What is the severity of USN-1336-1?

The severity of USN-1336-1 is classified as high due to potential crashes and denial of service.

How do I fix USN-1336-1?

To fix USN-1336-1, update your system to the recommended version 3.0.0-15.26 of the affected Linux kernel packages.

Which systems are affected by USN-1336-1?

USN-1336-1 affects Ubuntu 11.10 systems running specific Linux kernel image packages.

What vulnerabilities are addressed in USN-1336-1?

USN-1336-1 addresses vulnerabilities in the HFS and XFS filesystems that could lead to kernel crashes.

Who discovered the issues in USN-1336-1?

The issues in USN-1336-1 were discovered by security researcher Clement Lecigne.

Vulnerability/
USN-1336-1

CWE

190

23/1/2012

USN-1336-1: Linux kernel vulnerability

First published: Mon Jan 23 2012(Updated: )

Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. (CVE-2011-4077) A flaw was found in how the Linux kernel handles user-defined key types. An unprivileged local user could exploit this to crash the system. (CVE-2011-4110) A flaw was found in the Journaling Block Device (JBD). A local attacker able to mount ext3 or ext4 file systems could exploit this to crash the system, leading to a denial of service. (CVE-2011-4132) Clement Lecigne discovered a bug in the HFS file system bounds checking. When a malformed HFS file system is mounted a local user could crash the system or gain root privileges. (CVE-2011-4330) Chen Haogang discovered an integer overflow that could result in memory corruption. A local unprivileged user could use this to crash the system. (CVE-2012-0044) Jüri Aedla discovered that the kernel incorrectly handled /proc//mem permissions. A local attacker could exploit this and gain root privileges. (CVE-2012-0056)

Affected Software	Affected Version	How to fix
All of
ubuntu/linux-image-3.0.0-15-omap	<3.0.0-15.26	3.0.0-15.26
Ubuntu 22.04 LTS	=11.10
All of
ubuntu/linux-image-3.0.0-15-generic	<3.0.0-15.26	3.0.0-15.26
Ubuntu 22.04 LTS	=11.10
All of
ubuntu/linux-image-3.0.0-15-powerpc-smp	<3.0.0-15.26	3.0.0-15.26
Ubuntu 22.04 LTS	=11.10
All of
ubuntu/linux-image-3.0.0-15-server	<3.0.0-15.26	3.0.0-15.26
Ubuntu 22.04 LTS	=11.10
All of
ubuntu/linux-image-3.0.0-15-generic-pae	<3.0.0-15.26	3.0.0-15.26
Ubuntu 22.04 LTS	=11.10
All of
ubuntu/linux-image-3.0.0-15-powerpc64-smp	<3.0.0-15.26	3.0.0-15.26
Ubuntu 22.04 LTS	=11.10
All of
ubuntu/linux-image-3.0.0-15-powerpc	<3.0.0-15.26	3.0.0-15.26
Ubuntu 22.04 LTS	=11.10
All of
ubuntu/linux-image-3.0.0-15-virtual	<3.0.0-15.26	3.0.0-15.26
Ubuntu 22.04 LTS	=11.10

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

Frequently Asked Questions

What is the severity of USN-1336-1?
The severity of USN-1336-1 is classified as high due to potential crashes and denial of service.
How do I fix USN-1336-1?
To fix USN-1336-1, update your system to the recommended version 3.0.0-15.26 of the affected Linux kernel packages.
Which systems are affected by USN-1336-1?
USN-1336-1 affects Ubuntu 11.10 systems running specific Linux kernel image packages.
What vulnerabilities are addressed in USN-1336-1?
USN-1336-1 addresses vulnerabilities in the HFS and XFS filesystems that could lead to kernel crashes.
Who discovered the issues in USN-1336-1?
The issues in USN-1336-1 were discovered by security researcher Clement Lecigne.

agent/severity
agent/type
agent/first-publish-date
agent/last-modified-date
agent/event
agent/description
agent/title
agent/weakness
agent/references
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/usn
source/Ubuntu
agent/software-canonical-lookup
agent/software-canonical-lookup-request
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu 22.04 lts
version/ubuntu 22.04 lts/11.10