Detections
Analytics
Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-752-1)
critical Nessus Plugin ID 36418
Synopsis
The remote Ubuntu host is missing one or more security-related patches.Description
NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. (CVE-2008-4307)Sparc syscalls did not correctly check mmap regions. A local attacker could cause a system panic, leading to a denial of service.
(CVE-2008-6107)
In certain situations, cloned processes were able to send signals to parent processes, crossing privilege boundaries. A local attacker could send arbitrary signals to parent processes, leading to a denial of service. (CVE-2009-0028)
The 64-bit syscall interfaces did not correctly handle sign extension.
A local attacker could make malicious syscalls, possibly gaining root privileges. The x86_64 architecture was not affected. (CVE-2009-0029)
The SCTP stack did not correctly validate FORWARD-TSN packets. A remote attacker could send specially crafted SCTP traffic causing a system crash, leading to a denial of service. (CVE-2009-0065)
The Dell platform device did not correctly validate user parameters. A local attacker could perform specially crafted reads to crash the system, leading to a denial of service. (CVE-2009-0322)
Network interfaces statistics for the SysKonnect FDDI driver did not check capabilities. A local user could reset statistics, potentially interfering with packet accounting systems. (CVE-2009-0675)
The getsockopt function did not correctly clear certain parameters. A local attacker could read leaked kernel memory, leading to a loss of privacy. (CVE-2009-0676)
The syscall interface did not correctly validate parameters when crossing the 64-bit/32-bit boundary. A local attacker could bypass certain syscall restricts via crafted syscalls. (CVE-2009-0834, CVE-2009-0835)
The shared memory subsystem did not correctly handle certain shmctl calls when CONFIG_SHMEM was disabled. Ubuntu kernels were not vulnerable, since CONFIG_SHMEM is enabled by default. (CVE-2009-0859).
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
Solution
Update the affected packages.See Also
Plugin Details
Severity: Critical
ID: 36418
File Name: ubuntu_USN-752-1.nasl
Version: 1.19
Type: local
Agent: unix
Family: Ubuntu Local Security Checks
Published: 4/23/2009
Updated: 1/19/2021
Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:canonical:ubuntu_linux:avm-fritz-firmware, p-cpe:/a:canonical:ubuntu_linux:avm-fritz-firmware-2.6.15-54, p-cpe:/a:canonical:ubuntu_linux:avm-fritz-kernel-source, p-cpe:/a:canonical:ubuntu_linux:fglrx-control, p-cpe:/a:canonical:ubuntu_linux:fglrx-kernel-source, p-cpe:/a:canonical:ubuntu_linux:linux, p-cpe:/a:canonical:ubuntu_linux:linux-386, p-cpe:/a:canonical:ubuntu_linux:linux-686, p-cpe:/a:canonical:ubuntu_linux:linux-686-smp, p-cpe:/a:canonical:ubuntu_linux:linux-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-amd64-k8-smp, p-cpe:/a:canonical:ubuntu_linux:linux-amd64-server, p-cpe:/a:canonical:ubuntu_linux:linux-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-2.6-386, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-2.6-686, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-2.6-server, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-386, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-686, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-amd64-server, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-server, p-cpe:/a:canonical:ubuntu_linux:linux-doc, p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.15, p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6, p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-386, p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-686, p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-server, p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-2.6-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-2.6-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-2.6-amd64-server, p-cpe:/a:canonical:ubuntu_linux:linux-backports-modules-2.6-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-server, p-cpe:/a:canonical:ubuntu_linux:linux-headers-386, p-cpe:/a:canonical:ubuntu_linux:linux-headers-686, p-cpe:/a:canonical:ubuntu_linux:linux-headers-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-headers-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-headers-amd64-server, p-cpe:/a:canonical:ubuntu_linux:linux-headers-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-headers-server, p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386, p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-686, p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-server, p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server, p-cpe:/a:canonical:ubuntu_linux:linux-image-386, p-cpe:/a:canonical:ubuntu_linux:linux-image-686, p-cpe:/a:canonical:ubuntu_linux:linux-image-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-image-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-image-amd64-server, p-cpe:/a:canonical:ubuntu_linux:linux-image-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-image-server, p-cpe:/a:canonical:ubuntu_linux:linux-kernel-devel, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-2.6-386, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-2.6-686, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-2.6-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-2.6-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-2.6-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-386, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-686, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-amd64-generic, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-amd64-k8, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-amd64-xeon, p-cpe:/a:canonical:ubuntu_linux:linux-restricted-modules-common, p-cpe:/a:canonical:ubuntu_linux:linux-server, p-cpe:/a:canonical:ubuntu_linux:linux-source, p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.15, p-cpe:/a:canonical:ubuntu_linux:nvidia-glx, p-cpe:/a:canonical:ubuntu_linux:nvidia-glx-dev, p-cpe:/a:canonical:ubuntu_linux:nvidia-glx-legacy, p-cpe:/a:canonical:ubuntu_linux:nvidia-glx-legacy-dev, p-cpe:/a:canonical:ubuntu_linux:nvidia-kernel-source, p-cpe:/a:canonical:ubuntu_linux:nvidia-legacy-kernel-source, p-cpe:/a:canonical:ubuntu_linux:xorg-driver-fglrx, p-cpe:/a:canonical:ubuntu_linux:xorg-driver-fglrx-dev, cpe:/o:canonical:ubuntu_linux:6.06:-:lts
Required KB Items: Host/cpu, Host/Ubuntu, Host/Ubuntu/release, Host/Debian/dpkg-l
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 4/7/2009
Vulnerability Publication Date: 1/7/2009
Reference Information
CVE: CVE-2008-4307, CVE-2008-6107, CVE-2009-0028, CVE-2009-0029, CVE-2009-0065, CVE-2009-0322, CVE-2009-0675, CVE-2009-0676, CVE-2009-0834, CVE-2009-0835, CVE-2009-0859