Description
Incorrect buffer length handling in the ncp_read_kernel function in
fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in
drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through
4.16-rc6, could be exploited by malicious NCPFS servers to crash the kernel
or execute code.
Ubuntu-Description
Silvio Cesare discovered a buffer overwrite existed in the NCPFS
implementation in the Linux kernel. A remote attacker controlling a
malicious NCPFS server could use this to cause a denial of service (system
crash) or possibly execute arbitrary code.
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
|
Ubuntu 16.04 LTS (Xenial Xerus): | ignored
(was needs-triage ESM criteria)
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [abandoned])
|
Ubuntu 16.04 LTS (Xenial Xerus): | ignored
(abandoned)
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
|
Ubuntu 16.04 LTS (Xenial Xerus): | ignored
(was needed now end-of-life)
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [abandoned])
|
Ubuntu 16.04 LTS (Xenial Xerus): | ignored
(was needed now end-of-life)
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [abandoned])
|
Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Product
linux-krillin: | ignored
(was needs-triage now end-of-life)
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | released
(3.13.0-149.199~precise1)
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
|
Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [out of standard support])
|
Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [was needs-triage now end-of-life])
|
Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [out of standard support])
|
Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | released
(4.4.0-127.153~14.04.1)
|
Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [abandoned])
|
Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [abandoned])
|
Ubuntu 16.04 LTS (Xenial Xerus): | ignored
(abandoned)
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
Upstream: | released
(4.16~rc7)
|
Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was ignored [abandoned])
|
Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Product
linux-vegetahd: | ignored
(was needs-triage now end-of-life)
|
Updated: 2019-12-05 18:51:27 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)