This bug was fixed in the package linux-ec2 - 2.6.32-361.74
--------------- linux-ec2 (2.6.32-361.74) lucid-proposed; urgency=low
[ Stefan Bader ]
* Rebased to Ubuntu-2.6.32-56.118 * Release Tracking Bug - LP: #1266612
[ Ubuntu: 2.6.32-56.118 ]
* inet: prevent leakage of uninitialized memory to user in recv syscalls - LP: #1256919 - CVE-2013-6405 * inet: fix addr_len/msg->msg_namelen assignment in recv_error and rxpmtu functions - LP: #1256919 - CVE-2013-6405 * aacraid: missing capable() check in compat ioctl - LP: #1256094 - CVE-2013-6383 -- Stefan Bader <email address hidden> Wed, 08 Jan 2014 10:18:44 +0100
This bug was fixed in the package linux-ec2 - 2.6.32-361.74
---------------
linux-ec2 (2.6.32-361.74) lucid-proposed; urgency=low
[ Stefan Bader ]
* Rebased to Ubuntu- 2.6.32- 56.118
* Release Tracking Bug
- LP: #1266612
[ Ubuntu: 2.6.32-56.118 ]
* inet: prevent leakage of uninitialized memory to user in recv syscalls msg->msg_ namelen assignment in recv_error and rxpmtu
- LP: #1256919
- CVE-2013-6405
* inet: fix addr_len/
functions
- LP: #1256919
- CVE-2013-6405
* aacraid: missing capable() check in compat ioctl
- LP: #1256094
- CVE-2013-6383
-- Stefan Bader <email address hidden> Wed, 08 Jan 2014 10:18:44 +0100