (2012-0876) | Nessus | Fedora Local Security Checks | medium |
57673 | Fedora 15 : kernel-2.6.41.10-3.fc15 (2012-0861) | Nessus | Fedora Local Security Checks | medium |
57583 | Debian DSA-2389-1 : linux-2.6 - privilege escalation/denial of service/information leak | Nessus | Debian Local Security Checks | medium |
57404 | CentOS 6 : kernel (CESA-2011:1849) | Nessus | CentOS Local Security Checks | medium |
57391 | RHEL 6 : kernel (RHSA-2011:1849) | Nessus | Red Hat Local Security Checks | medium |
801512 | CentOS RHSA-2012-0107 Security Check | Log Correlation Engine | Generic | high |
801399 | CentOS RHSA-2011-1849 Security Check | Log Correlation Engine | Generic | high |