** Description changed: The __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the NFSv4 implementation in the Linux kernel before 3.3.2 uses an incorrect length variable during a copy operation, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words in an FATTR4_ACL reply. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-4131. + + Break-Fix: - 20e0fa98b751facf9a1101edaefbc19c82616a68 + Break-Fix: - 5794d21ef4639f0e33440927bb903f9598c21e92 + Break-Fix: - 5a00689930ab975fdd1b37b034475017e460cf2a
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1002505 Title: CVE-2012-2375 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1002505/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
