Summary
Check the version of linux-ec2
Solution
Please Install the Updated Packages.
Insight
Ben Hawkes reported some off by one errors for report descriptors in the Linux kernel's HID stack. A physically proximate attacker could exploit these flaws to cause a denial of service (out-of-bounds write) via a specially crafted device. (CVE-2014-3184)
Several bounds check flaws allowing for buffer overflows were discovered in the Linux kernel's Whiteheat USB serial driver. A physically proximate attacker could exploit these flaws to cause a denial of service (system crash) via a specially crafted device. (CVE-2014-3185)
A flaw was discovered in the Linux kernel's UDF filesystem (used on some CD-ROMs and DVDs) when processing indirect ICBs. An attacker who can cause CD, DVD or image file with a specially crafted inode to be mounted can cause a denial of service (infinite loop or stack consumption).
(CVE-2014-6410)
Affected
linux-ec2 on Ubuntu 10.04 LTS
Detection
Get the installed version with the help of detect NVT and check if the version is vulnerable or not.
Severity
Classification
-
CVE CVE-2014-3184, CVE-2014-3185, CVE-2014-6410 -
CVSS Base Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities