This bug was fixed in the package linux - 2.6.32-61.124 --------------- linux (2.6.32-61.124) lucid; urgency=low
[ Luis Henriques ] * Revert "sysctl net: Keep tcp_syn_retries inside the boundary" - LP: #1326473 * Revert "net: check net.core.somaxconn sysctl values" - LP: #1326473 [ Upstream Kernel Changes ] * futex-prevent-requeue-pi-on-same-futex.patch futex: Forbid uaddr == uaddr2 in futex_requeue(..., requeue_pi=1) - LP: #1326367 - CVE-2014-3153 * futex: Validate atomic acquisition in futex_lock_pi_atomic() - LP: #1326367 - CVE-2014-3153 * futex: Always cleanup owner tid in unlock_pi - LP: #1326367 - CVE-2014-3153 * futex: Make lookup_pi_state more robust - LP: #1326367 - CVE-2014-3153 -- Brad Figg <brad.f...@canonical.com> Wed, 04 Jun 2014 07:21:55 -0700 ** Changed in: linux (Ubuntu Lucid) Status: New => Fix Released ** Changed in: linux (Ubuntu Trusty) Status: New => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1326367 Title: exploitable futex vulnerability To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1326367/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs