*** This bug is a security vulnerability ***
Public security bug reported:
In sg_io, blk_rq_map_user{,_iov} may allocate a set of bounce buffer
pages to do the bio, if it finds the user buffer cannot be directly
mapped. But the allocated pages are not cleared. If the bounce buffer
is also not written to by device, garbage data is left, and copied back
to user in blk_rq_unmap_user. The allocated pages should be cleared.
This also eliminates the risk of leaking sensitive information to
userspace, which may have a security impact.
** Affects: linux (Ubuntu)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu)
Importance: Low
Status: New
** Affects: linux-goldfish (Ubuntu)
Importance: Low
Status: New
** Affects: linux-lts-quantal (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu)
Importance: Low
Status: New
** Affects: linux-manta (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu)
Importance: Low
Status: New
** Affects: linux-snapdragon (Ubuntu)
Importance: Low
Status: New
** Affects: linux-ti-omap4 (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux (Ubuntu Precise)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Precise)
Importance: Low
Status: New
** Affects: linux-flo (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-goldfish (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-quantal (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Precise)
Importance: Low
Status: New
** Affects: linux-lts-utopic (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-manta (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-snapdragon (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Precise)
Importance: Low
Status: New
** Affects: linux (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-goldfish (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-quantal (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-lts-vivid (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-lts-wily (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-lts-xenial (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-mako (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-manta (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-snapdragon (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-armadaxp (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-flo (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-goldfish (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-quantal (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-raring (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-saucy (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-trusty (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-utopic (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-vivid (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-wily (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-xenial (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-mako (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-manta (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-raspi2 (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-snapdragon (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-ti-omap4 (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-goldfish (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-lts-quantal (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-manta (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-raspi2 (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-snapdragon (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-goldfish (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-lts-quantal (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-manta (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-snapdragon (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-ti-omap4 (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-goldfish (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-lts-quantal (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-manta (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-snapdragon (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-ti-omap4 (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Tags: kernel-cve-tracking-bug
** Tags added: kernel-cve-tracking-bug
** Information type changed from Public to Public Security
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-8181
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1585364
Title:
CVE-2014-8181
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1585364/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
