Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

USN-1189-1: Linux kernel vulnerabilities

19 August 2011

Multiple kernel flaws were fixed.

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Learn more about Ubuntu Pro

Releases

Packages

Details

It was discovered that the /proc filesystem did not correctly handle
permission changes when programs executed. A local attacker could hold open
files to examine details about programs running with higher privileges,
potentially increasing the chances of exploiting additional
vulnerabilities. (CVE-2011-1020)

Vasiliy Kulikov discovered that the Bluetooth stack did not correctly clear
memory. A local attacker could exploit this to read kernel stack memory,
leading to a loss of privacy. (CVE-2011-1078)

Vasiliy Kulikov discovered that the Bluetooth stack did not correctly check
that device name strings were NULL terminated. A local attacker could
exploit this to crash the system, leading to a denial of service, or leak
contents of kernel stack memory, leading to a loss of privacy.
(CVE-2011-1079)

Vasiliy Kulikov discovered that bridge network filtering did not check that
name fields were NULL terminated. A local attacker could exploit this to
leak contents of kernel stack memory, leading to a loss of privacy.
(CVE-2011-1080)

Johan Hovold discovered that the DCCP network stack did not correctly
handle certain packet combinations. A remote attacker could send specially
crafted network traffic that would crash the system, leading to a denial of
service. (CVE-2011-1093)

Peter Huewe discovered that the TPM device did not correctly initialize
memory. A local attacker could exploit this to read kernel heap memory
contents, leading to a loss of privacy. (CVE-2011-1160)

Dan Rosenberg discovered that the IRDA subsystem did not correctly check
certain field sizes. If a system was using IRDA, a remote attacker could
send specially crafted traffic to crash the system or gain root privileges.
(CVE-2011-1180)

Dan Rosenberg discovered that the X.25 Rose network stack did not correctly
handle certain fields. If a system was running with Rose enabled, a remote
attacker could send specially crafted traffic to gain root privileges.
(CVE-2011-1493)

It was discovered that Bluetooth l2cap and rfcomm did not correctly
initialize structures. A local attacker could exploit this to read portions
of the kernel stack, leading to a loss of privacy. (CVE-2011-2492)

Dan Rosenberg discovered flaws in the linux Rose (X.25 PLP) layer used by
amateur radio. A local user or a remote user on an X.25 network could
exploit these flaws to execute arbitrary code as root. (CVE-2011-4913)

Ben Hutchings discovered several flaws in the Linux Rose (X.25 PLP) layer.
A local user or a remote user on an X.25 network could exploit these flaws
to execute arbitrary code as root. (CVE-2011-4914)

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Learn more about Ubuntu Pro

Related notices

  • USN-1205-1: linux-lts-backport-maverick, linux-image-2.6.35-30-generic-pae, linux-image-2.6.35-30-virtual, linux-image-2.6.35-30-generic, linux-image-2.6.35-30-server
  • USN-1211-1: linux-image-2.6.38-11-server, linux-image-2.6.38-11-generic, linux-image-2.6.38-11-versatile, linux-image-2.6.38-11-virtual, linux-image-2.6.38-11-generic-pae, linux-image-2.6.38-11-powerpc, linux-image-2.6.38-11-omap, linux-image-2.6.38-11-powerpc64-smp, linux, linux-image-2.6.38-11-powerpc-smp
  • USN-1202-1: linux-ti-omap4, linux-image-2.6.35-903-omap4
  • USN-1203-1: linux-image-2.6.32-218-dove, linux-mvl-dove
  • USN-1218-1: linux-image-2.6.32-34-virtual, linux-image-2.6.32-34-386, linux-image-2.6.32-34-generic, linux-image-2.6.32-34-versatile, linux-image-2.6.32-34-lpia, linux-image-2.6.32-34-sparc64-smp, linux-image-2.6.32-34-server, linux-image-2.6.32-34-powerpc, linux-image-2.6.32-34-preempt, linux-image-2.6.32-34-sparc64, linux-image-2.6.32-34-generic-pae, linux, linux-image-2.6.32-34-powerpc64-smp, linux-image-2.6.32-34-powerpc-smp, linux-image-2.6.32-34-ia64
  • USN-1204-1: linux-fsl-imx51, linux-image-2.6.31-610-imx51
  • USN-1208-1: linux-image-2.6.32-418-dove, linux-mvl-dove
  • USN-1256-1: linux-image-2.6.38-12-generic-pae, linux-image-2.6.38-12-virtual, linux-lts-backport-natty, linux-image-2.6.38-12-server, linux-image-2.6.38-12-generic
  • USN-1201-1: linux, linux-image-2.6.35-30-powerpc-smp, linux-image-2.6.35-30-versatile, linux-image-2.6.35-30-generic-pae, linux-image-2.6.35-30-powerpc64-smp, linux-image-2.6.35-30-virtual, linux-image-2.6.35-30-powerpc, linux-image-2.6.35-30-generic, linux-image-2.6.35-30-server, linux-image-2.6.35-30-omap
  • USN-1212-1: linux-image-2.6.38-1209-omap4, linux-ti-omap4
  • USN-1216-1: linux-ec2, linux-image-2.6.32-318-ec2
  • USN-1160-1: linux, linux-image-2.6.35-30-powerpc-smp, linux-image-2.6.35-30-versatile, linux-image-2.6.35-30-generic-pae, linux-image-2.6.35-30-powerpc64-smp, linux-image-2.6.35-30-virtual, linux-image-2.6.35-30-powerpc, linux-image-2.6.35-30-generic, linux-image-2.6.35-30-server, linux-image-2.6.35-30-omap
  • USN-1141-1: linux-image-2.6.32-316-ec2, linux-image-2.6.32-32-lpia, linux-image-2.6.32-32-versatile, linux-image-2.6.32-32-386, linux-image-2.6.32-32-sparc64, linux-image-2.6.32-32-ia64, linux-image-2.6.32-32-powerpc-smp, linux-image-2.6.32-32-sparc64-smp, linux-ec2, linux-image-2.6.32-32-generic, linux-image-2.6.32-32-powerpc, linux-image-2.6.32-32-preempt, linux-image-2.6.32-32-virtual, linux-image-2.6.32-32-server, linux-image-2.6.32-32-powerpc64-smp, linux-image-2.6.32-32-generic-pae, linux
  • USN-1162-1: linux-image-2.6.32-217-dove, linux-mvl-dove
  • USN-1167-1: linux-image-2.6.38-10-powerpc-smp, linux-image-2.6.38-10-generic-pae, linux-image-2.6.38-10-omap, linux-image-2.6.38-10-generic, linux-image-2.6.38-10-powerpc, linux-image-2.6.38-10-versatile, linux-image-2.6.38-10-powerpc64-smp, linux-image-2.6.38-10-virtual, linux, linux-image-2.6.38-10-server
  • USN-1187-1: linux-lts-backport-maverick, linux-image-2.6.35-30-generic-pae, linux-image-2.6.35-30-virtual, linux-image-2.6.35-30-generic, linux-image-2.6.35-30-server
  • USN-1159-1: linux-image-2.6.32-417-dove, linux-mvl-dove
  • USN-1093-1: linux-image-2.6.32-416-dove, linux-image-2.6.32-216-dove, linux-mvl-dove