CVE-2011-2496
Priority
Medium
Description
Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux
kernel before 2.6.39 allows local users to cause a denial of service
(BUG_ON and system crash) via a crafted mremap system call that expands a
memory mapping.
kernel before 2.6.39 allows local users to cause a denial of service
(BUG_ON and system crash) via a crafted mremap system call that expands a
memory mapping.
Ubuntu-Description
Robert Swiecki discovered that mapping extensions were incorrectly handled.
A local attacker could exploit this to crash the system, leading to a
denial of service.
A local attacker could exploit this to crash the system, leading to a
denial of service.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2496
http://seclists.org/oss-sec/2011/q2/689
http://www.ubuntu.com/usn/usn-1167-1
http://www.ubuntu.com/usn/usn-1241-1
http://www.ubuntu.com/usn/usn-1256-1
http://www.ubuntu.com/usn/usn-1268-1
http://www.ubuntu.com/usn/usn-1269-1
http://www.ubuntu.com/usn/usn-1272-1
http://www.ubuntu.com/usn/usn-1274-1
http://www.ubuntu.com/usn/usn-1278-1
http://www.ubuntu.com/usn/usn-1280-1
http://www.ubuntu.com/usn/usn-1281-1
http://www.ubuntu.com/usn/usn-1286-1
http://seclists.org/oss-sec/2011/q2/689
http://www.ubuntu.com/usn/usn-1167-1
http://www.ubuntu.com/usn/usn-1241-1
http://www.ubuntu.com/usn/usn-1256-1
http://www.ubuntu.com/usn/usn-1268-1
http://www.ubuntu.com/usn/usn-1269-1
http://www.ubuntu.com/usn/usn-1272-1
http://www.ubuntu.com/usn/usn-1274-1
http://www.ubuntu.com/usn/usn-1278-1
http://www.ubuntu.com/usn/usn-1280-1
http://www.ubuntu.com/usn/usn-1281-1
http://www.ubuntu.com/usn/usn-1286-1
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.2.0-1600.1) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.2.0-1602.5) |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.32-340.40) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.38-10.44~lucid1) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Patches:
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | pending (2.6.32-220.38) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.35-31.62~lucid1) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.32-36.79) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (2.6.39-2.7) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (2.6.39-2.7) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (2.6.39-2.7) |
| Ubuntu 13.10 (Saucy Salamander): | not-affected (2.6.39-2.7) |
Patches:
| Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 | Fixed by 982134ba62618c2d69fbbbd166d0a11ee3b7e3d8 |
| Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 | Fixed by a626ca6a656450e9f4df91d0dda238fff23285f4 |
| Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 | Fixed by 42c36f63ac1366ab0ecc2d5717821362c259f517 |
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.0.0-1200.1) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.0.0-1200.1) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (3.0.0-1200.1) |
| Ubuntu 13.10 (Saucy Salamander): | not-affected (3.0.0-1200.1) |
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.31-611.29) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (2.6.39~rc7) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |