Summary
Ubuntu Update for Linux kernel vulnerabilities USN-1269-1
Solution
Please Install the Updated Packages.
Insight
Vasily Averin discovered that the NFS Lock Manager (NLM) incorrectly handled unlock requests. A local attacker could exploit this to cause a denial of service. (CVE-2011-2491)
Robert Swiecki discovered that mapping extensions were incorrectly handled.
A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-2496)
It was discovered that the wireless stack incorrectly verified SSID lengths. A local attacker could exploit this to cause a denial of service or gain root privileges. (CVE-2011-2517)
Ben Pfaff discovered that Classless Queuing Disciplines (qdiscs) were being incorrectly handled. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-2525)
Affected
linux-ec2 on Ubuntu 10.04 LTS
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2011-2491, CVE-2011-2496, CVE-2011-2517, CVE-2011-2525 -
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Ubuntu Update for eglibc USN-2485-1
- Ubuntu Update for eglibc, glibc vulnerability USN-1009-2
- Ubuntu Update for ca-certificates USN-2154-1
- Ubuntu Update for apturl, Epiphany, gecko-sharp, gnome-python-extras, liferea, rhythmbox, totem, ubufox, yelp update USN-930-2
- Ubuntu Update for exiv2 vulnerabilities USN-655-1