Candidate: CVE-2009-0029
PublicDate: 2009-01-15 17:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0029
 https://bugzilla.redhat.com/show_bug.cgi?id=479969
 http://marc.info/?l=linux-kernel&m=123155111608910&w=2
 https://ubuntu.com/security/notices/USN-752-1
Description:
 The ABI in the Linux kernel 2.6.28 and earlier on s390, powerpc, sparc64,
 and mips 64-bit platforms requires that a 32-bit argument in a 64-bit
 register was properly sign extended when sent from a user-mode application,
 but cannot verify this, which allows local users to cause a denial of
 service (crash) or possibly gain privileges via a crafted system call.
Ubuntu-Description:
 The 64-bit syscall interfaces did not correctly handle sign extension.
 A local attacker could make malicious syscalls, possibly gaining root
 privileges.  The x86_64 architecture was not affected.
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_linux-source-2.6.15:
upstream_linux-source-2.6.15: released (2.6.29~rc2)
dapper_linux-source-2.6.15: released (2.6.15-54.76)
gutsy_linux-source-2.6.15: DNE
hardy_linux-source-2.6.15: DNE
intrepid_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE

Patches_linux-source-2.6.22:
upstream_linux-source-2.6.22: released (2.6.29~rc2)
dapper_linux-source-2.6.22: DNE
gutsy_linux-source-2.6.22: ignored
hardy_linux-source-2.6.22: DNE
intrepid_linux-source-2.6.22: DNE
devel_linux-source-2.6.22: DNE

Patches_linux:
 break-fix: - bca268565fd18f0b36ab8fff6e1623d8dffae2b1
upstream_linux: released (2.6.29~rc2)
dapper_linux: DNE
gutsy_linux: DNE
hardy_linux: ignored
intrepid_linux: ignored
devel_linux: not-affected