Debian 7.0 DSA-2669-1 Moderate: Kernel Denial of Service Issues
debian
May 16, 2013
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation
Summary
Several vulnerabilities have been discovered in the Linux kernel that may lead
to a denial of service, information leak or privilege escalation. The Common
Vulnerabilities and Exposures project identifies the following problems:
CVE-2013-0160
vladz reported a timing leak with the /dev/ptmx character device. A local
user could use this to determine sensitive information such as password
length.
CVE-2013-1796
Andrew Honig of Google reported an issue in the KVM subsystem. A user in
a guest operating system could corrupt kernel memory, resulting in a
denial of service.
CVE-2013-1929
Oded Horovitz and Brad Spengler reported an issue in the device driver for
Broadcom Tigon3 based gigabit Ethernet. Users with the ability to attach
untrusted devices can create an overflow condition, resulting in a denial
of service or elevated privileges.
CVE-2013-1979
Andy Lutomirski reported an issue in the socket level control message
processing subsystem. Local users maybe ...
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Package: linux
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!