CVE-2010-4169

Published: 22 November 2010

Use-after-free vulnerability in mm/mprotect.c in the Linux kernel before 2.6.37-rc2 allows local users to cause a denial of service via vectors involving an mprotect system call.

From the Ubuntu security team

Dave Jones discovered that the mprotect system call did not correctly handle merged VMAs. A local attacker could exploit this to crash the system, leading to a denial of service.

Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.37~rc2)
Patches:
Upstream: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=63bfd7384b119409685a17d5c58f0b56e5dc03da
Karmic: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-4169/patches/karmic/linux/0001-perf_events-Fix-perf_counter_mmap-hook-in-mprotect.txt
Lucid: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-4169/patches/lucid/linux/0001-perf_events-Fix-perf_counter_mmap-hook-in-mprotect.txt
Maverick: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-4169/patches/maverick/linux/0001-perf_events-Fix-perf_counter_mmap-hook-in-mprotect.txt
linux-ec2
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.37~rc2)
linux-fsl-imx51
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.37~rc2)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.37~rc2)
linux-lts-backport-natty
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.37~rc2)
linux-mvl-dove
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.37~rc2)
linux-source-2.6.15
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.37~rc2)
linux-ti-omap4
Launchpad, Ubuntu, Debian 		Upstream
Released (2.6.37~rc2)

Notes

AuthorNote
mdeslaur 
introduced in dab5855

References

Bugs

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading