CVE-2011-0716
Priority
Medium
Description
The br_multicast_add_group function in net/bridge/br_multicast.c in the
Linux kernel before 2.6.38, when a certain Ethernet bridge configuration is
used, allows local users to cause a denial of service (memory corruption
and system crash) by sending IGMP packets to a local interface.
Linux kernel before 2.6.38, when a certain Ethernet bridge configuration is
used, allows local users to cause a denial of service (memory corruption
and system crash) by sending IGMP packets to a local interface.
Ubuntu-Description
A flaw was found in the Linux Ethernet bridge's handling of IGMP (Internet
Group Management Protocol) packets. An unprivileged local user could
exploit this flaw to crash the system.
Group Management Protocol) packets. An unprivileged local user could
exploit this flaw to crash the system.
References
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.2.0-1600.1) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.2.0-1602.5) |
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (3.0.0-5.6~lucid1) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (2.6.38-5.32~lucid1) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (reached end-of-life) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.35-32.66~lucid1) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | not-affected |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected |
| Ubuntu 11.04 (Natty Narwhal): | not-affected (2.6.38-5.32) |
| Ubuntu 11.10 (Oneiric Ocelot): | not-affected (2.6.39-0.0) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.1.0-1.0) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.1.0-1.0) |
Patches:
| Introduced by eb1d16414339a6e113d89e2cca2556005d7ce919 | Fixed by 6b0d6a9b4296fa16a28d10d416db7a770fc03287 |
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.04 (Natty Narwhal): | not-affected (2.6.38-1203.4) |
| Ubuntu 11.10 (Oneiric Ocelot): | not-affected (2.6.38-1309.13) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.0.0-1401.2) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.0.0-1401.2) |
Package
| Upstream: | released (2.6.38~rc6) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |