Rapid7 Vulnerability & Exploit Database

USN-1054-1: Linux kernel vulnerabilities

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

USN-1054-1: Linux kernel vulnerabilities

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

01/03/2011

Created

07/25/2018

Added

05/06/2013

Modified

07/09/2020

Description

Multiple integer underflows in the x25_parse_facilities function in net/x25/x25_facilities.c in the Linux kernel before 2.6.36.2 allow remote attackers to cause a denial of service (system crash) via malformed X.25 (1) X25_FAC_CLASS_A, (2) X25_FAC_CLASS_B, (3) X25_FAC_CLASS_C, or (4) X25_FAC_CLASS_D facility data, a different vulnerability than CVE-2010-3873.

Solution(s)

ubuntu-upgrade-linux-image-2-6-32-28-386
ubuntu-upgrade-linux-image-2-6-32-28-generic
ubuntu-upgrade-linux-image-2-6-32-28-generic-pae
ubuntu-upgrade-linux-image-2-6-32-28-ia64
ubuntu-upgrade-linux-image-2-6-32-28-lpia
ubuntu-upgrade-linux-image-2-6-32-28-powerpc
ubuntu-upgrade-linux-image-2-6-32-28-powerpc-smp
ubuntu-upgrade-linux-image-2-6-32-28-powerpc64-smp
ubuntu-upgrade-linux-image-2-6-32-28-preempt
ubuntu-upgrade-linux-image-2-6-32-28-server
ubuntu-upgrade-linux-image-2-6-32-28-sparc64
ubuntu-upgrade-linux-image-2-6-32-28-sparc64-smp
ubuntu-upgrade-linux-image-2-6-32-28-versatile
ubuntu-upgrade-linux-image-2-6-32-28-virtual
ubuntu-upgrade-linux-image-2-6-32-312-ec2
ubuntu-upgrade-linux-image-2-6-35-25-generic
ubuntu-upgrade-linux-image-2-6-35-25-generic-pae
ubuntu-upgrade-linux-image-2-6-35-25-omap
ubuntu-upgrade-linux-image-2-6-35-25-powerpc
ubuntu-upgrade-linux-image-2-6-35-25-powerpc-smp
ubuntu-upgrade-linux-image-2-6-35-25-powerpc64-smp
ubuntu-upgrade-linux-image-2-6-35-25-server
ubuntu-upgrade-linux-image-2-6-35-25-versatile
ubuntu-upgrade-linux-image-2-6-35-25-virtual

References

https://attackerkb.com/topics/cve-2010-0435
43809
44354
44666
44758
44762
44793
44830
44861
44921
45004
45037
45055
45062
45073
CVE - 2010-0435
CVE - 2010-3859
CVE - 2010-3873
CVE - 2010-3874
CVE - 2010-3881
CVE - 2010-4073
CVE - 2010-4079
CVE - 2010-4083
CVE - 2010-4158
CVE - 2010-4160
CVE - 2010-4162
CVE - 2010-4164
CVE - 2010-4165
CVE - 2010-4169
CVE - 2010-4175
CVE - 2010-4243
CVE - 2010-4249
CVE - 2010-4256
CVE - 2010-4258
DSA-2126
Category I
V0030545
2011-A-0147
69241
RHSA-2010:0622
RHSA-2010:0627
RHSA-2010:0958
RHSA-2010:0998
RHSA-2011:0004
RHSA-2011:0007
RHSA-2011:0017
RHSA-2011:0162
SUSE-SA:2010:060
SUSE-SA:2011:001
SUSE-SA:2011:002
SUSE-SA:2011:004
SUSE-SA:2011:005
SUSE-SA:2011:007
SUSE-SA:2011:008
USN-1054-1
63316
64618
64700

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;