Candidate: CVE-2011-2184 PublicDate: 2011-09-06 16:55:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2184 https://lkml.org/lkml/2011/5/23/199 Description: The key_replace_session_keyring function in security/keys/process_keys.c in the Linux kernel before 2.6.39.1 does not initialize a certain structure member, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a KEYCTL_SESSION_TO_PARENT argument to the keyctl function, a different vulnerability than CVE-2010-2960. Ubuntu-Description: Notes: kees> introduced by 47a150edc2ae734c0f4bf50aa19499 https://lkml.org/lkml/2011/5/25/265 Bugs: https://launchpad.net/bugs/844367 Priority: low Discovered-by: Assigned-to: CVSS: Patches_linux: break-fix: 47a150edc2ae734c0f4bf50aa19499e23b9a46f8 f7285b5d631fd6096b11c6af0058ed3a2b30ef4e upstream_linux: released (3.0~rc1) hardy_linux: not-affected lucid_linux: not-affected maverick_linux: not-affected natty_linux: not-affected trusty_linux: not-affected (3.11.0-12.19) trusty/esm_linux: not-affected (3.11.0-12.19) devel_linux: not-affected (3.0-0.1) Patches_linux-ec2: upstream_linux-ec2: released (3.0~rc1) hardy_linux-ec2: DNE lucid_linux-ec2: not-affected maverick_linux-ec2: ignored (binary supplied by "linux" now) natty_linux-ec2: DNE trusty_linux-ec2: DNE trusty/esm_linux-ec2: DNE devel_linux-ec2: DNE Patches_linux-mvl-dove: upstream_linux-mvl-dove: released (3.0~rc1) hardy_linux-mvl-dove: DNE lucid_linux-mvl-dove: not-affected maverick_linux-mvl-dove: not-affected natty_linux-mvl-dove: DNE trusty_linux-mvl-dove: DNE trusty/esm_linux-mvl-dove: DNE devel_linux-mvl-dove: DNE Patches_linux-ti-omap4: upstream_linux-ti-omap4: released (3.0~rc1) hardy_linux-ti-omap4: DNE lucid_linux-ti-omap4: DNE maverick_linux-ti-omap4: not-affected natty_linux-ti-omap4: not-affected trusty_linux-ti-omap4: DNE trusty/esm_linux-ti-omap4: DNE devel_linux-ti-omap4: DNE Patches_linux-lts-backport-maverick: upstream_linux-lts-backport-maverick: released (3.0~rc1) hardy_linux-lts-backport-maverick: DNE lucid_linux-lts-backport-maverick: not-affected maverick_linux-lts-backport-maverick: DNE natty_linux-lts-backport-maverick: DNE trusty_linux-lts-backport-maverick: DNE trusty/esm_linux-lts-backport-maverick: DNE devel_linux-lts-backport-maverick: DNE Patches_linux-fsl-imx51: upstream_linux-fsl-imx51: released (3.0~rc1) hardy_linux-fsl-imx51: DNE lucid_linux-fsl-imx51: not-affected maverick_linux-fsl-imx51: DNE natty_linux-fsl-imx51: DNE trusty_linux-fsl-imx51: DNE trusty/esm_linux-fsl-imx51: DNE devel_linux-fsl-imx51: DNE Patches_linux-lts-backport-natty: upstream_linux-lts-backport-natty: released (3.0~rc1) hardy_linux-lts-backport-natty: DNE lucid_linux-lts-backport-natty: not-affected maverick_linux-lts-backport-natty: DNE natty_linux-lts-backport-natty: DNE trusty_linux-lts-backport-natty: DNE trusty/esm_linux-lts-backport-natty: DNE devel_linux-lts-backport-natty: DNE Patches_linux-goldfish: upstream_linux-goldfish: released (3.0~rc1) lucid_linux-goldfish: DNE precise_linux-goldfish: DNE quantal_linux-goldfish: DNE saucy_linux-goldfish: ignored trusty_linux-goldfish: not-affected (3.4.0-1.7) trusty/esm_linux-goldfish: DNE (trusty was not-affected [3.4.0-1.7]) devel_linux-goldfish: not-affected (3.4.0-1.7) Patches_linux-grouper: upstream_linux-grouper: released (3.0~rc1) lucid_linux-grouper: DNE precise_linux-grouper: DNE quantal_linux-grouper: DNE saucy_linux-grouper: ignored trusty_linux-grouper: not-affected (3.1.10-8.28) trusty/esm_linux-grouper: DNE (trusty was not-affected [3.1.10-8.28]) devel_linux-grouper: not-affected (3.1.10-8.28) Patches_linux-maguro: upstream_linux-maguro: released (3.0~rc1) lucid_linux-maguro: DNE precise_linux-maguro: DNE quantal_linux-maguro: DNE saucy_linux-maguro: ignored trusty_linux-maguro: not-affected (3.0.0-3.18) trusty/esm_linux-maguro: DNE (trusty was not-affected [3.0.0-3.18]) devel_linux-maguro: not-affected (3.0.0-3.18) Patches_linux-mako: upstream_linux-mako: released (3.0~rc1) lucid_linux-mako: DNE precise_linux-mako: DNE quantal_linux-mako: DNE saucy_linux-mako: ignored trusty_linux-mako: not-affected (3.4.0-3.21) trusty/esm_linux-mako: DNE (trusty was not-affected [3.4.0-3.21]) devel_linux-mako: not-affected (3.4.0-3.21) Patches_linux-manta: upstream_linux-manta: released (3.0~rc1) lucid_linux-manta: DNE precise_linux-manta: DNE quantal_linux-manta: DNE saucy_linux-manta: ignored trusty_linux-manta: not-affected (3.4.0-4.19) trusty/esm_linux-manta: DNE (trusty was not-affected [3.4.0-4.19]) devel_linux-manta: not-affected (3.4.0-4.19) Patches_linux-flo: upstream_linux-flo: released (3.0~rc1) lucid_linux-flo: DNE precise_linux-flo: DNE quantal_linux-flo: DNE saucy_linux-flo: DNE trusty_linux-flo: not-affected (3.4.0-1.3) trusty/esm_linux-flo: DNE (trusty was not-affected [3.4.0-1.3]) devel_linux-flo: not-affected (3.4.0-1.3) precise_linux: not-affected (3.1.0-1.1) precise_linux-ec2: DNE precise_linux-fsl-imx51: DNE precise_linux-lts-backport-maverick: DNE precise_linux-lts-backport-natty: DNE precise_linux-mvl-dove: DNE precise_linux-ti-omap4: not-affected (3.0.0-1401.2) quantal_linux: not-affected quantal_linux-ec2: DNE quantal_linux-fsl-imx51: DNE quantal_linux-lts-backport-maverick: DNE quantal_linux-lts-backport-natty: DNE quantal_linux-mvl-dove: DNE quantal_linux-ti-omap4: not-affected saucy_linux: not-affected saucy_linux-ec2: DNE saucy_linux-fsl-imx51: DNE saucy_linux-lts-backport-maverick: DNE saucy_linux-lts-backport-natty: DNE saucy_linux-mvl-dove: DNE saucy_linux-ti-omap4: not-affected