Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-2462-1
HistoryJan 13, 2015 - 12:00 a.m.

Linux kernel vulnerabilities

2015-01-1300:00:00
ubuntu.com
59

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

33.2%

JSON

Releases

  • Ubuntu 10.04

Packages

  • linux - Linux kernel

Details

Andy Lutomirski discovered that the Linux kernel does not properly handle
faults associated with the Stack Segment (SS) register in the x86
architecture. A local attacker could exploit this flaw to gain
administrative privileges. (CVE-2014-9322)

Lars Bull reported a race condition in the PIT (programmable interrupt
timer) emulation in the KVM (Kernel Virtual Machine) subsystem of the Linux
kernel. A local guest user with access to PIT i/o ports could exploit this
flaw to cause a denial of service (crash) on the host. (CVE-2014-3611)

Lars Bull and Nadav Amit reported a flaw in how KVM (the Kernel Virtual
Machine) handles noncanonical writes to certain MSR registers. A privileged
guest user can exploit this flaw to cause a denial of service (kernel
panic) on the host. (CVE-2014-3610)

OSVersionArchitecturePackageVersionFilename
Ubuntu10.04noarchlinux-image-2.6.32-71-powerpc-smp< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchblock-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchchar-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchcrypto-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchfat-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchfb-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchfirewire-core-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchfloppy-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchfs-core-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Ubuntu10.04noarchfs-secondary-modules-2.6.32-71-generic-di< 2.6.32-71.138UNKNOWN
Rows per page:
1-10 of 531

Related

openvas 45
oraclelinux 16
nessus 56
redhat 15
centos 6
ubuntu 8
mageia 6
debiancve 3
f5 4
cvelist 3
securelist 1
exploitpack 2
prion 3
zdt 2
cve 3
nvd 3
android 1
veracode 1
exploitdb 2
ubuntucve 3
securityvulns 5
suse 4
archlinux 2
debian 2
fedora 1
amazon 1
osv 1
openvas
openvas
Ubuntu: Security Advisory (USN-2462-1)
2015-01-23 00:00:00
Ubuntu: Security Advisory (USN-2491-1)
2015-02-04 00:00:00
Oracle: Security Advisory (ELSA-2015-0869)
2015-10-06 00:00:00
oraclelinux
oraclelinux
kvm security update
2015-04-22 00:00:00
kernel security update
2014-12-18 00:00:00
kernel security update
2014-12-18 00:00:00
nessus
nessus
RHEL 5 : kvm (RHSA-2015:0869)
2015-04-23 00:00:00
Ubuntu 10.04 LTS : linux vulnerabilities (USN-2462-1)
2015-01-14 00:00:00
Scientific Linux Security Update : kvm on SL5.x x86_64 (20150422)
2015-04-23 00:00:00
redhat
redhat
(RHSA-2015:0869) Important: kvm security update
2015-04-22 00:00:00
(RHSA-2014:2008) Important: kernel security update
2014-12-17 00:00:00
(RHSA-2014:2030) Important: kernel security update
2014-12-22 00:00:00
centos
centos
kmod, kvm security update
2015-04-22 14:47:16
kernel, perf, python security update
2014-12-18 17:17:29
kernel security update
2014-12-18 13:03:54
ubuntu
ubuntu
Linux kernel (EC2) vulnerabilities
2015-02-04 00:00:00
Linux kernel vulnerabilities
2014-10-31 00:00:00
Linux kernel vulnerabilities
2014-10-30 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2014-11-21 15:44:16
Updated kernel packages fix security vulnerabilities
2014-11-21 15:44:16
Updated kernel-vserver packages fix security vulnerabilities
2015-02-19 17:43:07
debiancve
debiancve
CVE-2014-9322
2014-12-17 11:59:02
CVE-2014-3610
2014-11-10 11:55:06
CVE-2014-3611
2014-11-10 11:55:06
f5
f5
SOL16122 - Linux kernel vulnerability CVE-2014-9322
2015-02-12 00:00:00
K16122 : Linux kernel vulnerability CVE-2014-9322
2015-09-16 00:00:00
K15912 : Linux kernel driver vulnerabilities CVE-2014-3185, CVE-2014-3611, CVE-2014-3645, and CVE-2014-3646
2015-01-31 00:00:00
cvelist
cvelist
CVE-2014-9322
2014-12-17 11:00:00
CVE-2014-3610
2014-11-10 11:00:00
CVE-2014-3611
2014-11-10 11:00:00
securelist
securelist
Hacking microcontroller firmware through a USB
2019-03-21 16:00:02
exploitpack
exploitpack
Linux Kernel 3.17.5 - IRET Instruction #SS Fault Handling Crash (PoC)
2015-03-04 00:00:00
Linux Kernel - BadIRET Local Privilege Escalation
2017-07-24 00:00:00
prion
prion
Design/Logic Flaw
2014-12-17 11:59:00
Open redirect
2014-11-10 11:55:00
Race condition
2014-11-10 11:55:00
zdt
zdt
Linux Kernel - BadIRET Local Privilege Escalation Exploit
2018-03-01 00:00:00
Linux Kernel IRET Instruction #SS Fault Handling - Crash PoC
2015-03-05 00:00:00
cve
cve
CVE-2014-9322
2014-12-17 11:59:02
CVE-2014-3610
2014-11-10 11:55:06
CVE-2014-3611
2014-11-10 11:55:06
nvd
nvd
CVE-2014-9322
2014-12-17 11:59:02
CVE-2014-3610
2014-11-10 11:55:06
CVE-2014-3611
2014-11-10 11:55:06
android
android
CVE-2014-9322
2016-04-02 00:00:00
veracode
veracode
Privilege Escalation
2019-01-15 09:03:32
exploitdb
exploitdb
Linux Kernel - &#039;BadIRET&#039; Local Privilege Escalation
2017-07-24 00:00:00
Linux Kernel 3.17.5 - IRET Instruction #SS Fault Handling Crash (PoC)
2015-03-04 00:00:00
ubuntucve
ubuntucve
CVE-2014-9322
2014-12-17 00:00:00
CVE-2014-3610
2014-10-23 00:00:00
CVE-2014-3611
2014-10-23 00:00:00
securityvulns
securityvulns
[USN-2394-1] Linux kernel &#40;Trusty HWE&#41; vulnerabilities
2014-11-03 00:00:00
[SECURITY] [DSA 3060-1] linux security update
2014-11-03 00:00:00
[ MDVSA-2014:230 ] kernel
2014-11-30 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2015-01-16 14:05:04
kernel update for Evergreen 11.4 (important)
2014-12-31 11:06:28
Security update for Linux kernel (important)
2014-12-24 08:05:54
archlinux
archlinux
linux-lts: local denial of service, privilege escalation
2014-11-17 00:00:00
linux: local denial of service, privilege escalation
2014-11-17 00:00:00
debian
debian
[SECURITY] [DSA 3060-1] linux security update
2014-10-31 15:41:41
[SECURITY] [DSA 3060-1] linux security update
2014-10-31 15:41:41
fedora
fedora
[SECURITY] Fedora 21 Update: kernel-3.17.2-300.fc21
2014-11-03 05:23:10
amazon
amazon
Medium: kernel
2014-12-03 22:27:00
osv
osv
linux - security update
2014-10-31 00:00:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

33.2%

JSON
Related for USN-2462-1
openvas45oraclelinux16nessus56redhat15centos6ubuntu8mageia6debiancve3f54cvelist3securelist1exploitpack2prion3zdt2cve3nvd3android1veracode1exploitdb2ubuntucve3securityvulns5suse4archlinux2debian2fedora1amazon1osv1