LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for June 20, 2013

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

kernel: multiple vulnerabilities

Package(s):kernel CVE #(s):CVE-2011-1576 CVE-2011-1936 CVE-2011-2213 CVE-2011-2492
Created:July 15, 2011 Updated:September 14, 2011
Description: From the Red Hat advisory:

A flaw allowed napi_reuse_skb() to be called on VLAN (virtual LAN) packets. An attacker on the local network could trigger this flaw by sending specially-crafted packets to a target system, possibly causing a denial of service. (CVE-2011-1576)

A flaw in the way the Xen hypervisor implementation handled CPUID instruction emulation during virtual machine exits could allow an unprivileged guest user to crash a guest. This only affects systems that have an Intel x86 processor with the Intel VT-x extension enabled. (CVE-2011-1936)

A flaw in inet_diag_bc_audit() could allow a local, unprivileged user to cause a denial of service (infinite loop). (CVE-2011-2213)

Structure padding in two structures in the Bluetooth implementation was not initialized properly before being copied to user-space, possibly allowing local, unprivileged users to leak kernel stack memory to user-space. (CVE-2011-2492)

Alerts:
Oracle ELSA-2011-2038 2011-12-27
SUSE SUSE-SU-2011:1319-2 2011-12-14
SUSE SUSE-SU-2011:1319-1 2011-12-13
Oracle ELSA-2011-2038 2011-12-27
SUSE SUSE-SA:2011:046 2011-12-13
Ubuntu USN-1256-1 2011-11-09
Ubuntu USN-1246-1 2011-10-25
Ubuntu USN-1245-1 2011-10-25
Ubuntu USN-1241-1 2011-10-25
Ubuntu USN-1240-1 2011-10-25
Ubuntu USN-1239-1 2011-10-25
Ubuntu USN-1228-1 2011-10-12
Ubuntu USN-1227-1 2011-10-11
Ubuntu USN-1225-1 2011-10-04
Ubuntu USN-1220-1 2011-09-29
Ubuntu USN-1219-1 2011-09-29
Ubuntu USN-1218-1 2011-09-29
Ubuntu USN-1216-1 2011-09-26
Debian DSA-2310-1 2011-09-22
Ubuntu USN-1211-1 2011-09-21
SUSE SUSE-SU-2011:1057-1 2011-09-21
Ubuntu USN-1212-1 2011-09-21
Ubuntu USN-1208-1 2011-09-14
Ubuntu USN-1205-1 2011-09-13
Ubuntu USN-1204-1 2011-09-13
Ubuntu USN-1203-1 2011-09-13
Ubuntu USN-1202-1 2011-09-13
Ubuntu USN-1253-1 2011-11-08
Ubuntu USN-1201-1 2011-09-13
Red Hat RHSA-2011:1253-01 2011-09-12
Debian DSA-2303-2 2011-09-10
Debian DSA-2303-1 2011-09-08
Scientific Linux SL-kern-20110823 2011-08-23
Red Hat RHSA-2011:1189-01 2011-08-23
Fedora FEDORA-2011-11103 2011-08-18
Ubuntu USN-1189-1 2011-08-19
SUSE SUSE-SU-2011:0925-1 2011-08-19
Red Hat RHSA-2011:1106-01 2011-08-02
Scientific Linux SL-kern-20110715 2011-07-15
SUSE SUSE-SU-2011:0832-1 2011-07-25
SUSE SUSE-SA:2011:031 2011-07-25
CentOS CESA-2011:0927 2011-07-18
Red Hat RHSA-2011:0927-01 2011-07-15
Debian DSA-2389-1 2012-01-15
openSUSE openSUSE-SU-2012:0206-1 2012-02-09
openSUSE openSUSE-SU-2012:0236-1 2012-02-09
SUSE SUSE-SU-2012:0364-1 2012-03-14
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds