CVE-2010-3080

Published: 21 September 2010

Double free vulnerability in the snd_seq_oss_open function in sound/core/seq/oss/seq_oss_init.c in the Linux kernel before 2.6.36-rc4 might allow local users to cause a denial of service or possibly have unspecified other impact via an unsuccessful attempt to open the /dev/sequencer device.

From the Ubuntu security team

Tavis Ormandy discovered that the OSS sequencer device did not correctly shut down. A local attacker could exploit this to crash the system or possibly gain root privileges.

Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.36~rc4)
Patches:
Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed by 27f7ad53829f79e799a253285318bff79ece15bd
Hardy: http://chinstrap.ubuntu.com/~sconklin/CVEs/CVE-2010-3080/patches/hardy/linux/0001-ALSA-seq-oss-Fix-double-free-at-error-path-of-snd_seq_.txt
Jaunty: http://chinstrap.ubuntu.com/~sconklin/CVEs/CVE-2010-3080/patches/jaunty/linux/0001-ALSA-seq-oss-Fix-double-free-at-error-path-of-snd_seq_.txt
Karmic: http://chinstrap.ubuntu.com/~sconklin/CVEs/CVE-2010-3080/patches/karmic/linux/0001-ALSA-seq-oss-Fix-double-free-at-error-path-of-snd_seq_.txt
Lucid: http://chinstrap.ubuntu.com/~sconklin/CVEs/CVE-2010-3080/patches/lucid/linux/0001-ALSA-seq-oss-Fix-double-free-at-error-path-of-snd_seq_.txt
linux-ec2
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.36~rc4)
linux-fsl-imx51
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.36~rc4)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.36~rc4)
linux-mvl-dove
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.36~rc4)
linux-source-2.6.15
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.36~rc4)
Patches:
Dapper: http://chinstrap.ubuntu.com/~sconklin/CVEs/CVE-2010-3080/patches/dapper/linux/0001-ALSA-seq-oss-Fix-double-free-at-error-path-of-snd_seq_.txt
linux-ti-omap4
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.36~rc4)

References

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading