** Description changed: - cpqarray/cciss: info leak via ioctl(2). A Linux kernel built with the - Compaq SMART2(CONFIG_BLK_CPQ_DA) & Compaq Smart Array - 5xxx(CONFIG_BLK_CPQ_CISS_DA) support is vulnerable to an information - leakage flaw. This could occur while doing an ioctl(2) calls on the - block device with command `IDAGETPCIINFO' or `CCISS_PASSTHRU32'. A - user/program could use this flaw to leak kernel memory bytes. + The HP Smart Array controller disk-array driver and Compaq SMART2 + controller disk-array driver in the Linux kernel through 3.9.4 do not + initialize certain data structures, which allows local users to obtain + sensitive information from kernel memory via (1) a crafted IDAGETPCIINFO + command for a /dev/ida device, related to the ida_locked_ioctl function + in drivers/block/cpqarray.c or (2) a crafted CCISS_PASSTHRU32 command + for a /dev/cciss device, related to the cciss_ioctl32_passthru function + in drivers/block/cciss.c.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1188355 Title: CVE-2013-2147 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1188355/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
