Ubuntu Update For Linux USN-2259-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Salva Peir&#243 discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3144) A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3145)

Affected

linux on Ubuntu 12.04 LTS

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-June/002565.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-1739, CVE-2014-3144, CVE-2014-3145

CVSS	Base Score: 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Ubuntu Update for apr-util vulnerability USN-1022-1
Ubuntu Update for apache2 vulnerabilities USN-575-1
Ubuntu Update for curl USN-2399-1
Ubuntu Update for dbus vulnerabilities USN-653-1
Ubuntu Update for bind9 USN-1163-1

Ubuntu Update for linux USN-2259-1

Take action and discover your vulnerabilities