Debian: DSA-2443-1 Critical: Linux Kernel Privilege Escalation and DoS
debian
March 27, 2012
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation
Summary
Several vulnerabilities have been discovered in the Linux kernel that may lead
to a denial of service or privilege escalation. The Common Vulnerabilities and
Exposures project identifies the following problems:
CVE-2009-4307
Nageswara R Sastry reported an issue in the ext4 filesystem. Local users with the privileges to mount a filesystem can cause a denial of service
(BUG) by providing a s_log_groups_per_flex value greater than 31.
CVE-2011-1833
Vasiliy Kulikov of Openwall and Dan Rosenberg discovered an information
leak in the eCryptfs filesystem. Local users were able to mount arbitrary
directories.
CVE-2011-4347
Sasha Levin reported an issue in the device assignment functionality in
KVM. Local users with permission to access /dev/kvm could assign unused pci
devices to a guest and cause a denial of service (crash).
CVE-2012-0045
Stephan Barwolf reported an issue in KVM. Local users in a 32-bit guest
running on a 64-bit system can crash the guest with a s...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: linux-2.6
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!