Debian DSA-2745-1 Critical: Linux Kernel Denial of Service Risk
debian
August 29, 2013
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation
Summary
Several vulnerabilities have been discovered in the Linux kernel that may lead
to a denial of service, information leak or privilege escalation. The Common
Vulnerabilities and Exposures project identifies the following problems:
CVE-2013-1059
Chanam Park reported an issue in the Ceph distributed storage system.
Remote users can cause a denial of service by sending a specially crafted
auth_reply message.
CVE-2013-2148
Dan Carpenter reported an information leak in the filesystem wide access
notification subsystem (fanotify). Local users could gain access to
sensitive kernel memory.
CVE-2013-2164
Jonathan Salwan reported an information leak in the CD-ROM driver. A
local user on a system with a malfunctioning CD-ROM drive could gain
access to sensitive memory.
CVE-2013-2232
Dave Jones and Hannes Frederic Sowa resolved an issue in the IPv6
subsystem. Local users could cause a denial of service by using an
AF_INET6 socket to connect to an IPv4 destination.
CVE...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: linux
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!