USN-1332-1: Linux kernel (Maverick backport) vulnerabilities
Publication date
13 January 2012
Overview
Several security issues were fixed in the kernel.
Releases
Packages
- linux-lts-backport-maverick - Linux kernel backport from Maverick
Details
Peter Huewe discovered an information leak in the handling of reading
security-related TPM data. A local, unprivileged user could read the
results of a previous TPM command. (CVE-2011-1162)
Dan Rosenberg reported an error in the old ABI compatibility layer of ARM
kernels. A local attacker could exploit this flaw to cause a denial of
service or gain root privileges. (CVE-2011-1759)
Ben Hutchings reported a flaw in the kernel's handling of corrupt LDM
partitions. A local user could exploit this to cause a denial of service or
escalate privileges. (CVE-2011-2182)
Clement Lecigne discovered a bug in the HFS filesystem. A local attacker
could exploit this to cause a kernel oops. (CVE-2011-2203)
A flaw was found in how the Linux kernel handles user-defined key types....
Peter Huewe discovered an information leak in the handling of reading
security-related TPM data. A local, unprivileged user could read the
results of a previous TPM command. (CVE-2011-1162)
Dan Rosenberg reported an error in the old ABI compatibility layer of ARM
kernels. A local attacker could exploit this flaw to cause a denial of
service or gain root privileges. (CVE-2011-1759)
Ben Hutchings reported a flaw in the kernel's handling of corrupt LDM
partitions. A local user could exploit this to cause a denial of service or
escalate privileges. (CVE-2011-2182)
Clement Lecigne discovered a bug in the HFS filesystem. A local attacker
could exploit this to cause a kernel oops. (CVE-2011-2203)
A flaw was found in how the Linux kernel handles user-defined key types. An
unprivileged local user could exploit this to crash the system.
(CVE-2011-4110)
Update instructions
After a standard system update you need to reboot your computer to make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 10.04 lucid | linux-image-2.6.35-32-virtual – 2.6.35-32.64~lucid1 | ||
| linux-image-2.6.35-32-server – 2.6.35-32.64~lucid1 | |||
| linux-image-2.6.35-32-generic-pae – 2.6.35-32.64~lucid1 | |||
| linux-image-2.6.35-32-generic – 2.6.35-32.64~lucid1 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.
References
Related notices
- USN-1394-1
- USN-1392-1
- USN-1390-1
- USN-1383-1
- USN-1345-1
- USN-1344-1
- USN-1341-1
- USN-1340-1
- USN-1337-1
- USN-1336-1
- USN-1394-1
- USN-1392-1
- USN-1390-1
- USN-1383-1
- USN-1345-1
- USN-1344-1
- USN-1341-1
- USN-1340-1
- USN-1337-1
- USN-1336-1
- USN-1330-1
- USN-1328-1
- USN-1325-1
- USN-1324-1
- USN-1323-1
- USN-1319-1
- USN-1318-1
- USN-1311-1
- USN-1303-1
- USN-1299-1
- USN-1294-1
- USN-1275-1
- USN-1260-1
- USN-1256-1
- USN-1218-1
- USN-1216-1
- USN-1208-1
- USN-1203-1
- USN-1193-1
- USN-1168-1
- USN-1167-1
- USN-1162-1
- USN-1161-1
- USN-1159-1
Have additional questions?