Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2012-2136
HistoryMay 29, 2012 - 12:00 a.m.

CVE-2012-2136

2012-05-2900:00:00
ubuntu.com
ubuntu.com
21

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0

Percentile

5.1%

JSON

The sock_alloc_send_pskb function in net/core/sock.c in the Linux kernel
before 3.4.5 does not properly validate a certain length value, which
allows local users to cause a denial of service (heap-based buffer overflow
and system crash) or possibly gain privileges by leveraging access to a
TUN/TAP device.

Bugs

Notes

Author Note
jdstrand linux-armadaxp is maintained by OEM
tyhicks No upstream fix yet, but an initial patch is under review (see References) Patch tags indicate that 2.6.27+ is affected.
OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchlinux<Β 2.6.24-32.105UNKNOWN
ubuntu10.04noarchlinux<Β 2.6.32-42.95UNKNOWN
ubuntu11.04noarchlinux<Β 2.6.38-15.65UNKNOWN
ubuntu11.10noarchlinux<Β 3.0.0-24.40UNKNOWN
ubuntu12.04noarchlinux<Β 3.2.0-29.46UNKNOWN
ubuntu12.04noarchlinux-armadaxp<Β 3.2.0-1606.9UNKNOWN
ubuntu10.04noarchlinux-ec2<Β 2.6.32-347.52UNKNOWN
ubuntu10.04noarchlinux-lts-backport-natty<Β 2.6.38-15.65~lucid1UNKNOWN
ubuntu10.04noarchlinux-lts-backport-oneiric<Β 3.0.0-24.40~lucid1UNKNOWN
ubuntu11.04noarchlinux-ti-omap4<Β 2.6.38-1209.25UNKNOWN
Rows per page:
1-10 of 121

Related

openvas 42
centos 2
nessus 37
ubuntu 11
amazon 1
debiancve 1
oraclelinux 7
redhat 3
nvd 1
cvelist 1
seebug 1
prion 1
cve 1
securityvulns 4
suse 2
openvas
openvas
RedHat Update for kernel RHSA-2012:0690-01
2012-06-01 00:00:00
Ubuntu: Security Advisory (USN-1598-1)
2012-10-11 00:00:00
CentOS Update for kernel CESA-2012:0690 centos5
2012-07-30 00:00:00
centos
centos
kernel security update
2012-05-29 22:57:55
kernel, perf, python security update
2012-06-19 10:27:24
nessus
nessus
Oracle Linux 5 : kernel (ELSA-2012-0690)
2013-07-12 00:00:00
Oracle Linux 5 : kernel (ELSA-2012-0690-1)
2013-07-12 00:00:00
RHEL 5 : kernel (RHSA-2012:0690)
2012-05-30 00:00:00
ubuntu
ubuntu
Linux kernel vulnerability
2012-10-09 00:00:00
Linux kernel (EC2) vulnerabilities
2012-08-10 00:00:00
Linux kernel vulnerabilities
2012-08-10 00:00:00
amazon
amazon
Medium: kernel
2012-06-10 11:46:00
debiancve
debiancve
CVE-2012-2136
2012-08-09 10:29:46
oraclelinux
oraclelinux
kernel security and bug fix update
2012-05-30 00:00:00
1
2012-05-30 00:00:00
Unbreakable Enterprise kernel security and bugfix update
2012-06-19 00:00:00
redhat
redhat
(RHSA-2012:0690) Important: kernel security and bug fix update
2012-05-29 00:00:00
(RHSA-2012:1087) Important: kernel security and bug fix update
2012-07-17 00:00:00
(RHSA-2012:0743) Important: kernel security and bug fix update
2012-06-18 00:00:00
nvd
nvd
CVE-2012-2136
2012-08-09 10:29:46
cvelist
cvelist
CVE-2012-2136
2012-08-09 10:00:00
seebug
seebug
Linux kernel 2.6.x 'sock_alloc_send_pskb()'ε‡½ζ•°ε †ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2012-05-30 00:00:00
prion
prion
Heap overflow
2012-08-09 10:29:00
cve
cve
CVE-2012-2136
2012-08-09 10:29:46
securityvulns
securityvulns
[USN-1531-1] Linux kernel vulnerabilities
2012-08-13 00:00:00
[USN-1529-1] Linux kernel vulnerabilities
2012-08-13 00:00:00
Linux kernel multiple security vulnerabilities
2012-08-13 00:00:00
suse
suse
Security update for Linux kernel (important)
2012-06-26 02:08:23
Security update for Linux kernel (important)
2012-10-24 09:08:54

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0

Percentile

5.1%

JSON
Related for UB:CVE-2012-2136
openvas42centos2nessus37ubuntu11amazon1debiancve1oraclelinux7redhat3nvd1cvelist1seebug1prion1cve1securityvulns4suse2