CVE-2011-1747
Priority
Low
Description
The agp subsystem in the Linux kernel 2.6.38.5 and earlier does not
properly restrict memory allocation by the (1) AGPIOC_RESERVE and (2)
AGPIOC_ALLOCATE ioctls, which allows local users to cause a denial of
service (memory consumption) by making many calls to these ioctls.
properly restrict memory allocation by the (1) AGPIOC_RESERVE and (2)
AGPIOC_ALLOCATE ioctls, which allows local users to cause a denial of
service (memory consumption) by making many calls to these ioctls.
Ubuntu-Description
Vasiliy Kulikov discovered that the AGP driver did not check the size of
certain memory allocations. A local attacker with access to the video
subsystem could exploit this to run the system out of memory, leading to a
denial of service.
certain memory allocations. A local attacker with access to the video
subsystem could exploit this to run the system out of memory, leading to a
denial of service.
Notes
kees> no upstream fix yet
apw> below is a partial fix, complete fix still remains
apw> break-fix: - b522f02184b413955f3bc952e3776ce41edc6355
mdeslaur> CAP_SYS_RAWIO is needed to exploit this, so is not security
mdeslaur> relevant. Ignoring.
apw> below is a partial fix, complete fix still remains
apw> break-fix: - b522f02184b413955f3bc952e3776ce41edc6355
mdeslaur> CAP_SYS_RAWIO is needed to exploit this, so is not security
mdeslaur> relevant. Ignoring.
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected |
| Ubuntu 13.04 (Raring Ringtail): | not-affected |
Package
| Upstream: | deferred (referred to security) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | deferred (referred to security) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | deferred (referred to security) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | DNE |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Patches:
Package
| Upstream: | deferred (referred to security) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (no AGP on ARM) |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | deferred (referred to security) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | deferred (referred to security) |
| Ubuntu 8.04 LTS (Hardy Heron): | ignored |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored |
| Ubuntu 11.10 (Oneiric Ocelot): | ignored |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored |
| Ubuntu 12.10 (Quantal Quetzal): | ignored |
| Ubuntu 13.04 (Raring Ringtail): | ignored |
Package
| Upstream: | deferred (referred to security) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | not-affected (no AGP on ARM) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (no AGP on ARM) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (no AGP on ARM) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (no AGP on ARM) |
Package
| Upstream: | deferred (referred to security) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (no AGP on ARM) |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |