Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-1023-1
HistoryNov 30, 2010 - 12:00 a.m.

Linux kernel vulnerabilities

2010-11-3000:00:00
ubuntu.com
43

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.1%

JSON

Releases

  • Ubuntu 10.10
  • Ubuntu 10.04
  • Ubuntu 9.10
  • Ubuntu 8.04
  • Ubuntu 6.06

Packages

  • linux - Linux kernel
  • linux-ec2 - Linux kernel for EC2
  • linux-source-2.6.15 - The Linux kernel

Details

Nelson Elhage discovered several problems with the Acorn Econet protocol
driver. A local user could cause a denial of service via a NULL pointer
dereference, escalate privileges by overflowing the kernel stack, and
assign Econet addresses to arbitrary interfaces. (CVE-2010-3848,
CVE-2010-3849, CVE-2010-3850)

Brad Spengler discovered that the wireless extensions did not correctly
validate certain request sizes. A local attacker could exploit this to read
portions of kernel memory, leading to a loss of privacy. (CVE-2010-2955)

Dan Rosenberg discovered that the VIA video driver did not correctly clear
kernel memory. A local attacker could exploit this to read kernel stack
memory, leading to a loss of privacy. (CVE-2010-4082)

A flaw was discovered in the Linux kernel’s splice system call. A local
user could use this flaw to cause a denial of service (system crash).
(CVE-2013-2128)

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchlinux-image-2.6.31-22-server< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchblock-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchchar-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchcrypto-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchfat-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchfb-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchfirewire-core-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchfloppy-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchfs-core-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Ubuntu9.10noarchfs-secondary-modules-2.6.31-22-generic-di< 2.6.31-22.69UNKNOWN
Rows per page:
1-10 of 2991

Related

openvas 56
nessus 41
f5 2
securityvulns 4
threatpost 1
seebug 5
packetstorm 2
exploitpack 2
suse 14
ubuntucve 6
exploitdb 2
prion 6
nvd 6
redhatcve 3
debiancve 1
cve 6
cvelist 6
veracode 2
redhat 7
ubuntu 8
kitploit 1
fedora 6
debian 1
osv 1
oraclelinux 3
centos 1
altlinux 1
amazon 1
openvas
openvas
Ubuntu: Security Advisory (USN-1023-1)
2010-12-09 00:00:00
Ubuntu Update for Linux kernel vulnerabilities USN-1023-1
2010-12-09 00:00:00
Mandriva Update for kernel MDVSA-2010:257 (kernel)
2011-01-04 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : linux, linux-{ec2,source-2.6.15} vulnerabilities (USN-1023-1)
2010-11-30 00:00:00
SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7303)
2011-01-27 00:00:00
SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7304)
2012-05-17 00:00:00
f5
f5
K16489 : Linux kernel security vulnerabilities CVE-2010-3848, CVE-2010-3849, and CVE-2010-3850
2015-04-24 00:00:00
SOL16489 - Multiple Linux Kernel security vulnerabilities CVE-2010-3848, CVE-2010-3849, and CVE-2010-3850
2015-04-24 00:00:00
securityvulns
securityvulns
Linux kernel exploit
2010-12-09 00:00:00
NGS000267 Technical Advisory: Symantec Messaging Gateway SSH with backdoor user account plus privilege escalation to root due to very old Kernel
2012-12-02 00:00:00
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-12-01 00:00:00
threatpost
threatpost
New Local Linux Kernel Root Exploit Published
2010-12-08 15:33:53
seebug
seebug
Linux Kernel <= 2.6.37 - Local Privilege Escalation
2014-07-01 00:00:00
Linux Kernel &lt;= 2.6.37 Local Privilege Escalation
2010-12-09 00:00:00
Linux Kernel < 2.6.36.2 - Econet Privilege Escalation Exploit
2014-07-01 00:00:00
packetstorm
packetstorm
Linux Kernel Econet Privilege Escalation
2011-09-06 00:00:00
Ubuntu Security Notice USN-1202-1
2011-09-14 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.36.2 (Ubuntu 10.04) - Half-Nelson.c Econet Privilege Escalation
2011-09-05 00:00:00
Linux Kernel 2.6.37 (RedHat Ubuntu 10.04) - Full-Nelson.c Local Privilege Escalation
2010-12-07 00:00:00
suse
suse
local privilege escalation in kernel
2011-01-25 15:24:01
local privilege escalation, remote denial of in kernel
2011-02-11 13:07:24
local privilege escalation in kernel
2010-09-23 16:33:25
ubuntucve
ubuntucve
CVE-2010-3849
2010-11-30 00:00:00
CVE-2010-4082
2010-11-30 00:00:00
CVE-2010-3850
2010-11-30 00:00:00
exploitdb
exploitdb
Linux Kernel &lt; 2.6.36.2 (Ubuntu 10.04) - &#039;Half-Nelson.c&#039; Econet Privilege Escalation
2011-09-05 00:00:00
Linux Kernel 2.6.37 (RedHat / Ubuntu 10.04) - &#039;Full-Nelson.c&#039; Local Privilege Escalation
2010-12-07 00:00:00
prion
prion
Null pointer dereference
2010-12-30 19:00:00
Design/Logic Flaw
2010-12-30 19:00:00
Design/Logic Flaw
2010-09-08 20:00:00
nvd
nvd
CVE-2010-3849
2010-12-30 19:00:03
CVE-2010-2955
2010-09-08 20:00:03
CVE-2010-4082
2010-11-30 22:14:00
redhatcve
redhatcve
CVE-2010-3849
2019-10-04 22:31:45
CVE-2010-3850
2015-10-30 09:28:09
CVE-2010-3848
2015-10-30 10:35:21
debiancve
debiancve
CVE-2013-2128
2013-06-07 14:03:18
cve
cve
CVE-2010-3850
2010-12-30 19:00:03
CVE-2010-2955
2010-09-08 20:00:03
CVE-2010-3849
2010-12-30 19:00:03
cvelist
cvelist
CVE-2013-2128
2013-06-07 10:00:00
CVE-2010-3849
2010-12-30 18:00:00
CVE-2010-3850
2010-12-30 18:00:00
veracode
veracode
Information Disclosure
2020-04-10 00:50:00
Information Disclosure
2020-04-10 00:55:15
redhat
redhat
(RHSA-2010:0771) Moderate: kernel-rt security and bug fix update
2010-10-14 00:00:00
(RHSA-2013:1080) Moderate: kernel security and bug fix update
2013-07-16 00:00:00
(RHSA-2013:1051) Moderate: kernel security and bug fix update
2013-07-16 00:00:00
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerabilities
2011-04-20 00:00:00
Linux kernel vulnerabilities
2011-03-03 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00
kitploit
kitploit
[Linux Exploit Suggester] Grab the Linux Operating Systems release version, and return a suggestive list of possible exploits
2013-08-29 00:48:00
fedora
fedora
[SECURITY] Fedora 13 Update: kernel-2.6.34.6-54.fc13
2010-09-09 01:17:51
[SECURITY] Fedora 13 Update: kernel-2.6.34.7-63.fc13
2010-12-07 20:07:41
[SECURITY] Fedora 13 Update: kernel-2.6.34.7-56.fc13
2010-09-21 01:30:38
debian
debian
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-11-27 04:49:43
osv
osv
linux-2.6 - several issues
2010-11-26 00:00:00
oraclelinux
oraclelinux
Unbreakable enterprise kernel security and bug fix update
2010-12-09 00:00:00
kernel security and bug fix update
2013-07-16 00:00:00
kernel security and bug fix update
2011-02-12 00:00:00
centos
centos
kernel, perf, python security update
2013-07-17 04:56:29
altlinux
altlinux
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt9
2013-07-17 00:00:00
amazon
amazon
Medium: kernel
2013-08-13 21:32:00

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.1%

JSON
Related for USN-1023-1
openvas56nessus41f52securityvulns4threatpost1seebug5packetstorm2exploitpack2suse14ubuntucve6exploitdb2prion6nvd6redhatcve3debiancve1cve6cvelist6veracode2redhat7ubuntu8kitploit1fedora6debian1osv1oraclelinux3centos1altlinux1amazon1