Univention Bugzilla – Bug 35226
linux: L2TP privilege escalation (3.2)
Last modified: 2014-07-18 16:53:44 CEST
These vulnerabilities are still unfixed in 3.10.x: Insecure block handling (CVE-2012-4542) Information leak in vhost-net zerocopy support (CVE-2014-0131) Information leak in skb_zerocopy (CVE-2014-2568) Denial of service in memory management (CVE-2014-4171)
Privilege escalation using L2TP sockets (CVE-2014-4943)
We will only fix the L2TP issue in this update, the other bugs have been moved to Bug 35397
The patch has been integrated and built, the meta package was updated. Hardware tests on i386 and amd64 were successful, I also tested the installation of a UCS base system on a UVMM/KVM system running the updated kernel. YAML files: 2014-07-18-linux.yaml and 2014-07-18-univention-kernel-image.yaml
Tests (KVM): OK Advisories: OK
http://errata.univention.de/ucs/3.2/151.html http://errata.univention.de/ucs/3.2/152.html