Rapid7 Vulnerability & Exploit Database

USN-1186-1: Linux kernel vulnerabilities

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

USN-1186-1: Linux kernel vulnerabilities

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

02/18/2011

Created

07/25/2018

Added

05/06/2013

Modified

07/29/2020

Description

Buffer overflow in the clusterip_proc_write function in net/ipv4/netfilter/ipt_CLUSTERIP.c in the Linux kernel before 2.6.39 might allow local users to cause a denial of service or have unspecified other impact via a crafted write operation, related to string data that lacks a terminating '

Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large value of a certain structure member.

' character.

Solution(s)

ubuntu-upgrade-linux-image-2-6-24-29-386
ubuntu-upgrade-linux-image-2-6-24-29-generic
ubuntu-upgrade-linux-image-2-6-24-29-hppa32
ubuntu-upgrade-linux-image-2-6-24-29-hppa64
ubuntu-upgrade-linux-image-2-6-24-29-itanium
ubuntu-upgrade-linux-image-2-6-24-29-lpia
ubuntu-upgrade-linux-image-2-6-24-29-lpiacompat
ubuntu-upgrade-linux-image-2-6-24-29-mckinley
ubuntu-upgrade-linux-image-2-6-24-29-openvz
ubuntu-upgrade-linux-image-2-6-24-29-powerpc
ubuntu-upgrade-linux-image-2-6-24-29-powerpc-smp
ubuntu-upgrade-linux-image-2-6-24-29-powerpc64-smp
ubuntu-upgrade-linux-image-2-6-24-29-rt
ubuntu-upgrade-linux-image-2-6-24-29-server
ubuntu-upgrade-linux-image-2-6-24-29-sparc64
ubuntu-upgrade-linux-image-2-6-24-29-sparc64-smp
ubuntu-upgrade-linux-image-2-6-24-29-virtual
ubuntu-upgrade-linux-image-2-6-24-29-xen

References

https://attackerkb.com/topics/cve-2010-4073
44830
45037
45073
45795
46073
46417
46488
46492
46921
48383
CVE - 2010-4073
CVE - 2010-4165
CVE - 2010-4238
CVE - 2010-4249
CVE - 2010-4649
CVE - 2011-0711
CVE - 2011-1010
CVE - 2011-1044
CVE - 2011-1090
CVE - 2011-1170
CVE - 2011-1171
CVE - 2011-1172
CVE - 2011-1173
CVE - 2011-2484
CVE - 2011-2534
DSA-2126
Category I
V0030545
V0031252
V0033794
V0033884
2011-A-0147
2012-A-0020
2012-A-0148
2012-A-0153
69241
70950
RHSA-2010:0958
RHSA-2011:0007
RHSA-2011:0017
RHSA-2011:0162
RHSA-2011:0833
RHSA-2011:0927
SUSE-SA:2010:060
SUSE-SA:2011:001
SUSE-SA:2011:002
SUSE-SA:2011:004
SUSE-SA:2011:007
SUSE-SA:2011:008
USN-1186-1
64698
65563
65643
68150

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;