Ubuntu 10.04 LTS Server Receives Yet Another Kernel Update
Feb 27, 2014, 08:00 (0 Talkback[s])
(Other stories by Marius Nestor)
The first security issue is related to a flaw discovered in the Linux kernel's compat ioctls for Adaptec AACRAID SCSI RAID devices, which could allow an unprivileged local user to compromise the data stored on those devices by sending administrative commands. The other four security issues are actually information leaks that have been discovered in Linux kernel's recvfrom, recvmsg and recvmmsg system calls, Phonet (Phone Network Protocol), L2TP (Layer 2 Tunneling Protocol) and IEEE 802.15.4 (Low-Rate Wireless Personal Area Networks), which could allow a local user to access sensitive information from the kernel???s stack memory.