CVE-2011-1082
Priority
Low
Description
fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file
descriptors within other epoll data structures without properly checking
for (1) closed loops or (2) deep chains, which allows local users to cause
a denial of service (deadlock or stack memory consumption) via a crafted
application that makes epoll_create and epoll_ctl system calls.
descriptors within other epoll data structures without properly checking
for (1) closed loops or (2) deep chains, which allows local users to cause
a denial of service (deadlock or stack memory consumption) via a crafted
application that makes epoll_create and epoll_ctl system calls.
Ubuntu-Description
Nelson Elhage discovered that the epoll subsystem did not correctly handle
certain structures. A local attacker could create malicious requests that
would hang the system, leading to a denial of service.
certain structures. A local attacker could create malicious requests that
would hang the system, leading to a denial of service.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1082
http://www.ubuntu.com/usn/usn-1141-1
http://www.ubuntu.com/usn/usn-1160-1
http://www.ubuntu.com/usn/usn-1093-1
http://www.ubuntu.com/usn/usn-1167-1
http://www.ubuntu.com/usn/usn-1187-1
http://www.ubuntu.com/usn/usn-1202-1
http://www.ubuntu.com/usn/usn-1204-1
http://www.ubuntu.com/usn/usn-1141-1
http://www.ubuntu.com/usn/usn-1160-1
http://www.ubuntu.com/usn/usn-1093-1
http://www.ubuntu.com/usn/usn-1167-1
http://www.ubuntu.com/usn/usn-1187-1
http://www.ubuntu.com/usn/usn-1202-1
http://www.ubuntu.com/usn/usn-1204-1
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.2.0-1600.1) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.2.0-1602.5) |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.32-315.28) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (2.6.38-7.35~lucid1) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Patches:
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.32-216.33) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.35-30.54~lucid1) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.32-31.60) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (2.6.39-0.0) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (2.6.39-0.0) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (2.6.39-0.0) |
| Ubuntu 13.10 (Saucy Salamander): | not-affected (2.6.39-0.0) |
Patches:
| Upstream: | http://git.kernel.org/linus/22bacca48a1755f79b7e0f192ddb9fbb7fc6e64e |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (2.6.38-1309.13) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (2.6.38-1309.13) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (2.6.38-1309.13) |
| Ubuntu 13.10 (Saucy Salamander): | not-affected (2.6.38-1309.13) |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.31-610.27) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.38~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |