Your submission was sent successfully! Close

CVE-2010-3086

Published: 14 January 2011

include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not properly implement exception fixup, which allows local users to cause a denial of service (panic) via an invalid application that triggers a page fault.

From the Ubuntu security team

Tavis Ormandy discovered that the Linux kernel did not properly implement exception fixup. A local attacker could exploit this to crash the kernel, leading to a denial of service.

Priority

Low

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy
Released
karmic Not vulnerable

lucid Not vulnerable

maverick Not vulnerable

upstream
Released (2.6.25~rc1)
linux-ec2
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Does not exist

karmic Not vulnerable

lucid Not vulnerable

maverick Ignored
(binary supplied by "linux" now)
upstream
Released (2.6.25~rc1)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Does not exist

karmic Does not exist

lucid Not vulnerable

maverick Does not exist

upstream
Released (2.6.25~rc1)
linux-mvl-dove
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Does not exist

karmic Ignored
(abandonded branch)
lucid Not vulnerable

maverick Not vulnerable

upstream
Released (2.6.25~rc1)
linux-source-2.6.15
Launchpad, Ubuntu, Debian
dapper
Released (2.6.15-55.93)
hardy Does not exist

karmic Does not exist

lucid Does not exist

maverick Does not exist

upstream
Released (2.6.25~rc1)
linux-ti-omap4
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Does not exist

karmic Does not exist

lucid Does not exist

maverick Not vulnerable

upstream
Released (2.6.25~rc1)