Ubuntu Update For Linux-source-2.6.15/2.6.17 Vulnerabilities USN-451-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-451-1

Solution

Please Install the Updated Packages.

Insight

The kernel key management code did not correctly handle key reuse. A local attacker could create many key requests, leading to a denial of service. (CVE-2007-0006) The kernel NFS code did not correctly validate NFSACL2 ACCESS requests. If a system was serving NFS mounts, a remote attacker could send a specially crafted packet, leading to a denial of service. (CVE-2007-0772) When dumping core, the kernel did not correctly handle PT_INTERP processes. A local attacker could create situations where they could read the contents of otherwise unreadable executable programs. (CVE-2007-0958)

Affected

linux-source-2.6.15/2.6.17 vulnerabilities on Ubuntu 6.06 LTS , Ubuntu 6.10

Severity

Classification

CVE CVE-2007-0006, CVE-2007-0772, CVE-2007-0958

CVSS	Base Score: 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Ubuntu Update for ffmpeg, ffmpeg-debian vulnerabilities USN-931-1
Ubuntu Update for debian-goodies vulnerability USN-526-1
Ubuntu Update for ekiga, gnomemeeting vulnerabilities USN-426-1
Ubuntu Update for ffmpeg vulnerabilities USN-1104-1
Ubuntu Update for clamav vulnerabilities USN-1031-1

Ubuntu Update for linux-source-2.6.15/2.6.17 vulnerabilities USN-451-1

Take action and discover your vulnerabilities