What is the severity of USN-2066-1?

The severity of USN-2066-1 is high due to its potential to allow a remote authenticated user to exploit sensitive information or data.

How do I fix USN-2066-1?

To fix USN-2066-1, you need to update your Ubuntu Linux kernel to version 3.2.0-58.88 or later.

Which Ubuntu versions are affected by USN-2066-1?

USN-2066-1 affects Ubuntu 12.04 installations running specific versions of the Linux kernel.

What types of attacks can USN-2066-1 enable?

USN-2066-1 can enable attacks that result in unauthorized access to sensitive information or data corruption.

Who discovered the vulnerability related to USN-2066-1?

The vulnerability in USN-2066-1 was discovered by Hannes Frederic Sowa.

Vulnerability/
USN-2066-1

CWE

119 190

3/1/2014

USN-2066-1: Linux kernel vulnerabilities

First published: Fri Jan 03 2014(Updated: )

A flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299) Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470) Multiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511) Nico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514) Nico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515) A flaw in the handling of memory regions of the kernel virtual machine (KVM) subsystem was discovered. A local user with the ability to assign a device could exploit this flaw to cause a denial of service (memory consumption). (CVE-2013-4592) Nico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's debugfs filesystem. An administrative local user could exploit this flaw to cause a denial of service (OOPS). (CVE-2013-6378) A flaw was discovered in the Linux kernel's compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383) Nico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763) Evan Huus reported a buffer overflow in the Linux kernel's radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027) An information leak was discovered in the Linux kernel's SIOCWANDEV ioctl call. A local user with the CAP_NET_ADMIN capability could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1444) An information leak was discovered in the wanxl ioctl function the Linux kernel. A local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1445)

Affected Software	Affected Version	How to fix
All of
ubuntu/linux-image-3.2.0-58-omap	<3.2.0-58.88	3.2.0-58.88
Ubuntu 22.04 LTS	=12.04
All of
ubuntu/linux-image-3.2.0-58-powerpc-smp	<3.2.0-58.88	3.2.0-58.88
Ubuntu 22.04 LTS	=12.04
All of
ubuntu/linux-image-3.2.0-58-virtual	<3.2.0-58.88	3.2.0-58.88
Ubuntu 22.04 LTS	=12.04
All of
ubuntu/linux-image-3.2.0-58-powerpc64-smp	<3.2.0-58.88	3.2.0-58.88
Ubuntu 22.04 LTS	=12.04
All of
ubuntu/linux-image-3.2.0-58-generic-pae	<3.2.0-58.88	3.2.0-58.88
Ubuntu 22.04 LTS	=12.04
All of
ubuntu/linux-image-3.2.0-58-highbank	<3.2.0-58.88	3.2.0-58.88
Ubuntu 22.04 LTS	=12.04
All of
ubuntu/linux-image-3.2.0-58-generic	<3.2.0-58.88	3.2.0-58.88
Ubuntu 22.04 LTS	=12.04

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

Frequently Asked Questions

What is the severity of USN-2066-1?
The severity of USN-2066-1 is high due to its potential to allow a remote authenticated user to exploit sensitive information or data.
How do I fix USN-2066-1?
To fix USN-2066-1, you need to update your Ubuntu Linux kernel to version 3.2.0-58.88 or later.
Which Ubuntu versions are affected by USN-2066-1?
USN-2066-1 affects Ubuntu 12.04 installations running specific versions of the Linux kernel.
What types of attacks can USN-2066-1 enable?
USN-2066-1 can enable attacks that result in unauthorized access to sensitive information or data corruption.
Who discovered the vulnerability related to USN-2066-1?
The vulnerability in USN-2066-1 was discovered by Hannes Frederic Sowa.

agent/references
agent/severity
agent/weakness
agent/type
agent/first-publish-date
agent/last-modified-date
agent/title
agent/description
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/usn
source/Ubuntu
agent/software-canonical-lookup
agent/software-canonical-lookup-request
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu 22.04 lts
version/ubuntu 22.04 lts/12.04