*** This bug is a security vulnerability ***
Public security bug reported:
When parsing the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP facilities
fields, a remote host can provide a length of greater than 20, resulting
in a stack overflow of the callsign array. When parsing the
FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP facilities fields, a remote
host can provide a length of less than 10, resulting in an underflow in
a memcpy size, causing a kernel panic due to massive heap corruption.
Break-Fix: - be20250c13f88375345ad99950190685eda51eb8
** Affects: linux (Ubuntu)
Importance: Medium
Status: New
** Affects: linux-ec2 (Ubuntu)
Importance: Medium
Status: Invalid
** Affects: linux-fsl-imx51 (Ubuntu)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-maverick (Ubuntu)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-natty (Ubuntu)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-oneiric (Ubuntu)
Importance: Medium
Status: Invalid
** Affects: linux-mvl-dove (Ubuntu)
Importance: Medium
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu)
Importance: Medium
Status: New
** Affects: linux (Ubuntu Lucid)
Importance: Medium
Status: New
** Affects: linux-ec2 (Ubuntu Lucid)
Importance: Medium
Status: New
** Affects: linux-fsl-imx51 (Ubuntu Lucid)
Importance: Medium
Status: New
** Affects: linux-lts-backport-maverick (Ubuntu Lucid)
Importance: Medium
Status: New
** Affects: linux-lts-backport-natty (Ubuntu Lucid)
Importance: Medium
Status: New
** Affects: linux-lts-backport-oneiric (Ubuntu Lucid)
Importance: Medium
Status: New
** Affects: linux-mvl-dove (Ubuntu Lucid)
Importance: Medium
Status: New
** Affects: linux-ti-omap4 (Ubuntu Lucid)
Importance: Medium
Status: Invalid
** Affects: linux (Ubuntu Maverick)
Importance: Medium
Status: New
** Affects: linux-ec2 (Ubuntu Maverick)
Importance: Medium
Status: Invalid
** Affects: linux-fsl-imx51 (Ubuntu Maverick)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-maverick (Ubuntu Maverick)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-natty (Ubuntu Maverick)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-oneiric (Ubuntu Maverick)
Importance: Medium
Status: Invalid
** Affects: linux-mvl-dove (Ubuntu Maverick)
Importance: Medium
Status: New
** Affects: linux-ti-omap4 (Ubuntu Maverick)
Importance: Medium
Status: New
** Affects: linux (Ubuntu Natty)
Importance: Medium
Status: New
** Affects: linux-ec2 (Ubuntu Natty)
Importance: Medium
Status: Invalid
** Affects: linux-fsl-imx51 (Ubuntu Natty)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-maverick (Ubuntu Natty)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-natty (Ubuntu Natty)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-oneiric (Ubuntu Natty)
Importance: Medium
Status: Invalid
** Affects: linux-mvl-dove (Ubuntu Natty)
Importance: Medium
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Natty)
Importance: Medium
Status: New
** Affects: linux (Ubuntu Oneiric)
Importance: Medium
Status: New
** Affects: linux-ec2 (Ubuntu Oneiric)
Importance: Medium
Status: Invalid
** Affects: linux-fsl-imx51 (Ubuntu Oneiric)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-maverick (Ubuntu Oneiric)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-natty (Ubuntu Oneiric)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-oneiric (Ubuntu Oneiric)
Importance: Medium
Status: Invalid
** Affects: linux-mvl-dove (Ubuntu Oneiric)
Importance: Medium
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Oneiric)
Importance: Medium
Status: New
** Affects: linux (Ubuntu Precise)
Importance: Medium
Status: New
** Affects: linux-ec2 (Ubuntu Precise)
Importance: Medium
Status: Invalid
** Affects: linux-fsl-imx51 (Ubuntu Precise)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-maverick (Ubuntu Precise)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-natty (Ubuntu Precise)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-oneiric (Ubuntu Precise)
Importance: Medium
Status: Invalid
** Affects: linux-mvl-dove (Ubuntu Precise)
Importance: Medium
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Precise)
Importance: Medium
Status: New
** Affects: linux (Ubuntu Hardy)
Importance: Medium
Status: New
** Affects: linux-ec2 (Ubuntu Hardy)
Importance: Medium
Status: Invalid
** Affects: linux-fsl-imx51 (Ubuntu Hardy)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-maverick (Ubuntu Hardy)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-natty (Ubuntu Hardy)
Importance: Medium
Status: Invalid
** Affects: linux-lts-backport-oneiric (Ubuntu Hardy)
Importance: Medium
Status: Invalid
** Affects: linux-mvl-dove (Ubuntu Hardy)
Importance: Medium
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Hardy)
Importance: Medium
Status: Invalid
** Tags: kernel-cve-tracking-bug
** Tags added: kernel-cve-tracking-bug
** This bug has been flagged as a security vulnerability
** This bug has been flagged as a security vulnerability
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-4913
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/912221
Title:
CVE-2011-4913
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/912221/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
