CVE-2011-0463 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	2.1 UNKNOWN	LOCAL	LOW		AV:L/AC:L/Au:N/C:P/I:N/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 25%

Vendor	Product	Version
linux	linux_kernel	𝑥 ≤ 2.6.38.2
canonical	ubuntu_linux	8.04

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

linux

natty	Fixed 2.6.38-9.43 released
maverick	Fixed 2.6.35-30.52 released
lucid	Fixed 2.6.32-32.62 released
karmic	not-affected
hardy	Fixed 2.6.24-29.90 released
dapper	dne

linux-ec2

natty	dne
maverick	ignored
lucid	Fixed 2.6.32-316.30 released
karmic	ignored
hardy	dne
dapper	dne

linux-fsl-imx51

natty	dne
maverick	dne
lucid	Fixed 2.6.31-609.26 released
karmic	ignored
hardy	dne
dapper	dne

linux-lts-backport-maverick

natty	dne
maverick	dne
lucid	Fixed 2.6.35-30.54~lucid1 released
karmic	dne
hardy	dne
dapper	dne

linux-lts-backport-natty

natty	dne
maverick	dne
lucid	not-affected
hardy	dne

linux-mvl-dove

natty	dne
maverick	Fixed 2.6.32-417.34 released
lucid	Fixed 2.6.32-217.34 released
karmic	ignored
hardy	dne
dapper	dne

linux-source-2.6.15

natty	dne
maverick	dne
lucid	dne
karmic	dne
hardy	dne
dapper	not-affected

linux-ti-omap4

natty	Fixed 2.6.38-1209.13 released
maverick	Fixed 2.6.35-903.23 released
lucid	dne
karmic	dne
hardy	dne
dapper	dne

Known Exploits!

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=272b62c1f0f6f742046e45b50b6fec98860208a0

http://oss.oracle.com/pipermail/ocfs2-devel/2011-February/007846.html

http://secunia.com/advisories/43966

http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc1

http://www.ubuntu.com/usn/USN-1146-1

https://bugzilla.novell.com/show_bug.cgi?id=673037

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=272b62c1f0f6f742046e45b50b6fec98860208a0

http://oss.oracle.com/pipermail/ocfs2-devel/2011-February/007846.html

http://secunia.com/advisories/43966

http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc1

http://www.ubuntu.com/usn/USN-1146-1

https://bugzilla.novell.com/show_bug.cgi?id=673037