CVE-2012-4444 in Ubuntu

CVE-2012-4444

Priority

Medium

Description

The ip6_frag_queue function in net/ipv6/reassembly.c in the Linux kernel
before 2.6.36 allows remote attackers to bypass intended network
restrictions via overlapping IPv6 fragments.

Ubuntu-Description

Zhang Zuotao discovered a bug in the Linux kernel's handling of overlapping
fragments in ipv6. A remote attacker could exploit this flaw to bypass
firewalls and initial new network connections that should have been blocked
by the firewall.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4444
http://www.openwall.com/lists/oss-security/2012/11/08/1
http://www.openwall.com/lists/oss-security/2012/11/09
http://www.ubuntu.com/usn/usn-1660-1
http://www.ubuntu.com/usn/usn-1661-1
http://www.ubuntu.com/usn/usn-1664-1

Bugs

https://launchpad.net/bugs/1079859

Package

Source: linux-armadaxp (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (3.2.0-1600.1)
Ubuntu 12.10 (Quantal Quetzal):	not-affected (3.5.0-1600.1)
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-ec2 (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.6.32-350.58)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-oneiric (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-linaro-shared (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	ignored (abandoned)
Ubuntu 12.10 (Quantal Quetzal):	ignored (abandoned)
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-linaro-vexpress (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	ignored (abandoned)
Ubuntu 12.10 (Quantal Quetzal):	ignored (abandoned)
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-qcm-msm (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (abandoned)
Ubuntu 12.04 LTS (Precise Pangolin):	ignored (abandoned)
Ubuntu 12.10 (Quantal Quetzal):	ignored (abandoned)
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-quantal (LP Ubuntu Debian)

Upstream:	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Patches:

Package

Source: linux-mvl-dove (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-backport-maverick (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.6.32-45.101)
Ubuntu 12.04 LTS (Precise Pangolin):	pending (3.1.0-1.0)
Ubuntu 12.10 (Quantal Quetzal):	pending (3.4.0-1.1)
Ubuntu 13.04 (Raring Ringtail):	not-affected (3.7.0-0.1)
Ubuntu 13.10 (Saucy Salamander):	not-affected (3.7.0-0.1)

Patches:

Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 70789d7052239992824628db8133de08dc78e593

Package

Source: linux-ti-omap4 (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	pending (3.0.0-1401.2)
Ubuntu 12.10 (Quantal Quetzal):	pending (3.4.0-201.2)
Ubuntu 13.04 (Raring Ringtail):	not-affected
Ubuntu 13.10 (Saucy Salamander):	not-affected

Package

Source: linux-linaro-omap (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	ignored (abandoned)
Ubuntu 12.10 (Quantal Quetzal):	ignored (abandoned)
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-fsl-imx51 (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (reached end-of-life, does not affect buildd)
Ubuntu 12.04 LTS (Precise Pangolin):	DNE
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

Package

Source: linux-lts-raring (LP Ubuntu Debian)

Upstream:	released (2.6.36~rc4)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected
Ubuntu 12.10 (Quantal Quetzal):	DNE
Ubuntu 13.04 (Raring Ringtail):	DNE
Ubuntu 13.10 (Saucy Salamander):	DNE

More Information

Updated: 2013-05-22 14:15:04 UTC (commit 6866)