CVE-2011-2492

Priority
Description
The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not
properly initialize certain data structures, which allows local users to
obtain potentially sensitive information from kernel memory via a crafted
getsockopt system call, related to (1) the l2cap_sock_getsockopt_old
function in net/bluetooth/l2cap_sock.c and (2) the
rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c.
Ubuntu-Description
It was discovered that Bluetooth l2cap and rfcomm did not correctly
initialize structures. A local attacker could exploit this to read portions
of the kernel stack, leading to a loss of privacy.
Notes
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (3.11.0-12.19)
Patches:
Introduced by
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed by
8d03e971cf403305217b8e62db3a2e5ad2d6263f
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected [3.4.0-1.3])
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected [3.4.0-1.7])
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected [3.1.10-8.28])
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected [3.0.0-3.18])
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected [3.4.0-3.21])
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected [3.4.0-4.19])
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Package
Upstream:released (3.0~rc4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
More Information

Updated: 2019-12-05 20:57:19 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)