CVE-2011-1090
Bug #800775 reported by
Paolo Pisati
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Low
|
Unassigned | ||
Hardy |
Fix Released
|
Low
|
Andy Whitcroft | ||
Lucid |
Fix Released
|
Low
|
Unassigned | ||
Maverick |
Fix Released
|
Low
|
Unassigned | ||
Natty |
Fix Released
|
Low
|
Unassigned | ||
Oneiric |
Invalid
|
Low
|
Unassigned | ||
linux-ec2 (Ubuntu) |
Invalid
|
Low
|
Unassigned | ||
Hardy |
Invalid
|
Low
|
Unassigned | ||
Lucid |
Fix Released
|
Low
|
Unassigned | ||
Maverick |
Invalid
|
Low
|
Unassigned | ||
Natty |
Invalid
|
Low
|
Unassigned | ||
Oneiric |
Invalid
|
Low
|
Unassigned | ||
linux-fsl-imx51 (Ubuntu) |
Invalid
|
Low
|
Unassigned | ||
Hardy |
Invalid
|
Low
|
Unassigned | ||
Lucid |
Fix Released
|
Low
|
Unassigned | ||
Maverick |
Invalid
|
Low
|
Unassigned | ||
Natty |
Invalid
|
Low
|
Unassigned | ||
Oneiric |
Invalid
|
Low
|
Unassigned | ||
linux-lts-backport-maverick (Ubuntu) |
Invalid
|
Low
|
Unassigned | ||
Hardy |
Invalid
|
Low
|
Unassigned | ||
Lucid |
Fix Released
|
Low
|
Unassigned | ||
Maverick |
Invalid
|
Low
|
Unassigned | ||
Natty |
Invalid
|
Low
|
Unassigned | ||
Oneiric |
Invalid
|
Low
|
Unassigned | ||
linux-lts-backport-natty (Ubuntu) |
Invalid
|
Low
|
Unassigned | ||
Hardy |
Invalid
|
Low
|
Unassigned | ||
Lucid |
Invalid
|
Low
|
Unassigned | ||
Maverick |
Invalid
|
Low
|
Unassigned | ||
Natty |
Invalid
|
Low
|
Unassigned | ||
Oneiric |
Invalid
|
Low
|
Unassigned | ||
linux-mvl-dove (Ubuntu) |
Invalid
|
Low
|
Unassigned | ||
Hardy |
Invalid
|
Low
|
Unassigned | ||
Lucid |
Fix Released
|
Low
|
Unassigned | ||
Maverick |
Fix Released
|
Low
|
Unassigned | ||
Natty |
Invalid
|
Low
|
Unassigned | ||
Oneiric |
Invalid
|
Low
|
Unassigned | ||
linux-ti-omap4 (Ubuntu) |
Invalid
|
Low
|
Unassigned | ||
Hardy |
Invalid
|
Low
|
Unassigned | ||
Lucid |
Invalid
|
Low
|
Unassigned | ||
Maverick |
Fix Released
|
Low
|
Unassigned | ||
Natty |
Won't Fix
|
Low
|
Unassigned | ||
Oneiric |
Invalid
|
Low
|
Unassigned |
Bug Description
The __nfs4_proc_set_acl function in fs/nfs/nfs4proc.c in the Linux kernel before 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service (panic) via a crafted attempt to set an ACL.
Break-Fix: - e9e3d724e2145f5
CVE References
- 2010-3296
- 2010-3297
- 2010-3858
- 2010-3859
- 2010-3880
- 2010-4073
- 2010-4076
- 2010-4077
- 2010-4080
- 2010-4081
- 2010-4082
- 2010-4083
- 2010-4157
- 2010-4158
- 2010-4162
- 2010-4163
- 2010-4165
- 2010-4169
- 2010-4175
- 2010-4238
- 2010-4242
- 2010-4243
- 2010-4248
- 2010-4251
- 2010-4256
- 2010-4565
- 2010-4649
- 2010-4805
- 2011-0463
- 2011-0695
- 2011-0711
- 2011-0726
- 2011-1010
- 2011-1012
- 2011-1013
- 2011-1016
- 2011-1017
- 2011-1019
- 2011-1020
- 2011-1078
- 2011-1079
- 2011-1080
- 2011-1082
- 2011-1090
- 2011-1093
- 2011-1160
- 2011-1163
- 2011-1169
- 2011-1170
- 2011-1171
- 2011-1172
- 2011-1173
- 2011-1180
- 2011-1478
- 2011-1493
- 2011-1494
- 2011-1577
- 2011-1598
- 2011-1746
- 2011-1748
- 2011-1770
- 2011-1833
- 2011-2484
- 2011-2492
- 2011-2534
- 2011-2699
- 2011-2918
affects: | ubuntu → linux-fsl-imx51 (Ubuntu) |
tags: | added: kernel-cve-tracker |
visibility: | private → public |
Changed in linux-ti-omap4 (Ubuntu Maverick): | |
status: | New → Fix Committed |
Changed in linux (Ubuntu Maverick): | |
status: | New → Fix Committed |
Changed in linux (Ubuntu Hardy): | |
status: | New → Confirmed |
Changed in linux-fsl-imx51 (Ubuntu Hardy): | |
status: | New → Invalid |
Changed in linux-fsl-imx51 (Ubuntu Maverick): | |
status: | New → Invalid |
Changed in linux (Ubuntu Lucid): | |
status: | New → Fix Released |
Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
status: | New → Confirmed |
Changed in linux-ti-omap4 (Ubuntu Hardy): | |
status: | New → Invalid |
Changed in linux-ti-omap4 (Ubuntu Lucid): | |
status: | New → Invalid |
tags: |
added: kernel-cve-tracking-bug removed: kernel-cve-tracker |
Changed in linux (Ubuntu Hardy): | |
assignee: | nobody → Andy Whitcroft (apw) |
status: | Confirmed → In Progress |
Changed in linux (Ubuntu Hardy): | |
status: | In Progress → Fix Committed |
Changed in linux (Ubuntu Oneiric): | |
status: | New → Invalid |
Changed in linux (Ubuntu Natty): | |
status: | New → Fix Released |
Changed in linux-ti-omap4 (Ubuntu Oneiric): | |
status: | New → Invalid |
Changed in linux-ti-omap4 (Ubuntu Natty): | |
status: | New → Fix Committed |
Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
status: | Confirmed → Fix Committed |
Changed in linux-fsl-imx51 (Ubuntu Oneiric): | |
status: | New → Invalid |
Changed in linux-fsl-imx51 (Ubuntu Natty): | |
status: | New → Invalid |
description: | updated |
Changed in linux-ec2 (Ubuntu Lucid): | |
status: | New → Fix Released |
Changed in linux-ec2 (Ubuntu Oneiric): | |
status: | New → Invalid |
Changed in linux-ec2 (Ubuntu Hardy): | |
status: | New → Invalid |
Changed in linux-ec2 (Ubuntu Maverick): | |
status: | New → Invalid |
Changed in linux-ec2 (Ubuntu Natty): | |
status: | New → Invalid |
Changed in linux-lts-backport-natty (Ubuntu Lucid): | |
status: | New → Invalid |
Changed in linux-lts-backport-natty (Ubuntu Oneiric): | |
status: | New → Invalid |
Changed in linux-lts-backport-natty (Ubuntu Hardy): | |
status: | New → Invalid |
Changed in linux-lts-backport-natty (Ubuntu Maverick): | |
status: | New → Invalid |
Changed in linux-lts-backport-natty (Ubuntu Natty): | |
status: | New → Invalid |
Changed in linux-mvl-dove (Ubuntu Lucid): | |
status: | New → Fix Released |
Changed in linux-mvl-dove (Ubuntu Oneiric): | |
status: | New → Invalid |
Changed in linux-mvl-dove (Ubuntu Hardy): | |
status: | New → Invalid |
Changed in linux-mvl-dove (Ubuntu Maverick): | |
status: | New → Fix Released |
Changed in linux-mvl-dove (Ubuntu Natty): | |
status: | New → Invalid |
Changed in linux-lts-backport-maverick (Ubuntu Lucid): | |
status: | New → Fix Released |
Changed in linux-lts-backport-maverick (Ubuntu Oneiric): | |
status: | New → Invalid |
Changed in linux-lts-backport-maverick (Ubuntu Hardy): | |
status: | New → Invalid |
Changed in linux-lts-backport-maverick (Ubuntu Maverick): | |
status: | New → Invalid |
Changed in linux-lts-backport-maverick (Ubuntu Natty): | |
status: | New → Invalid |
description: | updated |
Changed in linux-ec2 (Ubuntu Lucid): | |
importance: | Undecided → Low |
Changed in linux-ec2 (Ubuntu Oneiric): | |
importance: | Undecided → Low |
Changed in linux-ec2 (Ubuntu Hardy): | |
importance: | Undecided → Low |
Changed in linux-ec2 (Ubuntu Maverick): | |
importance: | Undecided → Low |
Changed in linux-ec2 (Ubuntu Natty): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-natty (Ubuntu Lucid): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-natty (Ubuntu Oneiric): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-natty (Ubuntu Hardy): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-natty (Ubuntu Maverick): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-natty (Ubuntu Natty): | |
importance: | Undecided → Low |
Changed in linux-mvl-dove (Ubuntu Lucid): | |
importance: | Undecided → Low |
Changed in linux-mvl-dove (Ubuntu Oneiric): | |
importance: | Undecided → Low |
Changed in linux-mvl-dove (Ubuntu Hardy): | |
importance: | Undecided → Low |
Changed in linux-mvl-dove (Ubuntu Maverick): | |
importance: | Undecided → Low |
Changed in linux-mvl-dove (Ubuntu Natty): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-maverick (Ubuntu Lucid): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-maverick (Ubuntu Oneiric): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-maverick (Ubuntu Hardy): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-maverick (Ubuntu Maverick): | |
importance: | Undecided → Low |
Changed in linux-lts-backport-maverick (Ubuntu Natty): | |
importance: | Undecided → Low |
Changed in linux (Ubuntu Lucid): | |
importance: | Undecided → Low |
Changed in linux (Ubuntu Oneiric): | |
importance: | Undecided → Low |
Changed in linux (Ubuntu Hardy): | |
importance: | Undecided → Low |
Changed in linux (Ubuntu Maverick): | |
importance: | Undecided → Low |
Changed in linux (Ubuntu Natty): | |
importance: | Undecided → Low |
Changed in linux-ti-omap4 (Ubuntu Lucid): | |
importance: | Undecided → Low |
Changed in linux-ti-omap4 (Ubuntu Oneiric): | |
importance: | Undecided → Low |
Changed in linux-ti-omap4 (Ubuntu Hardy): | |
importance: | Undecided → Low |
Changed in linux-ti-omap4 (Ubuntu Maverick): | |
importance: | Undecided → Low |
Changed in linux-ti-omap4 (Ubuntu Natty): | |
importance: | Undecided → Low |
Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
importance: | Undecided → Low |
Changed in linux-fsl-imx51 (Ubuntu Oneiric): | |
importance: | Undecided → Low |
Changed in linux-fsl-imx51 (Ubuntu Hardy): | |
importance: | Undecided → Low |
Changed in linux-fsl-imx51 (Ubuntu Maverick): | |
importance: | Undecided → Low |
Changed in linux-fsl-imx51 (Ubuntu Natty): | |
importance: | Undecided → Low |
Changed in linux-ti-omap4 (Ubuntu Natty): | |
status: | Fix Committed → Won't Fix |
To post a comment you must log in.
This bug was fixed in the package linux - 2.6.35-30.56
---------------
linux (2.6.35-30.56) maverick-proposed; urgency=low
[Herton R. Krzesinski]
* Release Tracking Bug
- LP: #808934
[ Herton Ronaldo Krzesinski ]
* Revert "SAUCE: mmc: Enable MMC card reader for RICOH [1180:e823]"
[ Upstream Kernel Changes ]
* Revert "x86: Flush TLB if PGD entry is changed in i386 PAE mode"
- LP: #805209
linux (2.6.35-30.55) maverick-proposed; urgency=low
[Steve Conklin]
* Release Tracking Bug
- LP: #801690
[ Jeremy Kerr ]
* SAUCE: cx23885: Fix argument to videobuf_dma_unmap
- LP: #800527
[ Manoj Iyer ]
* SAUCE: mmc: Enable MMC card reader for RICOH [1180:e823]
- LP: #790754
[ Upstream Kernel Changes ]
* agp: fix OOM and buffer overflow efi.c: corrupted GUID partition tables can cause kernel
- LP: #791918
- CVE-2011-1746
* tty: icount changeover for other main devices, CVE-2010-4076,
CVE-2010-4077
- LP: #720189
- CVE-2010-4077
* fs/partitions/
oops
- LP: #795418
- CVE-2011-1577
* Fix corrupted OSF partition table parsing
- LP: #796606
- CVE-2011-1163
* can: Add missing socket check in can/bcm release.
- LP: #796502
- CVE-2011-1598
* nfs4: Ensure that ACL pages sent over NFS were not allocated from the
slab (v3) CVE-2011-1090
- LP: #800775
- CVE-2011-1090
-- Herton Ronaldo Krzesinski <email address hidden> Mon, 11 Jul 2011 15:17:32 -0300