CVE-2013-2188

Publication date 16 July 2013

Last updated 24 July 2024

Ubuntu priority

Medium

Why this priority?

Description

A certain Red Hat patch to the do_filp_open function in fs/namei.c in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly handle failure to obtain write permissions, which allows local users to cause a denial of service (system crash) by leveraging access to a filesystem that is mounted read-only.

Read the notes from the security team

Status

Package Ubuntu Release Status
linux 13.04 raring
Not affected
12.10 quantal
Not affected
12.04 LTS precise
Not affected
10.04 LTS lucid
Not affected
linux-2.6 13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise Not in release
10.04 LTS lucid Not in release
linux-armadaxp 13.04 raring Not in release
12.10 quantal
Not affected
12.04 LTS precise
Not affected
10.04 LTS lucid Not in release
linux-ec2 13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise Not in release
10.04 LTS lucid
Not affected
linux-fsl-imx51 13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise Not in release
10.04 LTS lucid Ignored end of life
linux-linaro-omap 13.04 raring Not in release
12.10 quantal Ignored end of life
12.04 LTS precise Ignored end of life
10.04 LTS lucid Not in release
linux-linaro-shared 13.04 raring Not in release
12.10 quantal Ignored end of life
12.04 LTS precise Ignored end of life
10.04 LTS lucid Not in release
linux-linaro-vexpress 13.04 raring Not in release
12.10 quantal Ignored end of life
12.04 LTS precise Ignored end of life
10.04 LTS lucid Not in release
linux-lts-quantal 13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise
Not affected
10.04 LTS lucid Not in release
linux-lts-raring 13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise
Not affected
10.04 LTS lucid Not in release
linux-mvl-dove 13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise Not in release
10.04 LTS lucid Ignored end of life
linux-qcm-msm 13.04 raring Not in release
12.10 quantal Ignored end of life
12.04 LTS precise Ignored end of life
10.04 LTS lucid Ignored end of life
linux-ti-omap4 13.04 raring
Not affected
12.10 quantal
Not affected
12.04 LTS precise
Not affected
10.04 LTS lucid Not in release

Notes

seth-arnold

RHEL bug claims RHEL-specific patch at fault

References

Other references