This bug was fixed in the package linux - 2.6.32-56.118
--------------- linux (2.6.32-56.118) lucid; urgency=low
[Brad Figg]
* Release Tracking Bug - LP: #1266525
[ Upstream Kernel Changes ]
* inet: prevent leakage of uninitialized memory to user in recv syscalls - LP: #1256919 - CVE-2013-6405 * inet: fix addr_len/msg->msg_namelen assignment in recv_error and rxpmtu functions - LP: #1256919 - CVE-2013-6405 * aacraid: missing capable() check in compat ioctl - LP: #1256094 - CVE-2013-6383 -- Brad Figg <email address hidden> Mon, 06 Jan 2014 09:21:48 -0800
This bug was fixed in the package linux - 2.6.32-56.118
---------------
linux (2.6.32-56.118) lucid; urgency=low
[Brad Figg]
* Release Tracking Bug
- LP: #1266525
[ Upstream Kernel Changes ]
* inet: prevent leakage of uninitialized memory to user in recv syscalls msg->msg_ namelen assignment in recv_error and rxpmtu
- LP: #1256919
- CVE-2013-6405
* inet: fix addr_len/
functions
- LP: #1256919
- CVE-2013-6405
* aacraid: missing capable() check in compat ioctl
- LP: #1256094
- CVE-2013-6383
-- Brad Figg <email address hidden> Mon, 06 Jan 2014 09:21:48 -0800