Published: 03/10/2012 Updated: 13/02/2023

CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9

VMScore: 676

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Heap-based buffer overflow in the udf_load_logicalvol function in fs/udf/super.c in the Linux kernel prior to 3.4.5 allows remote malicious users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted UDF filesystem.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
canonical ubuntu linux 11.04
canonical ubuntu linux 10.04
canonical ubuntu linux 12.04

Synopsis Moderate: kernel security and bug fix update Type/Severity Security Advisory: Moderate Topic Updated kernel packages that fix multiple security issues and several bugsare now available for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as having moderatesecurity ...

Synopsis Low: kernel security and bug fix update Type/Severity Security Advisory: Low Topic Updated kernel packages that fix multiple security issues and several bugsare now available for Red Hat Enterprise Linux 5The Red Hat Security Response Team has rated this update as having lowsecurity impact A Comm ...

Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic Updated kernel-rt packages that fix several security issues and multiplebugs are now available for Red Hat Enterprise MRG 22The Red Hat Security Response Team has rated this update as havingimportant ...

A use-after-free flaw was found in the Linux kernel's memory management subsystem in the way quota handling for huge pages was performed A local, unprivileged user could use this flaw to cause a denial of service or, potentially, escalate their privileges (CVE-2012-2133, Moderate) A use-after-free flaw was found in the madvise() system call imple ...

Several security issues were fixed in the kernel ...

The system could be made to crash under certain conditions ...

Several security issues were fixed in the kernel ...

CWE-787 http://www.openwall.com/lists/oss-security/2012/07/10/2 https://bugzilla.redhat.com/show_bug.cgi?id=843139 https://github.com/torvalds/linux/commit/1df2ae31c724e57be9d7ac00d78db8a5dabdd050 https://github.com/torvalds/linux/commit/adee11b2085bee90bd8f4f52123ffb07882d6256 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5 http://www.ubuntu.com/usn/USN-1557-1 http://ubuntu.com/usn/usn-1529-1 http://secunia.com/advisories/50506 http://rhn.redhat.com/errata/RHSA-2013-0594.html http://www.ubuntu.com/usn/USN-1556-1 http://www.ubuntu.com/usn/USN-1555-1 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1df2ae31c724e57be9d7ac00d78db8a5dabdd050 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=adee11b2085bee90bd8f4f52123ffb07882d6256 https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2012:1426 https://usn.ubuntu.com/1532-1/https://alas.aws.amazon.com/ALAS-2012-142.html

CVE-2012-3400

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect