CVE-2011-2491 in Ubuntu

CVE-2011-2491

Priority

Medium

Description

The Network Lock Manager (NLM) protocol implementation in the NFS client
functionality in the Linux kernel before 3.0 allows local users to cause a
denial of service (system hang) via a LOCK_UN flock system call.

Ubuntu-Description

Vasily Averin discovered that the NFS Lock Manager (NLM) incorrectly
handled unlock requests. A local attacker could exploit this to cause a
denial of service.

References

Bugs

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2491
https://launchpad.net/bugs/869237

Package

Source: linux-armadaxp (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.2.0-1600.1)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.2.0-1602.5)
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-ec2 (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.6.32-340.40)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-oneiric (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	not-affected
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-natty (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.6.38-13.52~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-quantal (LP Ubuntu Debian)

Upstream:	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Patches:

Package

Source: linux-mvl-dove (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	pending (2.6.32-220.38)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-maverick (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.6.35-31.62~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.6.32-36.79)
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.0-3.4)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.0-3.4)
Ubuntu 13.04 (Raring Ringtail):	not-affected (3.0-3.4)
Ubuntu 13.10 (Saucy Salamander):	not-affected (3.0-3.4)

Patches:

Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 0b760113a3a155269a3fba93a409c640031dd68f

Package

Source: linux-ti-omap4 (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.0.0-1200.1)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.0.0-1200.1)
Ubuntu 13.04 (Raring Ringtail):	not-affected (3.0.0-1200.1)
Ubuntu 13.10 (Saucy Salamander):	not-affected (3.0.0-1200.1)

Package

Source: linux-fsl-imx51 (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.6.31-612.30)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-raring (LP Ubuntu Debian)

Upstream:	released (3.0~rc5)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

More Information

Updated: 2013-05-10 19:14:32 UTC (commit 6828)