Rapid7 Vulnerability & Exploit Database

USN-1074-1: Linux kernel vulnerabilities

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

USN-1074-1: Linux kernel vulnerabilities

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

09/07/2010

Created

07/25/2018

Added

05/06/2013

Modified

05/15/2023

Description

Multiple buffer overflows in fs/nfsd/nfs4xdr.c in the XDR implementation in the NFS server in the Linux kernel before 2.6.34-rc6 allow remote attackers to cause a denial of service (panic) or possibly execute arbitrary code via a crafted NFSv4 compound WRITE request, related to the read_buf and nfsd4_decode_compound functions.

Solution(s)

ubuntu-upgrade-linux-image-2-6-31-112-imx51

References

https://attackerkb.com/topics/cve-2009-4895
40920
41223
41854
42124
42242
42249
42477
42527
42529
42585
42589
42885
43022
43062
43098
43221
43226
43229
43368
43480
43551
43684
43787
43810
44067
44242
44301
44427
44500
44830
44861
45037
45054
45062
45073
45074
362983
CVE - 2009-4895
CVE - 2010-2066
CVE - 2010-2226
CVE - 2010-2240
CVE - 2010-2248
CVE - 2010-2478
CVE - 2010-2495
CVE - 2010-2521
CVE - 2010-2524
CVE - 2010-2538
CVE - 2010-2798
CVE - 2010-2803
CVE - 2010-2942
CVE - 2010-2943
CVE - 2010-2946
CVE - 2010-2954
CVE - 2010-2955
CVE - 2010-2959
CVE - 2010-2962
CVE - 2010-2963
CVE - 2010-3015
CVE - 2010-3067
CVE - 2010-3078
CVE - 2010-3079
CVE - 2010-3080
CVE - 2010-3081
CVE - 2010-3084
CVE - 2010-3296
CVE - 2010-3297
CVE - 2010-3298
CVE - 2010-3301
CVE - 2010-3310
CVE - 2010-3432
CVE - 2010-3437
CVE - 2010-3442
CVE - 2010-3448
CVE - 2010-3477
CVE - 2010-3698
CVE - 2010-3705
CVE - 2010-3848
CVE - 2010-3849
CVE - 2010-3850
CVE - 2010-3858
CVE - 2010-3861
CVE - 2010-3904
CVE - 2010-4072
CVE - 2010-4073
CVE - 2010-4074
CVE - 2010-4078
CVE - 2010-4079
CVE - 2010-4165
CVE - 2010-4169
CVE - 2010-4249
DSA-2094
DSA-2126
Category I
V0027158
V0028311
V0030545
2011-A-0066
2011-A-0075
2011-A-0147
68163
69241
OVAL13247
RHSA-2010:0606
RHSA-2010:0610
RHSA-2010:0660
RHSA-2010:0661
RHSA-2010:0670
RHSA-2010:0723
RHSA-2010:0758
RHSA-2010:0771
RHSA-2010:0779
RHSA-2010:0792
RHSA-2010:0839
RHSA-2010:0842
RHSA-2010:0882
RHSA-2010:0893
RHSA-2010:0898
RHSA-2010:0907
RHSA-2010:0936
RHSA-2010:0958
RHSA-2011:0004
RHSA-2011:0007
RHSA-2011:0017
RHSA-2011:0162
SUSE-SA:2010:033
SUSE-SA:2010:040
SUSE-SA:2010:041
SUSE-SA:2010:050
SUSE-SA:2010:051
SUSE-SA:2010:052
SUSE-SA:2010:053
SUSE-SA:2010:054
SUSE-SA:2010:057
SUSE-SA:2010:060
SUSE-SA:2011:001
SUSE-SA:2011:002
SUSE-SA:2011:004
SUSE-SA:2011:005
SUSE-SA:2011:007
SUSE-SA:2011:008
USN-1074-1
61156
61522
61884
61953
63316
64580

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;