Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2009-1184

Published: 5 May 2009

The selinux_ip_postroute_iptables_compat function in security/selinux/hooks.c in the SELinux subsystem in the Linux kernel before 2.6.27.22, and 2.6.28.x before 2.6.28.10, when compat_net is enabled, omits calls to avc_has_perm for the (1) node and (2) port, which allows local users to bypass intended restrictions on network traffic. NOTE: this was incorrectly reported as an issue fixed in 2.6.27.21.

Priority

Low

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian 		dapper Does not exist

hardy Not vulnerable

intrepid
Released (2.6.27-14.35)
jaunty
Released (2.6.28-13.45)
upstream
Released (2.6.30)
linux-source-2.6.15
Launchpad, Ubuntu, Debian 		dapper Not vulnerable

hardy Does not exist

intrepid Does not exist

jaunty Does not exist

upstream Not vulnerable

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading