CVE-2012-3510
Priority
Low
Description
Use-after-free vulnerability in the xacct_add_tsk function in
kernel/tsacct.c in the Linux kernel before 2.6.19 allows local users to
obtain potentially sensitive information from kernel memory or cause a
denial of service (system crash) via a taskstats TASKSTATS_CMD_ATTR_PID
command.
kernel/tsacct.c in the Linux kernel before 2.6.19 allows local users to
obtain potentially sensitive information from kernel memory or cause a
denial of service (system crash) via a taskstats TASKSTATS_CMD_ATTR_PID
command.
Ubuntu-Description
Notes:
jdstrand> linux-armadaxp is maintained by OEM
sbeattie> introduced by 9acc1853519a0473620d424105f9d49ea5b4e62e and
only if TASK_XACCT is enabled.
jdstrand> linux-armadaxp is maintained by OEM
sbeattie> introduced by 9acc1853519a0473620d424105f9d49ea5b4e62e and
only if TASK_XACCT is enabled.
References
Bugs
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.2.0-1600.1) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.2.0-1600.1) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (3.2.0-1600.1) |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (2.6.32-300.1) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (3.0.0-5.6~lucid1) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | ignored (abandoned) |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored (abandoned) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.0.0-1007.9) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (3.0.0-1007.9) |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.04 (Natty Narwhal): | ignored (abandoned) |
| Ubuntu 11.10 (Oneiric Ocelot): | ignored (abandoned) |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored (abandoned) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.0.0-1007.9) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (3.0.0-1007.9) |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (abandoned) |
| Ubuntu 11.04 (Natty Narwhal): | ignored (abandoned) |
| Ubuntu 11.10 (Oneiric Ocelot): | ignored (abandoned) |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored (abandoned) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (2.6.31-800.2) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (2.6.31-800.2) |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (2.6.38-1.27~lucid1) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (reached end-of-life) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (reached end-of-life) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | not-affected (2.6.24-5.9) |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (2.6.32-1.1) |
| Ubuntu 11.04 (Natty Narwhal): | not-affected (2.6.37-2.9) |
| Ubuntu 11.10 (Oneiric Ocelot): | not-affected (2.6.39-0.0) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.1.0-1.0) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.4.0-1.1) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (3.4.0-1.1) |
Patches:
| Introduced by 9acc1853519a0473620d424105f9d49ea5b4e62e | Fixed by f0ec1aaf54caddd21c259aea8b2ecfbde4ee4fb9 |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.04 (Natty Narwhal): | not-affected (2.6.38-1201.2) |
| Ubuntu 11.10 (Oneiric Ocelot): | not-affected (2.6.38-1309.13) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected (3.0.0-1401.2) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.4.0-1.1) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (3.4.0-1.1) |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.04 (Natty Narwhal): | ignored (abandoned) |
| Ubuntu 11.10 (Oneiric Ocelot): | ignored (abandoned) |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored (abandoned) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (3.0.0-1007.9) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (3.0.0-1007.9) |
Package
| Upstream: | released (2.6.19~rc4) |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (reached end-of-life, does not affect buildd) |
| Ubuntu 11.04 (Natty Narwhal): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |