[ALAS-2013-258] Amazon Linux AMI 2012.09 - ALAS-2013-258: low priority package update for kernel
Severity
Low
Affected Packages
15
CVEs
1
Package updates are available for Amazon Linux AMI that fix the following vulnerabilities:
CVE-2013-6382:
Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging the CAP_SYS_ADMIN capability for a (1) XFS_IOC_ATTRLIST_BY_HANDLE or (2) XFS_IOC_ATTRLIST_BY_HANDLE_32 ioctl call with a crafted length value, related to the xfs_attrlist_by_handle function in fs/xfs/xfs_ioctl.c and the xfs_compat_attrlist_by_handle function in fs/xfs/xfs_ioctl32.c.
1033603:
CVE-2013-6382 Kernel: fs: xfs: missing check for ZERO_SIZE_PTR
- ID
- ALAS-2013-258
- Severity
- low
- URL
- https://alas.aws.amazon.com/ALAS-2013-258.html
- Published
-
2013-12-11T20:33:00
(10 years ago) - Modified
-
2014-09-16T22:08:00
(10 years ago) - Rights
- Amazon Linux Security Team
- Other Advisories
-
-
FEDORA-2013-22531
-
FEDORA-2013-22669
-
FEDORA-2013-22695
-
FEDORA-2013-23653
-
FEDORA-2014-0684
-
FEDORA-2014-1072
-
FEDORA-2014-11008
-
FEDORA-2014-13020
-
FEDORA-2014-14068
-
FEDORA-2014-17244
-
FEDORA-2014-2606
-
FEDORA-2014-2887
-
FEDORA-2014-3448
-
FEDORA-2014-4360
-
FEDORA-2014-4849
-
FEDORA-2014-5609
-
FEDORA-2014-6354
-
FEDORA-2014-7320
-
FEDORA-2014-7426
-
FEDORA-2014-8487
-
FEDORA-2014-9142
-
FEDORA-2014-9449
-
SUSE-SU-2015:0481-1
-
SUSE-SU-2015:0581-1
-
SUSE-SU-2015:0652-1
-
SUSE-SU-2015:0736-1
-
SUSE-SU-2015:1174-1
-
SUSE-SU-2015:1376-1
-
USN-2109-1
-
USN-2110-1
-
USN-2113-1
-
USN-2117-1
-
USN-2128-1
-
USN-2129-1
-
USN-2135-1
-
USN-2138-1
-
USN-2139-1
-
USN-2141-1
-
USN-2158-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| CVE | CVE-2013-6382 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/amazonlinux/kernel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
 kernel
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-tools
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-tools
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-tools-debuginfo
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-tools-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-tools-debuginfo
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-headers
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-headers?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-headers
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-doc?arch=noarch&distro=amazonlinux-1 | amazonlinux |
kernel-doc
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | noarch | |
| Affected | pkg:rpm/amazonlinux/kernel-devel?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-devel
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-devel?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-devel
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | i686 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo-common-x86_64?arch=x86_64&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo-common-x86_64
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | x86_64 | |
| Affected | pkg:rpm/amazonlinux/kernel-debuginfo-common-i686?arch=i686&distro=amazonlinux-1 | amazonlinux |
kernel-debuginfo-common-i686
|
< 3.4.73-64.112.amzn1 | amazonlinux-1 | i686 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |