New Kernel Vulnerabilities Affect Four Ubuntu OSes

Posted by hanuca on Dec 1, 2012 5:47 AM EDT
Softpedia; By Marius Nestor
Mail this story
Print this story

Canonical announced a few hours ago, November 30, in a security notice, that a new Linux kernel update for its Ubuntu 12.10 (Quantal Quetzal), Ubuntu 12.04 LTS (Precise Pangolin), Ubuntu 11.10 (Oneiric Ocelot) and Ubuntu 10.04 LTS (Lucid Lynx) operating systems is now available, fixing two important security vulnerabilities discovered in the Linux kernel packages by various developers.

The first one, CVE-2012-0957, is related to a flaw in the Linux kernel's uname system call, which could allow unprivileged users to exploit it and read kernel stack memory.

The second one, CVE-2012-4565, is related to a flaw in the Linux kernel's TCP illinois congestion control algorithm, which could allow local attacker to cause a DoS (Denial of Service) attack.

Full Story

» Read more about: Story Type: News Story; Groups: Kernel, Linux, Ubuntu

« Return to the newswire homepage

This topic does not have any threads posted yet!

You cannot post until you login.