USN-1057-1: Linux kernel vulnerabilities

03 February 2011

Multiple vulnerabilities in Linux kernel.

Releases

Packages

Details

Dave Chinner discovered that the XFS filesystem did not correctly order
inode lookups when exported by NFS. A remote attacker could exploit this to
read or write disk blocks that had changed file assignment or had become
unlinked, leading to a loss of privacy. (CVE-2010-2943)

Dan Rosenberg discovered that several network ioctls did not clear kernel
memory correctly. A local user could exploit this to read kernel stack
memory, leading to a loss of privacy. (CVE-2010-3297)

Kees Cook and Vasiliy Kulikov discovered that the shm interface did not
clear kernel memory correctly. A local attacker could exploit this to read
kernel stack memory, leading to a loss of privacy. (CVE-2010-4072)

Related notices

  • USN-1072-1: linux-image-2.6.24-28-powerpc-smp, linux, linux-image-2.6.24-28-hppa64, linux-image-2.6.24-28-hppa32, linux-image-2.6.24-28-openvz, linux-image-2.6.24-28-generic, linux-image-2.6.24-28-sparc64, linux-image-2.6.24-28-powerpc, linux-image-2.6.24-28-lpiacompat, linux-image-2.6.24-28-server, linux-image-2.6.24-28-virtual, linux-image-2.6.24-28-rt, linux-image-2.6.24-28-sparc64-smp, linux-image-2.6.24-28-itanium, linux-image-2.6.24-28-xen, linux-image-2.6.24-28-powerpc64-smp, linux-image-2.6.24-28-386, linux-image-2.6.24-28-lpia, linux-image-2.6.24-28-mckinley
  • USN-1119-1: linux-image-2.6.35-903-omap4, linux-ti-omap4
  • USN-1074-2: linux-image-2.6.31-608-imx51, linux-fsl-imx51
  • USN-1074-1: linux-fsl-imx51, linux-image-2.6.31-112-imx51
  • USN-1083-1: linux-image-2.6.35-25-virtual, linux-image-2.6.35-25-server, linux-image-2.6.35-25-generic, linux-lts-backport-maverick, linux-image-2.6.35-25-generic-pae
  • USN-1093-1: linux-image-2.6.32-216-dove, linux-mvl-dove, linux-image-2.6.32-416-dove
  • USN-1202-1: linux-image-2.6.35-903-omap4, linux-ti-omap4
  • USN-1041-1: linux-image-2.6.32-27-sparc64-smp, linux-image-2.6.35-24-powerpc-smp, linux-image-2.6.32-27-ia64, linux-image-2.6.31-22-generic-pae, linux-image-2.6.32-27-powerpc-smp, linux-image-2.6.31-22-386, linux-image-2.6.35-24-powerpc, linux-image-2.6.32-27-server, linux-image-2.6.31-22-powerpc64-smp, linux, linux-image-2.6.32-27-sparc64, linux-image-2.6.32-27-powerpc, linux-image-2.6.35-24-server, linux-ec2, linux-image-2.6.32-27-virtual, linux-image-2.6.31-22-sparc64-smp, linux-image-2.6.31-22-ia64, linux-image-2.6.32-27-preempt, linux-image-2.6.31-22-virtual, linux-image-2.6.32-27-lpia, linux-image-2.6.35-24-omap, linux-image-2.6.31-22-powerpc-smp, linux-image-2.6.32-27-generic-pae, linux-image-2.6.31-22-powerpc, linux-image-2.6.31-22-generic, linux-image-2.6.31-307-ec2, linux-image-2.6.35-24-generic, linux-image-2.6.35-24-virtual, linux-image-2.6.31-22-lpia, linux-image-2.6.35-24-versatile, linux-image-2.6.32-27-versatile, linux-image-2.6.35-24-powerpc64-smp, linux-image-2.6.32-311-ec2, linux-image-2.6.31-22-server, linux-image-2.6.32-27-386, linux-image-2.6.35-24-generic-pae, linux-image-2.6.31-22-sparc64, linux-image-2.6.32-27-powerpc64-smp, linux-image-2.6.32-27-generic