- Home
- CVEs with nessus.description==Updated+kernel+packages+that+fix+three+security+issues+and+several+bugs+are+now+available+for+Red+Hat+Enterprise+Linux+6.3+Extended+Update+Support.%0A%0AThe+Red+Hat+Security+Response+Team+has+rated+this+update+as+having+important+security+impact.+Common+Vulnerability+Scoring+System+%28CVSS%29+base+scores%2C+which+give+detailed+severity+ratings%2C+are+available+for+each+vulnerability+from+the+CVE+links+in+the+References+section.%0A%0AThe+kernel+packages+contain+the+Linux+kernel%2C+the+core+of+any+Linux+operating+system.%0A%0A%2A+A+race+condition+was+found+in+the+way+asynchronous+I%2FO+and+fallocate%28%29+interacted+when+using+the+ext4+file+system.+A+local%2C+unprivileged+user+could+use+this+flaw+to+expose+random+data+from+an+extent+whose+data+blocks+have+not+yet+been+written%2C+and+thus+contain+data+from+a+deleted+file.+%28CVE-2012-4508%2C+Important%29%0A%0A%2A+An+information+leak+flaw+was+found+in+the+way+the+Linux+kernel%27s+device+mapper+subsystem%2C+under+certain+conditions%2C+interpreted+data+written+to+snapshot+block+devices.+An+attacker+could+use+this+flaw+to+read+data+from+disk+blocks+in+free+space%2C+which+are+normally+inaccessible.+%28CVE-2013-4299%2C+Moderate%29%0A%0A%2A+A+format+string+flaw+was+found+in+the+Linux+kernel%27s+block+layer.+A+privileged%2C+local+user+could+potentially+use+this+flaw+to+escalate+their+privileges+to+kernel+level+%28ring0%29.+%28CVE-2013-2851%2C+Low%29%0A%0ARed+Hat+would+like+to+thank+Theodore+Ts%27o+for+reporting+CVE-2012-4508%2C+Fujitsu+for+reporting+CVE-2013-4299%2C+and+Kees+Cook+for+reporting+CVE-2013-2851.+Upstream+acknowledges+Dmitry+Monakhov+as+the+original+reporter+of+CVE-2012-4508.%0A%0AThis+update+also+fixes+several+bugs.+Documentation+for+these+changes+will+be+available+shortly+from+the+Technical+Notes+document+linked+to+in+the+References+section.%0A%0AAll+kernel+users+are+advised+to+upgrade+to+these+updated+packages%2C+which+contain+backported+patches+to+correct+these+issues.+The+system+must+be+rebooted+for+this+update+to+take+effect
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top