Ubuntu Update For Linux USN-2178-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A flaw was discovered in the Kernel Virtual Machine (KVM) subsystem of the Linux kernel. A guest OS user could exploit this flaw to execute arbitrary code on the host OS. (CVE-2014-0049) Al Viro discovered an error in how CIFS in the Linux kernel handles uncached write operations. An unprivileged local user could exploit this flaw to cause a denial of service (system crash), obtain sensitive information from kernel memory, or possibly gain privileges. (CVE-2014-0069)

Affected

linux on Ubuntu 12.10

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-April/002475.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-0049, CVE-2014-0069

CVSS	Base Score: 7.4 AV:A/AC:M/Au:S/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for ffmpeg, ffmpeg-debian regression USN-931-2
Ubuntu Update for bogofilter USN-1667-1
Ubuntu Update for dhcp vulnerability USN-531-2
Ubuntu Update for cups USN-1654-1
Ubuntu Update for cpio vulnerability USN-650-1

Ubuntu Update for linux USN-2178-1

Take action and discover your vulnerabilities