- Vulnerability/
- USN-2015-1
USN-2015-1: Linux kernel vulnerabilities
First published: Fri Nov 08 2013(Updated: )
Dan Carpenter discovered an information leak in the HP Smart Array and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-2147) Kees Cook discovered flaw in the Human Interface Device (HID) subsystem when CONFIG_HID_ZEROPLUS is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service via a specially crafted device. (CVE-2013-2889) Kees Cook discovered another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when any of CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF are enabled. A physcially proximate attacker can leverage this flaw to cause a denial of service vias a specially crafted device. (CVE-2013-2893) Kees Cook discovered yet another flaw in the Human Interface Device (HID) subsystem of the Linux kernel when CONFIG_HID_MULTITOUCH is enabled. A physically proximate attacker could leverage this flaw to cause a denial of service (OOPS) via a specially crafted device. (CVE-2013-2897) A flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-2.6.32-53-lpia | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-generic-pae | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-sparc64 | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-ia64 | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-386 | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-powerpc | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-versatile | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-generic | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-powerpc64-smp | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-preempt | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-powerpc-smp | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-server | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-sparc64-smp | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 | |
| All of | ||
| ubuntu/linux-image-2.6.32-53-virtual | <2.6.32-53.115 | 2.6.32-53.115 |
| Ubuntu 22.04 LTS | =10.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2013-2147
- https://ubuntu.com/security/CVE-2013-2889
- https://ubuntu.com/security/CVE-2013-2893
- https://ubuntu.com/security/CVE-2013-2897
- https://ubuntu.com/security/CVE-2013-4299
- https://ubuntu.com/security/notices/USN-2023-1
- https://ubuntu.com/security/notices/USN-2020-1
- https://ubuntu.com/security/notices/USN-2017-1
- https://ubuntu.com/security/notices/USN-1999-1
- https://ubuntu.com/security/notices/USN-1994-1
- https://ubuntu.com/security/notices/USN-2018-1
- https://ubuntu.com/security/notices/USN-1996-1
- https://ubuntu.com/security/notices/USN-2016-1
- https://ubuntu.com/security/notices/USN-2050-1
- https://ubuntu.com/security/notices/USN-1997-1
- https://ubuntu.com/security/notices/USN-2019-1
- https://ubuntu.com/security/notices/USN-2038-1
- https://ubuntu.com/security/notices/USN-2021-1
- https://ubuntu.com/security/notices/USN-2022-1
- https://ubuntu.com/security/notices/USN-2039-1
- https://ubuntu.com/security/notices/USN-2024-1
- https://ubuntu.com/security/notices/USN-2046-1
- https://ubuntu.com/security/notices/USN-2041-1
- https://ubuntu.com/security/notices/USN-2067-1
- https://ubuntu.com/security/notices/USN-2042-1
- https://ubuntu.com/security/notices/USN-2066-1
- https://ubuntu.com/security/notices/USN-2045-1
- https://ubuntu.com/security/notices/USN-2043-1
- https://ubuntu.com/security/notices/USN-2040-1
- https://ubuntu.com/security/notices/USN-2044-1
- https://ubuntu.com/security/notices/USN-2049-1
- https://launchpad.net/ubuntu/+source/linux/2.6.32-53.115
- https://ubuntu.com/security/notices/USN-2015-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the severity of USN-2015-1?
The severity of USN-2015-1 is considered to be high due to the potential for sensitive information exposure.
How do I fix USN-2015-1?
To fix USN-2015-1, update the affected packages to version 2.6.32-53.115 or higher.
Which versions of Ubuntu are affected by USN-2015-1?
Ubuntu 10.04 is the affected version for the vulnerability addressed in USN-2015-1.
What is the cause of the vulnerability in USN-2015-1?
The vulnerability in USN-2015-1 is caused by an information leak in the HP Smart Array and Compaq SMART2 disk-array driver.
Can USN-2015-1 be exploited locally?
Yes, a local user can exploit the vulnerability in USN-2015-1 to obtain sensitive information from kernel memory.
- agent/severity
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/references
- agent/description
- agent/event
- agent/title
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu 22.04 lts
- version/ubuntu 22.04 lts/10.04