Ubuntu
linux package

Multiple Linux kernel vulnerabilities in partition handling code of LDM and MAC partition tables

Bug #731555 reported by rpkrawczyk
This bug report is a duplicate of:  Bug #771382: CVE-2011-1017. Edit Remove
258
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Triaged
Low
Unassigned

Bug Description

There is a bug in the linux kernel partition handling which makes it possible to create a "USB stick of death", see
http://seclists.org/fulldisclosure/2011/Feb/610.
This bug is not patched in the Lucid 10.04 kernel (it as patched in the vanilla 2.6.73). It would be a good idea to patch this bug in the Ubuntu kernels, too. Some information:

1) Linux neptun 2.6.32-29-generic #58-Ubuntu SMP Fri Feb 11 19:00:09 UTC 2011 i686 GNU/Linux
2) Package affected: linux-image-generic (in Lucid: linux-image-2.6.32-29-generic, Maverick: linux-image-2.6.35-27-generic)
3) affected file /usr/src/fs/partitions/mac.c
4) see [http://seclists.org/fulldisclosure/2011/Feb/610]

CVE References

Jamie Strandboge (jdstrand)
visibility: private → public
Changed in linux (Ubuntu):
importance: Undecided → Low
status: New → Triaged
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.