USN-1530-1: Linux kernel (OMAP4) vulnerabilities
10 August 2012
Several security issues were fixed in the kernel.
Releases
Packages
- linux-ti-omap4 - Linux kernel for OMAP4
Details
Andy Adamson discovered a flaw in the Linux kernel's NFSv4 implementation.
A remote NFS server (attacker) could exploit this flaw to cause a denial of
service. (CVE-2011-4131)
Steve Grubb reported a flaw with Linux fscaps (file system base
capabilities) when used to increase the permissions of a process. For
application on which fscaps are in use a local attacker can disable address
space randomization to make attacking the process with raised privileges
easier. (CVE-2012-2123)
An error was discovered in the Linux kernel's network TUN/TAP device
implementation. A local user with access to the TUN/TAP interface (which is
not available to unprivileged users until granted by a root user) could
exploit this flaw to crash the system or potential gain administrative
privileges. (CVE-2012-2136)
Stephan Mueller reported a flaw in the Linux kernel's dl2k network driver's
handling of ioctls. An unprivileged local user could leverage this flaw to
cause a denial of service. (CVE-2012-2313)
Timo Warns reported multiple flaws in the Linux kernel's hfsplus
filesystem. An unprivileged local user could exploit these flaws to gain
root system priviliges. (CVE-2012-2319)
A flaw was found in the Linux kernel's Reliable Datagram Sockets (RDS)
protocol implementation. A local, unprivileged user could use this flaw to
cause a denial of service. (CVE-2012-2372)
A flaw was discovered in the Linux kernel's NFSv4 (Network file system)
handling of ACLs (access control lists). A remote NFS server (attacker)
could cause a denial of service (OOPS). (CVE-2012-2375)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 11.04
After a standard system update you need to reboot your computer to make
all the necessary changes.
Related notices
- USN-1457-1: linux, linux-image-2.6.38-15-powerpc, linux-image-2.6.38-15-generic-pae, linux-image-2.6.38-15-server, linux-image-2.6.38-15-powerpc64-smp, linux-image-2.6.38-15-powerpc-smp, linux-image-2.6.38-15-versatile, linux-image-2.6.38-15-virtual, linux-image-2.6.38-15-omap, linux-image-2.6.38-15-generic
- USN-1476-1: linux-image-3.0.0-1211-omap4, linux-ti-omap4
- USN-1470-1: linux-image-2.6.38-15-generic-pae, linux-image-2.6.38-15-server, linux-lts-backport-natty, linux-image-2.6.38-15-virtual, linux-image-2.6.38-15-generic
- USN-1472-1: linux, linux-image-3.0.0-21-virtual, linux-image-3.0.0-21-powerpc64-smp, linux-image-3.0.0-21-powerpc, linux-image-3.0.0-21-generic, linux-image-3.0.0-21-generic-pae, linux-image-3.0.0-21-server, linux-image-3.0.0-21-powerpc-smp, linux-image-3.0.0-21-omap
- USN-1471-1: linux-image-3.0.0-21-virtual, linux-lts-backport-oneiric, linux-image-3.0.0-21-generic, linux-image-3.0.0-21-generic-pae, linux-image-3.0.0-21-server
- USN-1453-1: linux-ec2, linux-image-2.6.32-345-ec2
- USN-1452-1: linux, linux-image-3.0.0-20-powerpc-smp, linux-image-3.0.0-20-powerpc64-smp, linux-image-3.0.0-20-omap, linux-image-3.0.0-20-server, linux-image-3.0.0-20-virtual, linux-image-3.0.0-20-generic-pae, linux-image-3.0.0-20-generic, linux-image-3.0.0-20-powerpc
- USN-1448-1: linux, linux-image-3.2.0-24-generic, linux-image-3.2.0-24-powerpc-smp, linux-image-3.2.0-24-virtual, linux-image-3.2.0-24-omap, linux-image-3.2.0-24-generic-pae, linux-image-3.2.0-24-powerpc64-smp
- USN-1459-1: linux-image-3.0.0-1210-omap4, linux-ti-omap4
- USN-1460-1: linux-image-3.2.0-1413-omap4, linux-ti-omap4
- USN-1455-1: linux-lts-backport-oneiric, linux-image-3.0.0-20-server, linux-image-3.0.0-20-virtual, linux-image-3.0.0-20-generic-pae, linux-image-3.0.0-20-generic
- USN-1445-1: linux, linux-image-2.6.32-41-powerpc64-smp, linux-image-2.6.32-41-386, linux-image-2.6.32-41-powerpc-smp, linux-image-2.6.32-41-server, linux-image-2.6.32-41-versatile, linux-image-2.6.32-41-generic-pae, linux-image-2.6.32-41-generic, linux-image-2.6.32-41-sparc64, linux-image-2.6.32-41-virtual, linux-image-2.6.32-41-preempt, linux-image-2.6.32-41-ia64, linux-image-2.6.32-41-lpia, linux-image-2.6.32-41-powerpc, linux-image-2.6.32-41-sparc64-smp
- USN-1531-1: linux, linux-image-2.6.38-15-powerpc, linux-image-2.6.38-15-generic-pae, linux-image-2.6.38-15-server, linux-image-2.6.38-15-powerpc64-smp, linux-image-2.6.38-15-powerpc-smp, linux-image-2.6.38-15-versatile, linux-image-2.6.38-15-virtual, linux-image-2.6.38-15-omap, linux-image-2.6.38-15-generic
- USN-1533-1: linux, linux-image-3.0.0-24-server, linux-image-3.0.0-24-omap, linux-image-3.0.0-24-virtual, linux-image-3.0.0-24-powerpc64-smp, linux-image-3.0.0-24-powerpc, linux-image-3.0.0-24-powerpc-smp, linux-image-3.0.0-24-generic, linux-image-3.0.0-24-generic-pae
- USN-1539-1: linux-image-3.0.0-24-server, linux-lts-backport-oneiric, linux-image-3.0.0-24-virtual, linux-image-3.0.0-24-generic, linux-image-3.0.0-24-generic-pae
- USN-1535-1: linux, linux-image-2.6.32-42-powerpc64-smp, linux-image-2.6.32-42-ia64, linux-image-2.6.32-42-server, linux-image-2.6.32-42-386, linux-image-2.6.32-42-powerpc-smp, linux-image-2.6.32-42-lpia, linux-image-2.6.32-42-generic, linux-image-2.6.32-42-virtual, linux-image-2.6.32-42-versatile, linux-image-2.6.32-42-generic-pae, linux-image-2.6.32-42-sparc64-smp, linux-image-2.6.32-42-preempt, linux-image-2.6.32-42-powerpc, linux-image-2.6.32-42-sparc64
- USN-1529-1: linux, linux-image-3.2.0-29-generic-pae, linux-image-3.2.0-29-virtual, linux-image-3.2.0-29-generic, linux-image-3.2.0-29-omap, linux-image-3.2.0-29-powerpc-smp, linux-image-3.2.0-29-powerpc64-smp, linux-image-3.2.0-29-highbank
- USN-1534-1: linux-ec2, linux-image-2.6.32-347-ec2
- USN-1514-1: linux-image-3.2.0-1417-omap4, linux-ti-omap4
- USN-1598-1: linux-image-2.6.24-32-itanium, linux-image-2.6.24-32-generic, linux-image-2.6.24-32-powerpc, linux-image-2.6.24-32-powerpc-smp, linux-image-2.6.24-32-lpiacompat, linux-image-2.6.24-32-sparc64-smp, linux-image-2.6.24-32-lpia, linux-image-2.6.24-32-openvz, linux-image-2.6.24-32-xen, linux-image-2.6.24-32-rt, linux-image-2.6.24-32-powerpc64-smp, linux-image-2.6.24-32-hppa64, linux-image-2.6.24-32-hppa32, linux, linux-image-2.6.24-32-sparc64, linux-image-2.6.24-32-386, linux-image-2.6.24-32-server, linux-image-2.6.24-32-virtual, linux-image-2.6.24-32-mckinley
- USN-1532-1: linux-image-3.0.0-1214-omap4, linux-ti-omap4
- USN-1538-1: linux-image-2.6.38-15-generic-pae, linux-image-2.6.38-15-server, linux-lts-backport-natty, linux-image-2.6.38-15-virtual, linux-image-2.6.38-15-generic
- USN-1474-1: linux-image-3.2.0-1414-omap4, linux-ti-omap4
- USN-1491-1: linux-ec2, linux-image-2.6.32-345-ec2
- USN-1473-1: linux, linux-image-3.2.0-25-generic-pae, linux-image-3.2.0-25-powerpc-smp, linux-image-3.2.0-25-generic, linux-image-3.2.0-25-omap, linux-image-3.2.0-25-powerpc64-smp, linux-image-3.2.0-25-highbank, linux-image-3.2.0-25-virtual
- USN-1493-1: linux-image-2.6.24-31-mckinley, linux-image-2.6.24-31-sparc64, linux-image-2.6.24-31-386, linux-image-2.6.24-31-xen, linux-image-2.6.24-31-lpiacompat, linux-image-2.6.24-31-openvz, linux-image-2.6.24-31-hppa64, linux-image-2.6.24-31-powerpc-smp, linux-image-2.6.24-31-powerpc64-smp, linux-image-2.6.24-31-sparc64-smp, linux-image-2.6.24-31-lpia, linux-image-2.6.24-31-hppa32, linux, linux-image-2.6.24-31-powerpc, linux-image-2.6.24-31-itanium, linux-image-2.6.24-31-server, linux-image-2.6.24-31-virtual, linux-image-2.6.24-31-generic, linux-image-2.6.24-31-rt
- USN-1490-1: linux-image-2.6.38-15-generic-pae, linux-image-2.6.38-15-server, linux-lts-backport-natty, linux-image-2.6.38-15-virtual, linux-image-2.6.38-15-generic
- USN-1492-1: linux, linux-image-2.6.32-41-powerpc64-smp, linux-image-2.6.32-41-386, linux-image-2.6.32-41-powerpc-smp, linux-image-2.6.32-41-server, linux-image-2.6.32-41-versatile, linux-image-2.6.32-41-generic-pae, linux-image-2.6.32-41-generic, linux-image-2.6.32-41-sparc64, linux-image-2.6.32-41-virtual, linux-image-2.6.32-41-preempt, linux-image-2.6.32-41-ia64, linux-image-2.6.32-41-lpia, linux-image-2.6.32-41-powerpc, linux-image-2.6.32-41-sparc64-smp
- USN-1488-1: linux, linux-image-2.6.38-15-powerpc, linux-image-2.6.38-15-generic-pae, linux-image-2.6.38-15-server, linux-image-2.6.38-15-powerpc64-smp, linux-image-2.6.38-15-powerpc-smp, linux-image-2.6.38-15-versatile, linux-image-2.6.38-15-virtual, linux-image-2.6.38-15-omap, linux-image-2.6.38-15-generic
- USN-1554-1: linux, linux-image-3.0.0-25-generic, linux-image-3.0.0-25-powerpc-smp, linux-image-3.0.0-25-generic-pae, linux-image-3.0.0-25-server, linux-image-3.0.0-25-powerpc, linux-image-3.0.0-25-powerpc64-smp, linux-image-3.0.0-25-virtual, linux-image-3.0.0-25-omap
- USN-1556-1: linux-ec2, linux-image-2.6.32-347-ec2
- USN-1558-1: linux-ti-omap4, linux-image-3.0.0-1215-omap4
- USN-1563-1: linux-image-3.0.0-25-generic, linux-image-3.0.0-25-generic-pae, linux-lts-backport-oneiric, linux-image-3.0.0-25-server, linux-image-3.0.0-25-virtual
- USN-1555-1: linux, linux-image-2.6.32-42-powerpc64-smp, linux-image-2.6.32-42-ia64, linux-image-2.6.32-42-server, linux-image-2.6.32-42-386, linux-image-2.6.32-42-powerpc-smp, linux-image-2.6.32-42-lpia, linux-image-2.6.32-42-generic, linux-image-2.6.32-42-virtual, linux-image-2.6.32-42-versatile, linux-image-2.6.32-42-generic-pae, linux-image-2.6.32-42-sparc64-smp, linux-image-2.6.32-42-preempt, linux-image-2.6.32-42-powerpc, linux-image-2.6.32-42-sparc64
- USN-1487-1: linux, linux-image-3.0.0-22-generic-pae, linux-image-3.0.0-22-generic, linux-image-3.0.0-22-powerpc, linux-image-3.0.0-22-powerpc64-smp, linux-image-3.0.0-22-virtual, linux-image-3.0.0-22-omap, linux-image-3.0.0-22-powerpc-smp, linux-image-3.0.0-22-server
- USN-1486-1: linux, linux-image-3.2.0-26-generic, linux-image-3.2.0-26-powerpc64-smp, linux-image-3.2.0-26-generic-pae, linux-image-3.2.0-26-powerpc-smp, linux-image-3.2.0-26-highbank, linux-image-3.2.0-26-omap, linux-image-3.2.0-26-virtual
- USN-1499-1: linux-image-3.0.0-1212-omap4, linux-ti-omap4
- USN-1489-1: linux-image-3.0.0-22-generic-pae, linux-image-3.0.0-22-generic, linux-lts-backport-oneiric, linux-image-3.0.0-22-virtual, linux-image-3.0.0-22-server
- USN-1494-1: linux-image-3.2.0-1415-omap4, linux-ti-omap4