CVE-2011-4127MEDIUM
Description
The Linux kernel before 3.2.2 does not properly restrict SG_IO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to (1) a partition block device or (2) an LVM volume.
References
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html
http://secunia.com/advisories/48898
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.2
http://www.openwall.com/lists/oss-security/2011/12/22/5
https://bugzilla.redhat.com/show_bug.cgi?id=752375
https://github.com/torvalds/linux/commit/0bfc96cb77224736dfa35c3c555d37b3646ef35e
https://github.com/torvalds/linux/commit/ec8013beddd717d1740cfefb1a9b900deef85462
Vulnerable Software
Configuration 1
OR
Configuration 2
OR
cpe:2.3:o:linux:linux_kernel:3.0:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0:rc7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.10:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.11:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.12:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.13:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.14:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.15:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.16:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.17:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.18:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.19:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.20:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.21:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.22:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.23:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.24:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.25:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.26:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.27:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.28:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.29:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.30:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.31:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.32:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.33:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.0.34:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.6:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.7:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.8:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.1.10:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 3.2.1 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 83723 | SUSE SLES10 Security Update : kernel (SUSE-SU-2015:0812-1) | Nessus | SuSE Local Security Checks | high |
| 79507 | OracleVM 2.2 : kernel (OVMSA-2013-0039) | Nessus | OracleVM Local Security Checks | critical |
| 79484 | OracleVM 3.1 : kernel-uek (OVMSA-2012-0042) | Nessus | OracleVM Local Security Checks | high |
| 79283 | RHEL 5 : rhev-hypervisor5 (RHSA-2012:0168) | Nessus | Red Hat Local Security Checks | high |
| 79281 | RHEL 6 : rhev-hypervisor6 (RHSA-2011:1850) | Nessus | Red Hat Local Security Checks | medium |
| 76639 | RHEL 6 : MRG (RHSA-2012:0333) | Nessus | Red Hat Local Security Checks | high |
| 69641 | Amazon Linux AMI : kernel (ALAS-2012-34) | Nessus | Amazon Linux Local Security Checks | medium |
| 68677 | Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2022) | Nessus | Oracle Linux Local Security Checks | medium |
| 68454 | Oracle Linux 5 : kernel (ELSA-2012-0107) | Nessus | Oracle Linux Local Security Checks | high |
| 68426 | Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2038) | Nessus | Oracle Linux Local Security Checks | high |
| 68411 | Oracle Linux 6 : kernel (ELSA-2011-1849) | Nessus | Oracle Linux Local Security Checks | medium |
| 64030 | RHEL 5 : kernel (RHSA-2012:0358) | Nessus | Red Hat Local Security Checks | high |
| 61241 | Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20120209) | Nessus | Scientific Linux Local Security Checks | high |
| 61212 | Scientific Linux Security Update : kernel on SL6.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | medium |
| 58845 | SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 6163 / 6164 / 6172) | Nessus | SuSE Local Security Checks | critical |
| 58493 | Ubuntu 11.10 : linux vulnerabilities (USN-1405-1) | Nessus | Ubuntu Local Security Checks | critical |
| 58270 | Ubuntu 10.04 LTS : linux vulnerabilities (USN-1389-1) | Nessus | Ubuntu Local Security Checks | high |
| 58269 | Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1388-1) | Nessus | Ubuntu Local Security Checks | high |
| 58265 | Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1384-1) | Nessus | Ubuntu Local Security Checks | high |
| 57922 | CentOS 5 : kernel (CESA-2012:0107) | Nessus | CentOS Local Security Checks | high |
| 57885 | RHEL 5 : kernel (RHSA-2012:0107) | Nessus | Red Hat Local Security Checks | high |
| 57854 | SuSE 11.1 Security Update : Linux kernel (SAT Patch Number 5732) | Nessus | SuSE Local Security Checks | high |
| 57853 | SuSE 11.1 Security Update : Linux Kernel (SAT Patch Numbers 5723 / 5725) | Nessus | SuSE Local Security Checks | high |
| 57674 | Fedora 16 : kernel-3.2.1-3.fc16 (2012-0876) | Nessus | Fedora Local Security Checks | medium |
| 57673 | Fedora 15 : kernel-2.6.41.10-3.fc15 (2012-0861) | Nessus | Fedora Local Security Checks | medium |
| 57583 | Debian DSA-2389-1 : linux-2.6 - privilege escalation/denial of service/information leak | Nessus | Debian Local Security Checks | medium |
| 57404 | CentOS 6 : kernel (CESA-2011:1849) | Nessus | CentOS Local Security Checks | medium |
| 57391 | RHEL 6 : kernel (RHSA-2011:1849) | Nessus | Red Hat Local Security Checks | medium |
| 801512 | CentOS RHSA-2012-0107 Security Check | Log Correlation Engine | Generic | high |
| 801399 | CentOS RHSA-2011-1849 Security Check | Log Correlation Engine | Generic | high |