LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

kernel: multiple vulnerabilities

Package(s):kernel CVE #(s):CVE-2012-1601 CVE-2012-2133
Created:May 10, 2012 Updated:June 13, 2012
Description:

From the Debian advisory:

CVE-2012-1601: Michael Ellerman reported an issue in the KVM subsystem. Local users could cause a denial of service (NULL pointer dereference) by creating VCPUs before a call to KVM_CREATE_IRQCHIP.

CVE-2012-2133: Steve Grubb reported in an issue in fcaps, a filesystem-based capabilities system. Personality flags set using this mechanism, such as the disabling of address space randomization, may persist across suid calls.

Alerts:
Debian DSA-2469-1 2012-05-10
SUSE SUSE-SU-2012:0616-1 2012-05-14
Red Hat RHSA-2012:0571-01 2012-05-15
CentOS CESA-2012:0571 2012-05-16
Ubuntu USN-1445-1 2012-05-17
Scientific Linux SL-kern-20120518 2012-05-18
Red Hat RHSA-2012:0676-01 2012-05-21
CentOS CESA-2012:0676 2012-05-21
Ubuntu USN-1448-1 2012-05-21
Oracle ELSA-2012-2013 2012-05-21
Oracle ELSA-2012-2013 2012-05-21
Oracle ELSA-2012-0571 2012-05-21
Scientific Linux SL-kvm-20120522 2012-05-22
Oracle ELSA-2012-0676 2012-05-22
Ubuntu USN-1452-1 2012-05-25
Ubuntu USN-1453-1 2012-05-25
Ubuntu USN-1455-1 2012-05-29
Ubuntu USN-1457-1 2012-05-31
Ubuntu USN-1459-1 2012-05-31
Ubuntu USN-1460-1 2012-05-31
SUSE SUSE-SU-2012:0689-1 2012-06-02
Ubuntu USN-1468-1 2012-06-12
Ubuntu USN-1469-1 2012-06-12
Ubuntu USN-1470-1 2012-06-12
Ubuntu USN-1471-1 2012-06-12
Ubuntu USN-1472-1 2012-06-12
Ubuntu USN-1473-1 2012-06-13
Ubuntu USN-1474-1 2012-06-13
Ubuntu USN-1476-1 2012-06-15
Oracle ELSA-2012-2022 2012-07-02
Oracle ELSA-2012-2022 2012-07-02
Oracle ELSA-2012-0862 2012-07-02
Ubuntu USN-1507-1 2012-07-16
Red Hat RHSA-2012:1426-01 2012-11-06
CentOS CESA-2012:1426 2012-11-07
Oracle ELSA-2012-1426 2012-11-06
Scientific Linux SL-kern-20121107 2012-11-07
Oracle ELSA-2012-2044 2012-11-09
Oracle ELSA-2012-2044 2012-11-09
Oracle ELSA-2012-2043 2012-11-09
Oracle ELSA-2012-2043 2012-11-09
Red Hat RHSA-2012:1491-01 2012-12-04
Oracle ELSA-2013-2507 2013-02-28
Red Hat RHSA-2013:0741-01 2013-04-16
SUSE SUSE-SU-2013:0786-1 2013-05-14
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds