oval:org.mitre.oval:def:13173
| Definition Id: oval:org.mitre.oval:def:13173 | |||
| Oval ID: | oval:org.mitre.oval:def:13173 | ||
| Title: | USN-1086-1 -- linux-ec2 vulnerabilities | ||
| Description: | Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the socket filters did not correctly initialize structure memory. A local attacker could create malicious filters to read portions of kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the SCSI subsystem did not correctly validate iov segments. A local attacker with access to a SCSI device could send specially crafted requests to crash the system, leading to a denial of service. Dan Rosenberg discovered that the RDS protocol did not correctly check ioctl arguments. A local attacker could exploit this to crash the system, leading to a denial of service | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1086-1 CVE-2010-4075 CVE-2010-4158 CVE-2010-4163 CVE-2010-4668 | Version: | 5 |
| Platform(s): | Ubuntu 10.04 | Product(s): | linux-ec2 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13089 | |||
| Oval ID: | oval:org.mitre.oval:def:13089 | ||
| Title: | Ubuntu 10.04 is installed | ||
| Description: | Ubuntu 10.04 is installed | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:canonical:ubuntu_linux:10.04 | Version: | 5 |
| Platform(s): | Ubuntu 10.04 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:13173 | |||
