drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Preisgabe von Informationen in Linux
Name: |
Preisgabe von Informationen in Linux |
|
ID: |
USN-1992-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 12.04 LTS |
|
Datum: |
Di, 22. Oktober 2013, 11:11 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2237 |
|
Applikationen: |
Linux |
|
Originalnachricht |
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --===============5689078358587236547== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="tXH6xxdbExKbHxuLepq6bVhkxCcWoaBkA"
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --tXH6xxdbExKbHxuLepq6bVhkxCcWoaBkA Content-Type: text/plain; charset=UTF- Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-1992-1 October 22, 2013
linux vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 LTS
Summary:
The system could be made to expose sensitive information to a local user.
Software Description: - linux: Linux kernel
Details:
An information leak was discovered in the Linux kernel when reading broadcast messages from the notify_policy interface of the IPSec key_socket. A local user could exploit this flaw to examine potentially sensitive information in kernel memory.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 12.04 LTS: linux-image-3.2.0-55-generic 3.2.0-55.85 linux-image-3.2.0-55-generic-pae 3.2.0-55.85 linux-image-3.2.0-55-highbank 3.2.0-55.85 linux-image-3.2.0-55-omap 3.2.0-55.85 linux-image-3.2.0-55-powerpc-smp 3.2.0-55.85 linux-image-3.2.0-55-powerpc64-smp 3.2.0-55.85 linux-image-3.2.0-55-virtual 3.2.0-55.85
After a standard system update you need to reboot your computer to make all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. If you use linux-restricted-modules, you have to update that package as well to get modules which work with the new kernel version. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-server, linux-powerpc), a standard system upgrade will automatically perform this as well.
References: http://www.ubuntu.com/usn/usn-1992-1 CVE-2013-2237
Package Information: https://launchpad.net/ubuntu/+source/linux/3.2.0-55.85
--tXH6xxdbExKbHxuLepq6bVhkxCcWoaBkA Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQIcBAEBCgAGBQJSZf7CAAoJEAUvNnAY1cPYQQ8P/RbAfYmetdEqHBfPLhvaAqD9 eJa5/nebwXkGy3s8nlVAjuhsHbcfOBp3pJRRjgqqAcFrNn5I1GxObUcOr9xfVnJf JYbrB1algnpvJP2zqnPL0GNuihLCLYGvZpyuHB4sOddfN1QtWjKJRw/JI1XOLjwn P0gicRtQNj5j0m0Vb3BXs8gizxbloJLUJLpfyCrE4g26Ojts3F0fwapNNnEXxbgW iaY6oJCvPXeEqz+7jeBKNobsoHTgZ5FBt7xP+TKjfqLDjz7mM4bhn4JHjE9bstfx rL12NziCEsecMboTRx8HEGlxmbqTGj/VQsZvlDW9qJ+GYFAji1OCKoepB47EBFfY HyBgejkBUUAftMPDU6rUpLReKIU0Qr9Gdxz+dowA/FLuZHRRhnG4D70MBQqFIklc feRz8p8E4wgmP3pHOuQTgIExjIqc7sBAcBGb7J0v95nSPCI28HNSa0l5zrtpHIW4 HICKKvSR9YA3QxDEErvZ2OFmORA5iydkIgmDFGmgYI+u1BMcQzlp5znAi2MfquAw Jde7ABineQptPG+AB6hD2Kg9/tzj1zZ2iJfgd/93dCIZ0/3pt03FXjOW3p6D0YxW lfZ7t+39eTD690my26LnQOlYWy4DZQS+UkofRJ+0KDf0vyMER13ZTo8Ai+efXubG 1KFkfeitAhQJv00YvUzK =Bf33 -----END PGP SIGNATURE-----
--tXH6xxdbExKbHxuLepq6bVhkxCcWoaBkA--
--===============5689078358587236547== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============5689078358587236547==--
|
|
|
|