CVE-2011-0716

Priority
Medium
Description
The br_multicast_add_group function in net/bridge/br_multicast.c in the
Linux kernel before 2.6.38, when a certain Ethernet bridge configuration is
used, allows local users to cause a denial of service (memory corruption
and system crash) by sending IGMP packets to a local interface.
Ubuntu-Description
A flaw was found in the Linux Ethernet bridge's handling of IGMP (Internet
Group Management Protocol) packets. An unprivileged local user could
exploit this flaw to crash the system.
References
Bugs
Package
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Ubuntu 11.04 (Natty Narwhal):DNE
Ubuntu 11.10 (Oneiric Ocelot):DNE
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.2.0-1600.1)
Ubuntu 12.10 (Quantal Quetzal):not-affected (3.2.0-1602.5)
Package
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):not-affected
Ubuntu 11.04 (Natty Narwhal):DNE
Ubuntu 11.10 (Oneiric Ocelot):DNE
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Package
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):not-affected (3.0.0-5.6~lucid1)
Ubuntu 11.04 (Natty Narwhal):DNE
Ubuntu 11.10 (Oneiric Ocelot):DNE
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Package
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):not-affected (2.6.38-5.32~lucid1)
Ubuntu 11.04 (Natty Narwhal):DNE
Ubuntu 11.10 (Oneiric Ocelot):DNE
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Package
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):ignored (reached end-of-life)
Ubuntu 11.04 (Natty Narwhal):DNE
Ubuntu 11.10 (Oneiric Ocelot):DNE
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Package
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):released (2.6.35-32.66~lucid1)
Ubuntu 11.04 (Natty Narwhal):DNE
Ubuntu 11.10 (Oneiric Ocelot):DNE
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):not-affected
Ubuntu 10.04 LTS (Lucid Lynx):not-affected
Ubuntu 11.04 (Natty Narwhal):not-affected (2.6.38-5.32)
Ubuntu 11.10 (Oneiric Ocelot):not-affected (2.6.39-0.0)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.1.0-1.0)
Ubuntu 12.10 (Quantal Quetzal):not-affected (3.1.0-1.0)
Patches:
Introduced by eb1d16414339a6e113d89e2cca2556005d7ce919Fixed by 6b0d6a9b4296fa16a28d10d416db7a770fc03287
Package
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Ubuntu 11.04 (Natty Narwhal):not-affected (2.6.38-1203.4)
Ubuntu 11.10 (Oneiric Ocelot):not-affected (2.6.38-1309.13)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.0.0-1401.2)
Ubuntu 12.10 (Quantal Quetzal):not-affected (3.0.0-1401.2)
Package
Upstream:released (2.6.38~rc6)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):not-affected
Ubuntu 11.04 (Natty Narwhal):DNE
Ubuntu 11.10 (Oneiric Ocelot):DNE
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
More Information

Valid XHTML 1.0 Strict

Updated: 2012-09-26 20:14:17 UTC (commit 5826)