kernel: multiple vulnerabilities [LWN.net]

Package(s):

kernel

CVE #(s):

CVE-2011-4086 CVE-2012-0028

Created:

February 9, 2012

Updated:

June 1, 2012

Description:

From the Red Hat advisory:

A flaw was found in the way the Linux kernel's journal_unmap_buffer() function handled buffer head states. On systems that have an ext4 file system with a journal mounted, a local, unprivileged user could use this flaw to cause a denial of service. (CVE-2011-4086, Moderate)

A flaw was found in the way the Linux kernel handled robust list pointers of user-space held futexes across exec() calls. A local, unprivileged user could use this flaw to cause a denial of service or, eventually, escalate their privileges. (CVE-2012-0028, Important)

Alerts:

Red Hat	RHSA-2012:0107-01	2012-02-09
CentOS	CESA-2012:0107	2012-02-09
Scientific Linux	SL-kern-20120213	2012-02-13
Oracle	ELSA-2012-0107	2012-02-10
Fedora	FEDORA-2012-1497	2012-02-10
Fedora	FEDORA-2012-1503	2012-02-11
Red Hat	RHSA-2012:0358-01	2012-03-06
Ubuntu	USN-1390-1	2012-03-06
Oracle	ELSA-2012-0150	2012-03-07
openSUSE	openSUSE-SU-2012:0540-1	2012-04-20
SUSE	SUSE-SU-2012:0554-1	2012-04-23
SUSE	SUSE-SU-2012:0554-2	2012-04-26
Ubuntu	USN-1431-1	2012-04-30
Ubuntu	USN-1433-1	2012-04-30
Ubuntu	USN-1432-1	2012-05-07
Ubuntu	USN-1440-1	2012-05-08
Debian	DSA-2469-1	2012-05-10
SUSE	SUSE-SU-2012:0616-1	2012-05-14
Red Hat	RHSA-2012:0571-01	2012-05-15
Red Hat	RHSA-2012:0670-01	2012-05-15
CentOS	CESA-2012:0571	2012-05-16
Ubuntu	USN-1445-1	2012-05-17
Scientific Linux	SL-kern-20120518	2012-05-18
Oracle	ELSA-2012-2014	2012-05-21
Oracle	ELSA-2012-2014	2012-05-21
Oracle	ELSA-2012-2013	2012-05-21
Oracle	ELSA-2012-2013	2012-05-21
Oracle	ELSA-2012-0571	2012-05-21
Ubuntu	USN-1453-1	2012-05-25
Ubuntu	USN-1454-1	2012-05-25
Ubuntu	USN-1458-1	2012-05-31
openSUSE	openSUSE-SU-2012:0799-1	2012-06-28
Oracle	ELSA-2012-0862	2012-07-02
openSUSE	openSUSE-SU-2012:1439-1	2012-11-05

(Log in to post comments)