CVE-2011-2521

Published: 24 May 2012

The x86_assign_hw_event function in arch/x86/kernel/cpu/perf_event.c in the Performance Events subsystem in the Linux kernel before 2.6.39 does not properly calculate counter values, which allows local users to cause a denial of service (panic) via the perf program.

Priority

Status

Package	Release	Status
linux Launchpad, Ubuntu, Debian	hardy	Not vulnerable
	lucid	Not vulnerable
	maverick	Not vulnerable
	natty	Not vulnerable
	upstream	Released (2.6.39~rc1)
	Patches: Introduced by 41bf498949a263fa0b2d32524b89d696ac330e94 Fixed by fc66c5210ec2539e800e87d7b3a985323c7be96e
linux-ec2 Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Not vulnerable
	maverick	Ignored (end of life)
	natty	Does not exist
	upstream	Released (2.6.39~rc1)
linux-fsl-imx51 Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Not vulnerable
	maverick	Does not exist
	natty	Does not exist
	upstream	Released (2.6.39~rc1)
linux-lts-backport-maverick Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Not vulnerable
	maverick	Does not exist
	natty	Does not exist
	upstream	Released (2.6.39~rc1)
linux-lts-backport-natty Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Not vulnerable
	maverick	Does not exist
	natty	Does not exist
	upstream	Released (2.6.39~rc1)
linux-mvl-dove Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Not vulnerable
	maverick	Not vulnerable
	natty	Does not exist
	upstream	Released (2.6.39~rc1)
linux-ti-omap4 Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Does not exist
	maverick	Not vulnerable
	natty	Not vulnerable
	upstream	Released (2.6.39~rc1)

References

Bugs

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2521

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›