CVE-2011-2213 (retired)

Priority
Description
The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel
before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows
local users to cause a denial of service (kernel infinite loop) via crafted
INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated
by an INET_DIAG_BC_JMP instruction with a zero yes value, a different
vulnerability than CVE-2010-3880.
Ubuntu-Description
Dan Rosenberg discovered that the IPv4 diagnostic routines did not
correctly validate certain requests. A local attacker could exploit this to
consume CPU resources, leading to a denial of service.
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (3.11.0-12.19)
Patches:
Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2Fixed by eeb1497277d6b1a0a34ed36b97e18f2bd7d6de0d
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (3.4.0-1.3)
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (3.4.0-1.7)
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (3.1.10-8.28)
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (3.0.0-3.18)
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (3.4.0-3.21)
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (3.4.0-4.19)
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-26 11:56:53 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)