Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

USN-1183-1: Linux kernel vulnerabilities

3 August 2011

Multiple kernel flaws have been fixed.

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Learn more about Ubuntu Pro

Releases

Packages

Details

Dan Rosenberg discovered that multiple terminal ioctls did not correctly
initialize structure memory. A local attacker could exploit this to read
portions of kernel stack memory, leading to a loss of privacy.
(CVE-2010-4076, CVE-2010-4077)

Neil Horman discovered that NFSv4 did not correctly handle certain orders
of operation with ACL data. A remote attacker with access to an NFSv4 mount
could exploit this to crash the system, leading to a denial of service.
(CVE-2011-1090)

Timo Warns discovered that OSF partition parsing routines did not correctly
clear memory. A local attacker with physical access could plug in a
specially crafted block device to read kernel memory, leading to a loss of
privacy. (CVE-2011-1163)

Timo Warns discovered that the GUID partition parsing routines did not
correctly validate certain structures. A local attacker with physical
access could plug in a specially crafted block device to crash the system,
leading to a denial of service. (CVE-2011-1577)

Oliver Hartkopp and Dave Jones discovered that the CAN network driver did
not correctly validate certain socket structures. If this driver was
loaded, a local attacker could crash the system, leading to a denial of
service. (CVE-2011-1598)

Vasiliy Kulikov discovered that the AGP driver did not check the size of
certain memory allocations. A local attacker with access to the video
subsystem could exploit this to run the system out of memory, leading to a
denial of service. (CVE-2011-1746)

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Learn more about Ubuntu Pro

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 10.10

After a standard system update you need to reboot your computer to make
all the necessary changes.

Related notices

  • USN-1089-1: linux-image-2.6.31-23-generic-pae, linux-image-2.6.31-23-powerpc-smp, linux-image-2.6.31-23-sparc64, linux-image-2.6.31-23-server, linux-image-2.6.31-23-powerpc, linux-image-2.6.31-23-386, linux-image-2.6.31-23-lpia, linux, linux-image-2.6.31-23-ia64, linux-image-2.6.31-308-ec2, linux-image-2.6.31-23-generic, linux-image-2.6.31-23-virtual, linux-ec2, linux-image-2.6.31-23-sparc64-smp, linux-image-2.6.31-23-powerpc64-smp
  • USN-1202-1: linux-ti-omap4, linux-image-2.6.35-903-omap4
  • USN-1203-1: linux-mvl-dove, linux-image-2.6.32-218-dove
  • USN-1170-1: linux-image-2.6.24-29-rt, linux-image-2.6.24-29-powerpc, linux-image-2.6.24-29-powerpc-smp, linux-image-2.6.24-29-386, linux, linux-image-2.6.24-29-hppa64, linux-image-2.6.24-29-openvz, linux-image-2.6.24-29-itanium, linux-image-2.6.24-29-virtual, linux-image-2.6.24-29-powerpc64-smp, linux-image-2.6.24-29-sparc64-smp, linux-image-2.6.24-29-xen, linux-image-2.6.24-29-server, linux-image-2.6.24-29-hppa32, linux-image-2.6.24-29-lpia, linux-image-2.6.24-29-mckinley, linux-image-2.6.24-29-sparc64, linux-image-2.6.24-29-generic, linux-image-2.6.24-29-lpiacompat
  • USN-1218-1: linux-image-2.6.32-34-generic-pae, linux-image-2.6.32-34-powerpc64-smp, linux-image-2.6.32-34-generic, linux-image-2.6.32-34-powerpc, linux-image-2.6.32-34-virtual, linux-image-2.6.32-34-sparc64-smp, linux, linux-image-2.6.32-34-386, linux-image-2.6.32-34-sparc64, linux-image-2.6.32-34-ia64, linux-image-2.6.32-34-lpia, linux-image-2.6.32-34-server, linux-image-2.6.32-34-powerpc-smp, linux-image-2.6.32-34-versatile, linux-image-2.6.32-34-preempt
  • USN-1204-1: linux-image-2.6.31-610-imx51, linux-fsl-imx51
  • USN-1208-1: linux-image-2.6.32-418-dove, linux-mvl-dove
  • USN-1187-1: linux-lts-backport-maverick, linux-image-2.6.35-30-virtual, linux-image-2.6.35-30-server, linux-image-2.6.35-30-generic, linux-image-2.6.35-30-generic-pae
  • USN-1216-1: linux-ec2, linux-image-2.6.32-318-ec2
  • USN-1092-1: linux-image-2.6.15-57-sparc64, linux-image-2.6.15-57-powerpc, linux-image-2.6.15-57-hppa64-smp, linux-image-2.6.15-57-sparc64-smp, linux-image-2.6.15-57-powerpc-smp, linux-image-2.6.15-57-itanium-smp, linux-image-2.6.15-57-amd64-xeon, linux-image-2.6.15-57-amd64-k8, linux-image-2.6.15-57-686, linux-image-2.6.15-57-hppa32-smp, linux-image-2.6.15-57-mckinley-smp, linux-image-2.6.15-57-mckinley, linux-image-2.6.15-57-amd64-server, linux-image-2.6.15-57-amd64-generic, linux-image-2.6.15-57-386, linux-image-2.6.15-57-hppa32, linux-image-2.6.15-57-hppa64, linux-image-2.6.15-57-k7, linux-image-2.6.15-57-powerpc64-smp, linux-image-2.6.15-57-server-bigiron, linux-image-2.6.15-57-server, linux-source-2.6.15, linux-image-2.6.15-57-itanium
  • USN-1186-1: linux-image-2.6.24-29-rt, linux-image-2.6.24-29-powerpc, linux-image-2.6.24-29-powerpc-smp, linux-image-2.6.24-29-386, linux, linux-image-2.6.24-29-hppa64, linux-image-2.6.24-29-openvz, linux-image-2.6.24-29-itanium, linux-image-2.6.24-29-virtual, linux-image-2.6.24-29-powerpc64-smp, linux-image-2.6.24-29-sparc64-smp, linux-image-2.6.24-29-xen, linux-image-2.6.24-29-server, linux-image-2.6.24-29-hppa32, linux-image-2.6.24-29-lpia, linux-image-2.6.24-29-mckinley, linux-image-2.6.24-29-sparc64, linux-image-2.6.24-29-generic, linux-image-2.6.24-29-lpiacompat
  • USN-1168-1: linux-image-2.6.32-33-virtual, linux-image-2.6.32-33-sparc64, linux-image-2.6.32-33-powerpc-smp, linux-image-2.6.32-33-generic-pae, linux-image-2.6.32-33-lpia, linux-image-2.6.32-33-386, linux, linux-image-2.6.32-33-powerpc64-smp, linux-image-2.6.32-33-preempt, linux-image-2.6.32-33-sparc64-smp, linux-image-2.6.32-33-generic, linux-image-2.6.32-33-server, linux-image-2.6.32-33-versatile, linux-image-2.6.32-33-ia64, linux-image-2.6.32-33-powerpc
  • USN-1162-1: linux-image-2.6.32-217-dove, linux-mvl-dove
  • USN-1161-1: linux-ec2, linux-image-2.6.32-317-ec2
  • USN-1159-1: linux-image-2.6.32-417-dove, linux-mvl-dove
  • USN-1256-1: linux-lts-backport-natty, linux-image-2.6.38-12-generic-pae, linux-image-2.6.38-12-generic, linux-image-2.6.38-12-server, linux-image-2.6.38-12-virtual
  • USN-1212-1: linux-image-2.6.38-1209-omap4, linux-ti-omap4
  • USN-1193-1: linux-image-2.6.38-11-server, linux-image-2.6.38-11-virtual, linux-image-2.6.38-11-omap, linux, linux-image-2.6.38-11-powerpc, linux-image-2.6.38-11-powerpc64-smp, linux-image-2.6.38-11-powerpc-smp, linux-image-2.6.38-11-generic-pae, linux-image-2.6.38-11-versatile, linux-image-2.6.38-11-generic
  • USN-1167-1: linux-image-2.6.38-10-powerpc, linux-image-2.6.38-10-omap, linux, linux-image-2.6.38-10-generic, linux-image-2.6.38-10-server, linux-image-2.6.38-10-powerpc-smp, linux-image-2.6.38-10-powerpc64-smp, linux-image-2.6.38-10-generic-pae, linux-image-2.6.38-10-versatile, linux-image-2.6.38-10-virtual
  • USN-1164-1: linux-image-2.6.31-609-imx51, linux-fsl-imx51