CVE-2011-3593

Priority
Medium
Description
A certain Red Hat patch to the vlan_hwaccel_do_receive function in
net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise
Linux (RHEL) 6 allows remote attackers to cause a denial of service (system
crash) via priority-tagged VLAN frames.
Ubuntu-Description
Gideon Naim discovered a flaw in the Linux kernel's handling VLAN 0 frames.
An attacker on the local network could exploit this flaw to cause a denial
of service.
References
Bugs
Notes
apw> https://bugzilla.redhat.com/show_bug.cgi?id=742846
apw> fixed by 3701e51382a026cba10c60b03efabe534fba4ca4
apw> introduced by e1c096e251e52773afeffbbcb74d0a072be47ea3
apw> the actual fix is a switch from using vlan_dev_real_dev
apw> to vlan_find_dev
Package
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.2.0-1600.1)
Ubuntu 12.10 (Quantal Quetzal):not-affected (3.2.0-1602.5)
Ubuntu 13.04 (Raring Ringtail):not-affected (3.2.0-1602.5)
Package
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):released (2.6.32-319.39)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Ubuntu 13.04 (Raring Ringtail):DNE
Package
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):not-affected (3.0.0-5.6~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Ubuntu 13.04 (Raring Ringtail):DNE
Package
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):not-affected (2.6.38-1.27~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Ubuntu 13.04 (Raring Ringtail):DNE
Package
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):released (2.6.32-219.37)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Ubuntu 13.04 (Raring Ringtail):DNE
Package
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):released (2.6.35-30.60~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Ubuntu 13.04 (Raring Ringtail):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):released (2.6.32-35.78)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.1.0-1.0)
Ubuntu 12.10 (Quantal Quetzal):not-affected (3.1.0-1.0)
Ubuntu 13.04 (Raring Ringtail):not-affected (3.1.0-1.0)
Patches:
Vendor:https://rhn.redhat.com/errata/RHSA-2011-1465.html
Introduced by e1c096e251e52773afeffbbcb74d0a072be47ea3Fixed by 3701e51382a026cba10c60b03efabe534fba4ca4
Package
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (3.0.0-1401.2)
Ubuntu 12.10 (Quantal Quetzal):not-affected (3.0.0-1401.2)
Ubuntu 13.04 (Raring Ringtail):not-affected (3.0.0-1401.2)
Package
Upstream:released (2.6.37~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):released (2.6.31-611.29)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 12.10 (Quantal Quetzal):DNE
Ubuntu 13.04 (Raring Ringtail):DNE
More Information

Valid XHTML 1.0 Strict

Updated: 2013-06-12 18:15:15 UTC (commit 6979)