** Changed in: linux-armadaxp (Ubuntu Precise)
Status: New => Fix Committed
** Changed in: linux-armadaxp (Ubuntu Raring)
Status: New => Fix Committed
** Changed in: linux-armadaxp (Ubuntu Quantal)
Status: New => Fix Committed
** Changed in: linux-lts-quantal (Ubuntu Precise)
Status: New => Fix Committed
** Changed in: linux (Ubuntu Precise)
Status: In Progress => Fix Committed
** Changed in: linux (Ubuntu Quantal)
Status: In Progress => Fix Committed
** Changed in: linux-ti-omap4 (Ubuntu Precise)
Status: New => Fix Committed
** Changed in: linux-ti-omap4 (Ubuntu Raring)
Status: New => Fix Committed
** Changed in: linux-ti-omap4 (Ubuntu Quantal)
Status: New => Fix Committed
** Description changed:
- crypto: user - fix info leaks in report API - part 2
+ The crypto_report_one function in crypto/crypto_user.c in the report API
+ in the crypto user configuration API in the Linux kernel through 3.8.2
+ does not initialize certain structure members, which allows local users
+ to obtain sensitive information from kernel heap memory by leveraging
+ the CAP_NET_ADMIN capability.
Break-Fix: - 9a5467bf7b6e9e02ec9c3da4e23747c05faeaac6
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1156795
Title:
CVE-2013-2547
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1156795/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
