** Description changed:

- cpqarray/cciss: info leak via ioctl(2). A Linux kernel built with the
- Compaq SMART2(CONFIG_BLK_CPQ_DA) & Compaq Smart Array
- 5xxx(CONFIG_BLK_CPQ_CISS_DA) support is vulnerable to an information
- leakage flaw. This could occur while doing an ioctl(2) calls on the
- block device with command `IDAGETPCIINFO' or `CCISS_PASSTHRU32'. A
- user/program could use this flaw to leak kernel memory bytes.
+ The HP Smart Array controller disk-array driver and Compaq SMART2
+ controller disk-array driver in the Linux kernel through 3.9.4 do not
+ initialize certain data structures, which allows local users to obtain
+ sensitive information from kernel memory via (1) a crafted IDAGETPCIINFO
+ command for a /dev/ida device, related to the ida_locked_ioctl function
+ in drivers/block/cpqarray.c or (2) a crafted CCISS_PASSTHRU32 command
+ for a /dev/cciss device, related to the cciss_ioctl32_passthru function
+ in drivers/block/cciss.c.

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1188355

Title:
  CVE-2013-2147

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1188355/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to