CVE-2011-3209 in Ubuntu

CVE-2011-3209

Priority

Low

Description

The div_long_long_rem implementation in include/asm-x86/div64.h in the
Linux kernel before 2.6.26 on the x86 platform allows local users to cause
a denial of service (Divide Error Fault and panic) via a clock_gettime
system call.

Ubuntu-Description

Yasuaki Ishimatsu discovered a flaw in the kernel's clock implementation. A
local unprivileged attacker could exploit this causing a denial of service.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3209
http://www.ubuntu.com/usn/usn-1256-1
http://www.ubuntu.com/usn/usn-1268-1
http://www.ubuntu.com/usn/usn-1294-1

Bugs

https://launchpad.net/bugs/880890

Notes

apw> Redhat claims the change below fixed this:
apw> remove div_long_long_rem

Package

Source: linux-armadaxp (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.2.0-1600.1)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.2.0-1602.5)
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-ec2 (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	not-affected (2.6.32-300.1)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-oneiric (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	released (3.0.0-5.6~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-natty (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.6.38-1.27~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-quantal (LP Ubuntu Debian)

Upstream:	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Patches:

Package

Source: linux-mvl-dove (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	pending (2.6.32-200.5)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-maverick (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	pending (2.6.35-1.1~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	not-affected (2.6.32-1.1)
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.1.0-1.1)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.1.0-1.1)
Ubuntu 13.04 (Raring Ringtail):	not-affected (3.1.0-1.1)
Ubuntu 13.10 (Saucy Salamander):	not-affected (3.1.0-1.1)

Patches:

Vendor:	https://rhn.redhat.com/errata/RHSA-2011-1386.html
Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2	Fixed by f8bd2258e2d520dff28c855658bd24bdafb5102d

Package

Source: linux-ti-omap4 (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.0.0-1400.1)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.0.0-1400.1)
Ubuntu 13.04 (Raring Ringtail):	not-affected (3.0.0-1400.1)
Ubuntu 13.10 (Saucy Salamander):	not-affected (3.0.0-1400.1)

Package

Source: linux-fsl-imx51 (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	pending (2.6.31-600.1)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-raring (LP Ubuntu Debian)

Upstream:	released (2.6.26~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

More Information

Updated: 2013-05-10 19:14:33 UTC (commit 6828)