CVE-2011-3638 in Ubuntu

CVE-2011-3638

Priority

Medium

Description

fs/ext4/extents.c in the Linux kernel before 3.0 does not mark a modified
extent as dirty in certain cases of extent splitting, which allows local
users to cause a denial of service (system crash) via vectors involving
ext4 umount and mount operations.

Ubuntu-Description

Zheng Liu discovered a flaw in how the ext4 filesystem splits extents. A
local unprivileged attacker could exploit this to crash the system,
leading to a denial of service.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3638
http://www.ubuntu.com/usn/usn-1294-1

Bugs

https://bugzilla.redhat.com/747942
https://launchpad.net/bugs/887291

Notes

tyhicks> Introduced by 56055d3ae4cc7fa6d2b10885f20269de8a989ed7

Package

Source: linux-armadaxp (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.2.0-1600.1)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.2.0-1602.5)
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-ec2 (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	deferred (massive patch that requires significant backport effort)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-oneiric (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	released (3.0.0-5.6~lucid1)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-natty (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-quantal (LP Ubuntu Debian)

Upstream:	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Patches:

Package

Source: linux-mvl-dove (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-maverick (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	deferred (massive patch that requires significant backport effort)
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.1.0-1.1)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.1.0-1.1)
Ubuntu 13.04 (Raring Ringtail):	not-affected (3.1.0-1.1)
Ubuntu 13.10 (Saucy Salamander):	not-affected (3.1.0-1.1)

Patches:

Introduced by 56055d3ae4cc7fa6d2b10885f20269de8a989ed7

Fixed by 667eff35a1f56fa74ce98a0c7c29a40adc1ba4e3

Package

Source: linux-ti-omap4 (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	not-affected
Ubuntu 13.04 (Raring Ringtail):	not-affected
Ubuntu 13.10 (Saucy Salamander):	not-affected

Package

Source: linux-fsl-imx51 (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-raring (LP Ubuntu Debian)

Upstream:	released (3.0~rc1)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

More Information

Updated: 2013-05-22 14:14:45 UTC (commit 6866)