CVE-2011-0716

Priority
Medium
Description
The br_multicast_add_group function in net/bridge/br_multicast.c in the
Linux kernel before 2.6.38, when a certain Ethernet bridge configuration is
used, allows local users to cause a denial of service (memory corruption
and system crash) by sending IGMP packets to a local interface.
Ubuntu-Description
A flaw was found in the Linux Ethernet bridge's handling of IGMP (Internet
Group Management Protocol) packets. An unprivileged local user could
exploit this flaw to crash the system.
References
Bugs
Package
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.2.0-1600.1)
Package
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Package
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Package
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Package
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Package
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.1.0-1.0)
Patches:
Introduced by eb1d16414339a6e113d89e2cca2556005d7ce919Fixed by 6b0d6a9b4296fa16a28d10d416db7a770fc03287
Package
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.0.0-1401.2)
Package
Upstream:released (2.6.38~rc6)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:39:24 UTC (commit 9756)