CVE-2011-1173
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| linux (Ubuntu) |
Low
|
Unassigned | |||
| Hardy |
Low
|
Unassigned | |||
| Lucid |
Low
|
Unassigned | |||
| Maverick |
Low
|
Unassigned | |||
| Natty |
Low
|
Unassigned | |||
| Oneiric |
Low
|
Unassigned | |||
| linux-ec2 (Ubuntu) |
Low
|
Unassigned | |||
| Hardy |
Low
|
Unassigned | |||
| Lucid |
Low
|
Unassigned | |||
| Maverick |
Low
|
Unassigned | |||
| Natty |
Low
|
Unassigned | |||
| Oneiric |
Low
|
Unassigned | |||
| linux-fsl-imx51 (Ubuntu) |
Low
|
Unassigned | |||
| Hardy |
Low
|
Unassigned | |||
| Lucid |
Low
|
Unassigned | |||
| Maverick |
Low
|
Unassigned | |||
| Natty |
Low
|
Unassigned | |||
| Oneiric |
Low
|
Unassigned | |||
| linux-lts-backport-maverick (Ubuntu) |
Low
|
Unassigned | |||
| Hardy |
Low
|
Unassigned | |||
| Lucid |
Low
|
Unassigned | |||
| Maverick |
Low
|
Unassigned | |||
| Natty |
Low
|
Unassigned | |||
| Oneiric |
Low
|
Unassigned | |||
| linux-lts-backport-natty (Ubuntu) |
Low
|
Unassigned | |||
| Hardy |
Low
|
Unassigned | |||
| Lucid |
Low
|
Unassigned | |||
| Maverick |
Low
|
Unassigned | |||
| Natty |
Low
|
Unassigned | |||
| Oneiric |
Low
|
Unassigned | |||
| linux-mvl-dove (Ubuntu) |
Low
|
Unassigned | |||
| Hardy |
Low
|
Unassigned | |||
| Lucid |
Low
|
Unassigned | |||
| Maverick |
Low
|
Unassigned | |||
| Natty |
Low
|
Unassigned | |||
| Oneiric |
Low
|
Unassigned | |||
| linux-ti-omap4 (Ubuntu) |
Low
|
Unassigned | |||
| Hardy |
Low
|
Unassigned | |||
| Lucid |
Low
|
Unassigned | |||
| Maverick |
Low
|
Unassigned | |||
| Natty |
Low
|
Unassigned | |||
| Oneiric |
Low
|
Unassigned | |||
Bug Description
The econet_sendmsg function in net/econet/
Break-Fix: - 67c5c6cb8129c59
Related branches
CVE References
- 2010-3296
- 2010-3297
- 2010-3858
- 2010-3859
- 2010-3880
- 2010-4073
- 2010-4076
- 2010-4077
- 2010-4080
- 2010-4081
- 2010-4082
- 2010-4083
- 2010-4157
- 2010-4158
- 2010-4162
- 2010-4163
- 2010-4165
- 2010-4169
- 2010-4175
- 2010-4238
- 2010-4242
- 2010-4243
- 2010-4248
- 2010-4251
- 2010-4256
- 2010-4565
- 2010-4649
- 2010-4805
- 2011-0463
- 2011-0695
- 2011-0711
- 2011-0726
- 2011-1010
- 2011-1012
- 2011-1013
- 2011-1016
- 2011-1017
- 2011-1019
- 2011-1020
- 2011-1078
- 2011-1079
- 2011-1080
- 2011-1082
- 2011-1090
- 2011-1093
- 2011-1160
- 2011-1163
- 2011-1169
- 2011-1170
- 2011-1171
- 2011-1172
- 2011-1173
- 2011-1180
- 2011-1478
- 2011-1493
- 2011-1494
- 2011-1577
- 2011-1598
- 2011-1748
- 2011-1770
- 2011-1833
- 2011-2484
- 2011-2492
- 2011-2534
- 2011-2699
- 2011-2918
| visibility: | private → public |
| affects: | ubuntu → linux-fsl-imx51 (Ubuntu) |
| tags: | added: kernel-cve-tracker |
| Changed in linux-fsl-imx51 (Ubuntu): | |
| status: | New → Invalid |
| Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
| status: | New → In Progress |
| Changed in linux-fsl-imx51 (Ubuntu Maverick): | |
| status: | New → Invalid |
| Changed in linux-ti-omap4 (Ubuntu): | |
| status: | New → Invalid |
| Changed in linux-ti-omap4 (Ubuntu Lucid): | |
| status: | New → Invalid |
| Changed in linux-ti-omap4 (Ubuntu Maverick): | |
| status: | New → In Progress |
| tags: |
added: kernel-cve-tracking-bug removed: kernel-cve-tracker |
| Changed in linux (Ubuntu Lucid): | |
| status: | New → Fix Released |
| Changed in linux (Ubuntu Oneiric): | |
| status: | New → Invalid |
| Changed in linux (Ubuntu Hardy): | |
| status: | New → Fix Committed |
| Changed in linux (Ubuntu Maverick): | |
| status: | New → Fix Released |
| Changed in linux (Ubuntu Natty): | |
| status: | New → Fix Released |
| Changed in linux-ti-omap4 (Ubuntu Hardy): | |
| status: | New → Invalid |
| Changed in linux-ti-omap4 (Ubuntu Maverick): | |
| status: | In Progress → Fix Committed |
| Changed in linux-ti-omap4 (Ubuntu Natty): | |
| status: | New → Fix Committed |
| Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
| status: | In Progress → Fix Committed |
| Changed in linux-fsl-imx51 (Ubuntu Hardy): | |
| status: | New → Invalid |
| Changed in linux-fsl-imx51 (Ubuntu Natty): | |
| status: | New → Invalid |
| description: | updated |
| Launchpad Janitor (janitor) wrote : | #1 |
| Changed in linux (Ubuntu Hardy): | |
| status: | Fix Committed → Fix Released |
| Changed in linux-ec2 (Ubuntu Lucid): | |
| status: | New → Fix Released |
| Changed in linux-ec2 (Ubuntu Oneiric): | |
| status: | New → Invalid |
| Changed in linux-ec2 (Ubuntu Hardy): | |
| status: | New → Invalid |
| Changed in linux-ec2 (Ubuntu Maverick): | |
| status: | New → Invalid |
| Changed in linux-ec2 (Ubuntu Natty): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-natty (Ubuntu Lucid): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-natty (Ubuntu Oneiric): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-natty (Ubuntu Hardy): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-natty (Ubuntu Maverick): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-natty (Ubuntu Natty): | |
| status: | New → Invalid |
| Changed in linux-mvl-dove (Ubuntu Lucid): | |
| status: | New → Fix Released |
| Changed in linux-mvl-dove (Ubuntu Oneiric): | |
| status: | New → Invalid |
| Changed in linux-mvl-dove (Ubuntu Hardy): | |
| status: | New → Invalid |
| Changed in linux-mvl-dove (Ubuntu Maverick): | |
| status: | New → Fix Released |
| Changed in linux-mvl-dove (Ubuntu Natty): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-maverick (Ubuntu Lucid): | |
| status: | New → Fix Released |
| Changed in linux-lts-backport-maverick (Ubuntu Oneiric): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-maverick (Ubuntu Hardy): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-maverick (Ubuntu Maverick): | |
| status: | New → Invalid |
| Changed in linux-lts-backport-maverick (Ubuntu Natty): | |
| status: | New → Invalid |
| description: | updated |
| Changed in linux-ec2 (Ubuntu Lucid): | |
| importance: | Undecided → Low |
| Changed in linux-ec2 (Ubuntu Oneiric): | |
| importance: | Undecided → Low |
| Changed in linux-ec2 (Ubuntu Hardy): | |
| importance: | Undecided → Low |
| Changed in linux-ec2 (Ubuntu Maverick): | |
| importance: | Undecided → Low |
| Changed in linux-ec2 (Ubuntu Natty): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-natty (Ubuntu Lucid): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-natty (Ubuntu Oneiric): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-natty (Ubuntu Hardy): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-natty (Ubuntu Maverick): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-natty (Ubuntu Natty): | |
| importance: | Undecided → Low |
| Changed in linux-mvl-dove (Ubuntu Lucid): | |
| importance: | Undecided → Low |
| Changed in linux-mvl-dove (Ubuntu Oneiric): | |
| importance: | Undecided → Low |
| Changed in linux-mvl-dove (Ubuntu Hardy): | |
| importance: | Undecided → Low |
| Changed in linux-mvl-dove (Ubuntu Maverick): | |
| importance: | Undecided → Low |
| Changed in linux-mvl-dove (Ubuntu Natty): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-maverick (Ubuntu Lucid): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-maverick (Ubuntu Oneiric): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-maverick (Ubuntu Hardy): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-maverick (Ubuntu Maverick): | |
| importance: | Undecided → Low |
| Changed in linux-lts-backport-maverick (Ubuntu Natty): | |
| importance: | Undecided → Low |
| Changed in linux (Ubuntu Lucid): | |
| importance: | Undecided → Low |
| Changed in linux (Ubuntu Oneiric): | |
| importance: | Undecided → Low |
| Changed in linux (Ubuntu Hardy): | |
| importance: | Undecided → Low |
| Changed in linux (Ubuntu Maverick): | |
| importance: | Undecided → Low |
| Changed in linux (Ubuntu Natty): | |
| importance: | Undecided → Low |
| Changed in linux-ti-omap4 (Ubuntu Lucid): | |
| importance: | Undecided → Low |
| Changed in linux-ti-omap4 (Ubuntu Oneiric): | |
| importance: | Undecided → Low |
| Changed in linux-ti-omap4 (Ubuntu Hardy): | |
| importance: | Undecided → Low |
| Changed in linux-ti-omap4 (Ubuntu Maverick): | |
| importance: | Undecided → Low |
| Changed in linux-ti-omap4 (Ubuntu Natty): | |
| importance: | Undecided → Low |
| Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
| importance: | Undecided → Low |
| Changed in linux-fsl-imx51 (Ubuntu Oneiric): | |
| importance: | Undecided → Low |
| Changed in linux-fsl-imx51 (Ubuntu Hardy): | |
| importance: | Undecided → Low |
| Changed in linux-fsl-imx51 (Ubuntu Maverick): | |
| importance: | Undecided → Low |
| Changed in linux-fsl-imx51 (Ubuntu Natty): | |
| importance: | Undecided → Low |
| Launchpad Janitor (janitor) wrote : | #2 |
This bug was fixed in the package linux-fsl-imx51 - 2.6.31-610.28
---------------
linux-fsl-imx51 (2.6.31-610.28) lucid-proposed; urgency=low
* Release tracking bug
- LP: #837802
[ Upstream Kernel Changes ]
* ipv6: make fragment identifications less predictable, CVE-2011-2699
- LP: #827685
- CVE-2011-2699
* perf: Fix software event overflow, CVE-2011-2918
- LP: #834121
- CVE-2011-2918
* proc: fix oops on invalid /proc/<pid>/maps access, CVE-2011-1020
- LP: #813026
- CVE-2011-1020
linux-fsl-imx51 (2.6.31-610.27) lucid-proposed; urgency=low
* Release tracking bug
- LP: #829160
[ Upstream Kernel Changes ]
* fs/partitions/
oops
- LP: #795418
- CVE-2011-1577
* Fix corrupted OSF partition table parsing
- LP: #796606
- CVE-2011-1163
* can: Add missing socket check in can/bcm release.
- LP: #796502
- CVE-2011-1598
* proc: protect mm start_code/end_code in /proc/pid/stat
- LP: #799906
- CVE-2011-0726
* sctp: Fix a race between ICMP protocol unreachable and connect()
* tty: Make tiocgicount a handler, CVE-2010-4076, CVE-2010-4077
- LP: #794034
- CVE-2010-4077
* filter: make sure filters dont read uninitialized memory CVE-2010-4158
- LP: #721282
- CVE-2010-4158
* bio: take care not overflow page count when mapping/copying user data
CVE-2010-4162
- LP: #721441
- CVE-2010-4162
* block: check for proper length of iov entries in blk_rq_
- LP: #721504
- CVE-2010-4163
* block: check for proper length of iov entries earlier in
blk_
- LP: #721504
- CVE-2010-4163
* rds: Integer overflow in RDS cmsg handling, CVE-2010-4175
- LP: #721455
- CVE-2010-4175
* bluetooth: Fix missing NULL check CVE-2010-4242
- LP: #714846
- CVE-2010-4242
* IB/uverbs: Handle large number of entries in poll CQ CVE-2010-4649
- LP: #800121
- CVE-2010-4649
* epoll: prevent creating circular epoll structures CVE-2011-1082
- LP: #800758
- CVE-2011-1082
* nfs4: Ensure that ACL pages sent over NFS were not allocated from the
slab (v3) CVE-2011-1090
- LP: #800775
* ldm: corrupted partition table can cause kernel oops CVE-2011-1012
- LP: #801083
- CVE-2011-1012
* netfilter: ipt_CLUSTERIP: fix buffer overflow CVE-2011-2534
- LP: #801473
- CVE-2011-2534
* netfilter: arp_tables: fix infoleak to userspace CVE-2011-1170
- LP: #801480
- CVE-2011-1170
* netfilter: ip_tables: fix infoleak to userspace CVE-2011-1171
- LP: #801482
- CVE-2011-1171
* ipv6: netfilter: ip6_tables: fix infoleak to userspace CVE-2011-1172
- LP: #801483
- CVE-2011-1172
* econet: 4 byte infoleak to the network CVE-2011-1173
- LP: #801484
- CVE-2011-1173
* net: Limit socket I/O iovec total length to INT_MAX.
- LP: #708839
* fs/partitions: Validate map_count in Mac partition tables -
CVE-2011-1010
- LP: #804225
- CVE-2011-1010
* drm: fix unsigned vs signed comparison issue in modeset ctl ioctl,
CVE-2011-1013
- LP: #804229
- CVE-2011-1013
...
| Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
| status: | Fix Committed → Fix Released |
| Launchpad Janitor (janitor) wrote : | #3 |
This bug was fixed in the package linux-ti-omap4 - 2.6.35-903.24
---------------
linux-ti-omap4 (2.6.35-903.24) maverick-proposed; urgency=low
* Release tracking bug
- LP: #838037
[ Upstream Kernel Changes ]
* ipv6: make fragment identifications less predictable, CVE-2011-2699
- LP: #827685
- CVE-2011-2699
* perf: Fix software event overflow, CVE-2011-2918
- LP: #834121
- CVE-2011-2918
* proc: fix oops on invalid /proc/<pid>/maps access, CVE-2011-1020
- LP: #813026
- CVE-2011-1020
linux-ti-omap4 (2.6.35-903.23) maverick-proposed; urgency=low
* Release tracking bug
- LP: #829655
[ Upstream Kernel Changes ]
* drm/radeon/kms: check AA resolve registers on r300, CVE-2011-1016
- LP: #745686
- CVE-2011-1016
* drm/radeon: fix regression with AA resolve checking, CVE-2011-1016
- LP: #745686
- CVE-2011-1016
* can-bcm: fix minor heap overflow
- LP: #690730
* CAN: Use inode instead of kernel address for /proc file, CVE-2010-4565
- LP: #765007
- CVE-2010-4565
* av7110: check for negative array offset
- LP: #747520
* xfs: prevent leaking uninitialized stack memory in FSGEOMETRY_V1,
CVE-2011-0711
- LP: #767740
- CVE-2011-0711
* ALSA: caiaq - Fix possible string-buffer overflow
- LP: #747520
* IB/cm: Bump reference count on cm_id before invoking callback,
CVE-2011-0695
- LP: #770369
- CVE-2011-0695
* RDMA/cma: Fix crash in request handlers, CVE-2011-0695
- LP: #770369
- CVE-2011-0695
* Treat writes as new when holes span across page boundaries,
CVE-2011-0463
- LP: #770483
- CVE-2011-0463
* net: clear heap allocations for privileged ethtool actions
- LP: #686158
* usb: iowarrior: don't trust report_size for buffer size
- LP: #747520
* fs/partitions/
CVE-2011-1017
- LP: #771382
- CVE-2011-1017
* Prevent rt_sigqueueinfo and rt_tgsigqueueinfo from spoofing the signal
code
- LP: #747520
* Relax si_code check in rt_sigqueueinfo and rt_tgsigqueueinfo
- LP: #747520
* exec: make argv/envp memory visible to oom-killer
- LP: #690730
* next_pidmap: fix overflow condition
- LP: #772560
* proc: do proper range check on readdir offset
- LP: #772560
* ALSA: sound/pci/asihpi: check adapter index in hpi_ioctl, CVE-2011-1169
- LP: #785331
- CVE-2011-1169
* mpt2sas: prevent heap overflows and unchecked reads, CVE-2011-1494
- LP: #787145
- CVE-2011-1494
* agp: fix arbitrary kernel memory writes, CVE-1011-2022
- LP: #788684
- CVE-1011-2022
* can: add missing socket check in can/raw release, CVE-2011-1748
- LP: #788694
- CVE-2011-1748
* agp: fix OOM and buffer overflow
- LP: #788700
* drivers/
memory - CVE-2010-3296
- CVE-2010-3296
* drivers/net/eql.c: prevent reading uninitialized stack memory -
CVE-2010-3297
- CVE-2010-3297
* inet_diag: Make sure we actually run the same bytecode we audited,
CVE-2010-3880
- LP: #711865
- CVE-2010-3880
* setup_arg_pages: diagnose excessive argume...
| Changed in linux-ti-omap4 (Ubuntu Maverick): | |
| status: | Fix Committed → Fix Released |
| Changed in linux-ti-omap4 (Ubuntu Natty): | |
| status: | Fix Committed → Won't Fix |
This bug was fixed in the package linux - 2.6.24-29.92
---------------
linux (2.6.24-29.92) hardy-proposed; urgency=low
[Herton R. Krzesinski]
* Release Tracking Bug
- LP: #812360
[Upstream Kernel Changes]
* af_unix: limit unix_tot_inflight CVE-2010-4249
- LP: #769182
- CVE-2010-4249
* xfs: zero proper structure size for geometry calls CVE-2011-0711
- LP: #767740
- CVE-2011-0711
* netfilter: ip_tables: fix infoleak to userspace CVE-2011-1171
- LP: #801482
- CVE-2011-1171
* econet: 4 byte infoleak to the network CVE-2011-1173
- LP: #801484
- CVE-2011-1173
* netfilter: arp_tables: fix infoleak to userspace CVE-2011-1170
- LP: #801480
* ipv6: netfilter: ip6_tables: fix infoleak to userspace CVE-2011-1172
- LP: #801483
- CVE-2011-1172
* xen: don't allow blkback virtual CDROM device, CVE-2010-4238
- LP: #803931
- CVE-2010-4238
* IB/uverbs: Handle large number of entries in poll CQ CVE-2010-4649
- LP: #805512
* ipc: initialize structure memory to zero for compat functions
CVE-2010-4073
- LP: #806366
- CVE-2010-4073
* tcp: Increase TCP_MAXSEG socket option minimum CVE-2010-4165
- LP: #806374
- CVE-2010-4165
* taskstats: don't allow duplicate entries in listener mode,
CVE-2011-2484
- LP: #806390
- CVE-2011-2484
* netfilter: ipt_CLUSTERIP: fix buffer overflow, CVE-2011-2534
- LP: #801473
- CVE-2011-2534
* nfs4: Ensure that ACL pages sent over NFS were not allocated from the
slab (v3), CVE-2011-1090
- LP: #800775
- CVE-2011-1090
* fs/partitions: Validate map_count in Mac partition tables
- LP: #804225
- CVE-2011-1010
-- Herton Ronaldo Krzesinski <email address hidden> Mon, 18 Jul 2011 12:36:01 -0300