Canonical Ltd. Ubuntu Linux

ソフト名：Canonical Ltd. Ubuntu Linux 10.04 (Kernel.org Linux Kernel 2.6.x)

回避策：USN-1216-1にて対応

脆弱性：セキュリティ制限の回避, 機密情報の奪取, 権限の昇格, DoS攻撃, システムアクセス, カーネルスタックメモリの曝露, プロセス設定の操作, 不正パケット, メモリの浪費, メモリ破壊, メモリリーク, クラッシュ, イベントオーバーフローエラー, 不正アプリケーション

ソース：

http://www.ubuntu.com/

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-September/001426.html

http://secunia.com/advisories/39080/

http://secunia.com/advisories/42061/

http://secunia.com/advisories/43496/

http://secunia.com/advisories/43846/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45420/

http://secunia.com/advisories/45533/

http://secunia.com/advisories/46147/

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_23.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_19.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4076

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4077

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4251

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4805

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1493

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1577

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2213

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2700

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2723

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2918

CVE：CVE-2010-4076, CVE-2010-4077, CVE-2010-4251, CVE-2010-4805, CVE-2011-1020, CVE-2011-1493, CVE-2011-1577, CVE-2011-2213, CVE-2011-2484, CVE-2011-2492, CVE-2011-2700, CVE-2011-2723, CVE-2011-2918

危険性：Medium Risk

Debian GNU/Linux

ソフト名：Debian GNU/Linux 5.0 (Kernel.org Linux Kernel 2.6.x)

回避策：DSA-2310-1にて対応

脆弱性：セキュリティ制限の回避, 機密情報の奪取, 権限の昇格, DoS攻撃, システムアクセス, ファイル操作, 整数オーバーフローエラー, クラッシュ, NULLポインタの逆参照, カーネルメモリ破壊, メモリ情報の曝露, プロセス設定の操作, 展開処理エラー, メモリリーク, カーネルスタックメモリの曝露, 不正CIFSメッセージ

ソース：

http://www.debian.org/

http://lists.debian.org/debian-security-announce/2011/msg00187.html

http://secunia.com/advisories/40205/

http://secunia.com/advisories/43009/

http://secunia.com/advisories/43496/

http://secunia.com/advisories/44094/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45695/

http://secunia.com/advisories/46133/

http://dvw-j.blogspot.com/2011/01/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_3728.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_26.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4067

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0712

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2209

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2211

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2213

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2496

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2497

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2525

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2928

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3188

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3191

CVE：CVE-2009-4067, CVE-2011-0712, CVE-2011-1020, CVE-2011-2209, CVE-2011-2211, CVE-2011-2213, CVE-2011-2484, CVE-2011-2491, CVE-2011-2492, CVE-2011-2495, CVE-2011-2496, CVE-2011-2497, CVE-2011-2525, CVE-2011-2928, CVE-2011-3188, CVE-2011-3191

危険性：Medium Risk

SUSE Linux Enterprise Server

ソフト名：SUSE Linux Enterprise Server (SLES) 10 (Kernel.org Linux Kernel 2.6.x)

回避策：SUSE-SA:2011:040, SUSE-SU-2011:1058-1にて対応

脆弱性：セッションの乗っ取り, 権限の昇格, DoS攻撃, システムアクセス, バッファオーバーフロー, 展開処理エラー, アロケーションエラー, 不正CIFSメッセージ, クラッシュ, メモリ破壊, 入力検証エラー, 区域外メモリの使用, カーネルスタックメモリの曝露

ソース：

http://www.suse.com/products/server/

http://www.suse.com/support/security/advisories/2011_40_kernel.html

http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00023.html

http://secunia.com/advisories/41493/

http://secunia.com/advisories/43716/

http://secunia.com/advisories/44094/

http://secunia.com/advisories/44248/

http://secunia.com/advisories/45695/

http://secunia.com/advisories/46104/

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_15.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_3728.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_856.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_26.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0726

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1017

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1093

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1585

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1745

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1746

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1776

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2022

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2182

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2496

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3191

CVE：CVE-2011-0726, CVE-2011-1017, CVE-2011-1093, CVE-2011-1585, CVE-2011-1745, CVE-2011-1746, CVE-2011-1776, CVE-2011-2022, CVE-2011-2182, CVE-2011-2491, CVE-2011-2496, CVE-2011-3191

危険性：Medium Risk

Kernel.org Linux Kernel

ソフト名：Kernel.org Linux Kernel 2.6.x

回避策：あり

脆弱性：DoS攻撃

ソース：

http://www.kernel.org/

https://github.com/torvalds/linux/commit/70945643722ffeac779d2529a348f99567fa5c33

https://bugzilla.redhat.com/show_bug.cgi?id=682829

https://github.com/torvalds/linux/commit/70945643722ffeac779d2529a348f99567fa5c33

http://secunia.com/advisories/45936/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3363

CVE：CVE-2011-3363

危険性：Low Risk

Canonical Ltd. Ubuntu Linux

ソフト名：Canonical Ltd. Ubuntu Linux 10.04/10.10 (Kernel.org Linux Kernel 2.6.x)

回避策：USN-1201-1, USN-1202-1, USN-1203-1, USN-1204-1, USN-1205-1, USN-1208-1にて対応

脆弱性：セキュリティ制限の回避, 機密情報の奪取, DoS攻撃, システムアクセス, メモリ情報の曝露, プロセス設定の操作, メモリ破壊, メモリリーク, クラッシュ, イベントオーバーフローエラー, 不正アプリケーション, 不正パケット, メモリの浪費, 整数切り捨てエラー, バウンダリエラー, 権限の昇格, CPUリソースの浪費, デリファレンスエラー, NULLポインタ参照エラー, 解放後使用エラー, 入力検証エラー, 無限ループ, ゼロ除算エラー, システムコール

ソース：

http://www.ubuntu.com/

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-September/001411.html

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-September/001412.html

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-September/001413.html

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-September/001415.html

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-September/001418.html

http://secunia.com/advisories/39080/

http://secunia.com/advisories/41002/

http://secunia.com/advisories/41263/

http://secunia.com/advisories/41440/

http://secunia.com/advisories/41493/

http://secunia.com/advisories/42035/

http://secunia.com/advisories/42061/

http://secunia.com/advisories/42126/

http://secunia.com/advisories/42172/

http://secunia.com/advisories/42176/

http://secunia.com/advisories/42187/

http://secunia.com/advisories/43009/

http://secunia.com/advisories/43435/

http://secunia.com/advisories/43496/

http://secunia.com/advisories/43537/

http://secunia.com/advisories/43576/

http://secunia.com/advisories/43594/

http://secunia.com/advisories/43806/

http://secunia.com/advisories/43841/

http://secunia.com/advisories/43846/

http://secunia.com/advisories/44220/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45420/

http://secunia.com/advisories/45533/

http://secunia.com/advisories/45993/

http://secunia.com/advisories/45996/

http://secunia.com/advisories/45997/

http://secunia.com/advisories/46003/

http://secunia.com/advisories/46007/

http://dvw-j.blogspot.com/2011/01/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/02/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/03/canonical-ltd-ubuntu-linux_322.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_02.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_08.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_15.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_16.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_3101.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_22.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_23.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_29.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_22.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_26.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_856.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_19.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3296

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3297

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3858

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3859

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3874

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3880

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4073

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4075

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4076

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4077

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4080

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4081

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4082

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4083

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4157

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4158

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4160

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4162

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4163

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4169

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4175

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4242

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4243

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4248

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4251

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4256

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4526

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4565

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4649

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4668

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4805

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0463

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0521

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0695

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0711

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0712

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0726

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1010

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1012

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1013

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1016

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1017

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1019

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1044

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1078

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1079

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1080

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1082

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1090

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1093

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1160

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1163

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1169

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1170

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1171

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1172

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1173

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1180

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1478

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1493

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1494

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1577

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1593

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1598

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1745

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1746

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1748

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1770

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1833

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2022

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2213

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2534

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2699

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2700

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2723

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2918

CVE：CVE-2010-3296, CVE-2010-3297, CVE-2010-3858, CVE-2010-3859, CVE-2010-3874, CVE-2010-3880, CVE-2010-4073, CVE-2010-4075, CVE-2010-4076, CVE-2010-4077, CVE-2010-4080, CVE-2010-4081, CVE-2010-4082, CVE-2010-4083, CVE-2010-4157, CVE-2010-4158, CVE-2010-4160, CVE-2010-4162, CVE-2010-4163, CVE-2010-4169, CVE-2010-4175, CVE-2010-4242, CVE-2010-4243, CVE-2010-4248, CVE-2010-4251, CVE-2010-4256, CVE-2010-4526, CVE-2010-4565, CVE-2010-4649, CVE-2010-4668, CVE-2010-4805, CVE-2011-0463, CVE-2011-0521, CVE-2011-0695, CVE-2011-0711, CVE-2011-0712, CVE-2011-0726, CVE-2011-1010, CVE-2011-1012, CVE-2011-1013, CVE-2011-1016, CVE-2011-1017, CVE-2011-1019, CVE-2011-1020, CVE-2011-1044, CVE-2011-1078, CVE-2011-1079, CVE-2011-1080, CVE-2011-1082, CVE-2011-1090, CVE-2011-1093, CVE-2011-1160, CVE-2011-1163, CVE-2011-1169, CVE-2011-1170, CVE-2011-1171, CVE-2011-1172, CVE-2011-1173, CVE-2011-1180, CVE-2011-1478, CVE-2011-1493, CVE-2011-1494, CVE-2011-1495, CVE-2011-1577, CVE-2011-1593, CVE-2011-1598, CVE-2011-1745, CVE-2011-1746, CVE-2011-1748, CVE-2011-1770, CVE-2011-1833, CVE-2011-2022, CVE-2011-2213, CVE-2011-2484, CVE-2011-2492, CVE-2011-2534, CVE-2011-2699, CVE-2011-2700, CVE-2011-2723, CVE-2011-2918

危険性：Medium Risk

Red Hat Enterprise MRG

ソフト名：Red Hat Enterprise MRG v2 for Red Hat Enterprise Linux (version 6) (Kernel.org Linux Kernel 2.6.x)

回避策：RHSA-2011:1253-01にて対応

脆弱性：セッション乗っ取り, セキュリティ制限の回避, 機密情報の奪取, 権限の昇格, DoS攻撃, システムアクセス, カーネルメモリ破壊, プロセス設定の操作, カーネルのクラッシュ, デリファレンスエラー, 二重解放エラー, メモリリーク, 展開処理エラー, システムコール, NULLポインタ参照エラー, バッファオーバーフロー, アロケーションエラー, アウトオブメモリ, CPUリソースの浪費, 整数オーバーフローエラー, 区域外メモリの読み出し

ソース：

http://www.redhat.com/mrg/

https://rhn.redhat.com/errata/RHSA-2011-1253.html

http://secunia.com/advisories/41493/

http://secunia.com/advisories/42964/

http://secunia.com/advisories/43009/

http://secunia.com/advisories/43496/

http://secunia.com/advisories/43576/

http://secunia.com/advisories/43594/

http://secunia.com/advisories/44091/

http://secunia.com/advisories/44094/

http://secunia.com/advisories/44164/

http://secunia.com/advisories/44220/

http://secunia.com/advisories/44248/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45193/

http://secunia.com/advisories/45236/

http://secunia.com/advisories/45253/

http://secunia.com/advisories/45994/

http://dvw-j.blogspot.com/2011/01/red-hat-enterprise-linux_21.html

http://dvw-j.blogspot.com/2011/01/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_16.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_08.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_13.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_3728.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_22.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_26.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_856.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/07/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/07/red-hat-enterprise-linux_15.html

http://dvw-j.blogspot.com/2011/07/red-hat-enterprise-linux_19.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4243

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4526

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1021

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1090

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1160

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1478

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1479

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1494

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1576

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1577

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1585

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1593

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1598

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1745

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1746

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1748

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1767

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1768

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1770

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1776

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2022

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2183

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2496

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2497

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2517

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2695

CVE：CVE-2010-4243, CVE-2010-4526, CVE-2011-1020, CVE-2011-1021, CVE-2011-1090, CVE-2011-1160, CVE-2011-1478, CVE-2011-1479, CVE-2011-1494, CVE-2011-1495, CVE-2011-1576, CVE-2011-1577, CVE-2011-1585, CVE-2011-1593, CVE-2011-1598, CVE-2011-1745, CVE-2011-1746, CVE-2011-1748, CVE-2011-1767, CVE-2011-1768, CVE-2011-1770, CVE-2011-1776, CVE-2011-2022, CVE-2011-2183, CVE-2011-2484, CVE-2011-2491, CVE-2011-2492, CVE-2011-2495, CVE-2011-2496, CVE-2011-2497, CVE-2011-2517, CVE-2011-2695

危険性：Medium Risk

Debian GNU/Linux

ソフト名：Debian GNU/Linux 6.0 (Kernel.org Linux Kernel 2.6.x)

回避策：DSA-2303-1, DSA-2303-2にて対応

脆弱性：機密情報の奪取, 権限の昇格, DoS攻撃, システムアクセス, 展開処理エラー, メモリリーク, カーネルスタックメモリの曝露, カーネルのクラッシュ, イベントオーバーフローエラー, 不正アプリケーション, 不正CIFSメッセージ, NULLポインタの逆参照

ソース：

http://www.debian.org/

http://lists.debian.org/debian-security-announce/2011/msg00179.html

http://lists.debian.org/debian-security-announce/2011/msg00180.html

http://secunia.com/advisories/40205/

http://secunia.com/advisories/44094/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45420/

http://secunia.com/advisories/45489/

http://secunia.com/advisories/45533/

http://secunia.com/advisories/45695/

http://secunia.com/advisories/45933/

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_3728.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_16.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_19.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_26.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1576

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1768

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2496

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2497

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2517

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2525

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2700

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2723

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2905

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2909

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2918

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2928

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3188

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3191

CVE：CVE-2011-1020, CVE-2011-1576, CVE-2011-1768, CVE-2011-2484, CVE-2011-2491, CVE-2011-2492, CVE-2011-2495, CVE-2011-2496, CVE-2011-2497, CVE-2011-2517, CVE-2011-2525, CVE-2011-2700, CVE-2011-2723, CVE-2011-2905, CVE-2011-2909, CVE-2011-2918, CVE-2011-2928, CVE-2011-3188, CVE-2011-3191

危険性：Medium Risk

OpenVZ

ソフト名：OpenVZ (Kernel.org Linux Kernel 2.6.x)

回避策：RHEL5の028stab093.2へのアップデートにて対応

脆弱性：DoS攻撃, セキュリティ制限の回避, 機密情報の奪取, 権限の昇格, 整数オーバーフローエラー, カーネルのクラッシュ, NULLポインタの逆参照

ソース：

http://wiki.openvz.org/Main_Page

http://wiki.openvz.org/Download/kernel/rhel5/028stab093.2

http://secunia.com/advisories/45328/

http://secunia.com/advisories/45889/

http://dvw-j.blogspot.com/2011/07/red-hat-enterprise-linux_4167.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1780

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2525

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2689

CVE：CVE-2011-1780, CVE-2011-2525, CVE-2011-2689

危険性：Low Risk

Red Hat Enterprise Linux

ソフト名：Red Hat Enterprise Linux 5 (Server)/Desktop 5 (Kernel.org Linux Kernel 2.6.39, XenSource. Inc. Xen 3.3)

回避策：RHSA-2011:1212-01, Red Hat Bug#714867にて対応

脆弱性：機密情報の奪取, 権限の昇格, DoS攻撃, クラッシュ, 入力検証エラー, ハイパーコール

ソース：

http://www.redhat.com/rhel/server/

http://www.redhat.com/rhel/desktop/

https://rhn.redhat.com/errata/RHSA-2011-1212.html

https://bugzilla.redhat.com/show_bug.cgi?id=714867

http://xenbits.xen.org/hg/xen-3.1-testing.hg/rev/15644

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45835/

http://secunia.com/advisories/45897/

http://dvw-j.blogspot.com/2011/09/xensource-inc-xen.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2482

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2517

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2519

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2901

CVE：CVE-2011-2482, CVE-2011-2491, CVE-2011-2495, CVE-2011-2517, CVE-2011-2519, CVE-2011-2901

危険性：Medium Risk

Citrix XenServer

ソフト名：Citrix XenServer 5.0/5.5/5.6 SP2 (Kernel.org Linux Kernel 2.6.x, Internet Software Consortium ISC DHCP 3/4.1.x/4.2.x, XenSource. Inc. Xen 3.x/4.x)

回避策：あり

脆弱性：権限の昇格, DoS攻撃, システムアクセス, 不正パケット, カーネルのクラッシュ, メモリの浪費, カーネルメモリ破壊, 応答処理の脆弱性, , 整数オーバーフローエラー, バッファオーバーフロー, リモートコード実行, 解凍エラー, 無限ループ, メモリリーク, システムコール, アロケーションエラー, アウトオブメモリ, システムのクラッシュ, CPUリソースの浪費, , 入力検証エラー, ハイパーコール

ソース：

http://www.citrix.com/English/ps2/products/product.asp?contentID=683148

http://support.citrix.com/article/CTX130325

http://secunia.com/advisories/39080/

http://secunia.com/advisories/43009/

http://secunia.com/advisories/44037/

http://secunia.com/advisories/44502/

http://secunia.com/advisories/45746/

http://secunia.com/advisories/45835/

http://secunia.com/advisories/45880/

http://dvw-j.blogspot.com/2011/01/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/04/internet-software-consortium-isc-dhcp.html

http://dvw-j.blogspot.com/2011/05/xensource-incxen-red-hat-enterprise.html

http://dvw-j.blogspot.com/2011/08/red-hat-enterprise-linux_26.html

http://dvw-j.blogspot.com/2011/09/xensource-inc-xen.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4251

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0997

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1478

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1583

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1898

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2901

CVE：CVE-2010-4251, CVE-2011-0997, CVE-2011-1478, CVE-2011-1583, CVE-2011-1898, CVE-2011-2901

危険性：Medium Risk

Novell SUSE Linux Enterprise Server

ソフト名：Novell SUSE Linux Enterprise Server (SLES) 11 (Kernel.org Linux Kernel 2.6.x)

回避策：SUSE-SU-2011:0984-2, SUSE-SA:2011:038にて対応

脆弱性：機密情報の奪取, 権限の昇格, DoS攻撃, クラッシュ, イベントオーバーフローエラー, 不正アプリケーション, カーネルスタックメモリの曝露, NULLポインタの参照

ソース：

http://www.novell.com/promo/home/sle11.html

https://hermes.opensuse.org/messages/11647323

https://lwn.net/Articles/457379/

http://secunia.com/advisories/42148/

http://secunia.com/advisories/45420/

http://secunia.com/advisories/45533/

http://secunia.com/advisories/45810/

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_19.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3881

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1776

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2700

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2909

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2918

CVE：CVE-2010-3881, CVE-2011-1776, CVE-2011-2495, CVE-2011-2700, CVE-2011-2909, CVE-2011-2918

危険性：Medium Risk

Kernel.org Linux Kernel

ソフト名：Kernel.org Linux Kernel 2.6.x

回避策：未対応

脆弱性：DoS攻撃, 不正CIFSメッセージ, クラッシュ

ソース：

http://www.kernel.org/

https://patchwork.kernel.org/patch/1088082/

https://bugzilla.redhat.com/show_bug.cgi?id=732869

http://secunia.com/advisories/45695/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3191

CVE：CVE-2011-3191

危険性：Low Risk

Red Hat Enterprise Linux

ソフト名：Red Hat Enterprise Linux Desktop 6/HPC Node 6/Server 6/Workstation 6 (Kernel.org Linux Kernel 2.6.x)

回避策：RHSA-2011:1189-1にて対応

脆弱性：セキュリティ制限の回避, 機密情報の奪取, DoS攻撃, システムアクセス, メモリリーク, カーネルのクラッシュ, システムコール, カーネルスタックメモリの曝露, バッファオーバーフロー, アロケーションエラー, アウトオブメモリ, システムのクラッシュ, CPUリソースの浪費, 整数オーバーフローエラー, メモリ破壊

ソース：

http://www.redhat.com/rhel/

http://www.redhat.com/rhel/server/

http://www.redhat.com/rhel/desktop/

https://rhn.redhat.com/errata/RHSA-2011-1189.html

http://secunia.com/advisories/43806/

http://secunia.com/advisories/44164/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45193/

http://secunia.com/advisories/45253/

http://secunia.com/advisories/45746/

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_22.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_22.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/07/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/07/red-hat-enterprise-linux_19.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1182

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1576

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1593

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1776

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1898

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2183

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2213

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2497

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2517

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2689

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2695

CVE：CVE-2011-1182, CVE-2011-1576, CVE-2011-1593, CVE-2011-1776, CVE-2011-1898, CVE-2011-2183, CVE-2011-2213, CVE-2011-2491, CVE-2011-2492, CVE-2011-2495, CVE-2011-2497, CVE-2011-2517, CVE-2011-2689, CVE-2011-2695

危険性：Medium Risk

Red Hat Fedora

ソフト名：Red Hat Fedora 14 (Kernel.org Linux Kernel 2.6.x)

回避策：FEDORA-2011-11103にて対応

脆弱性：権限の昇格, DoS攻撃, システムアクセス, NULLポインタ参照エラー, カーネルのクラッシュ

ソース：

http://fedoraproject.org/

http://lists.fedoraproject.org/pipermail/package-announce/2011-August/064393.html

http://secunia.com/advisories/44220/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45193/

http://secunia.com/advisories/45489/

http://secunia.com/advisories/45751/

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_26.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/07/kernelorg-linux-kernel.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1598

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1748

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2183

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2213

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2497

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2517

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2695

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2699

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2905

CVE：CVE-2011-1598, CVE-2011-1748, CVE-2011-2183, CVE-2011-2213, CVE-2011-2484, CVE-2011-2497, CVE-2011-2517, CVE-2011-2695, CVE-2011-2699, CVE-2011-2905

危険性：Medium Risk