FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.

» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Ubuntu > Ubuntu Kernel Team
Reload this Page APPLIED: Bluetooth: bnep: fix buffer overflow

 
 
LinkBack Thread Tools
 
Old 07-26-2011, 08:29 PM
Tim Gardner
 
Default APPLIED: Bluetooth: bnep: fix buffer overflow
On 07/26/2011 12:51 PM, Andy Whitcroft wrote:

CVE-2011-1079
Struct ca is copied from userspace. It is not checked whether the
"device" field is NULL terminated. This potentially leads to BUG()
inside of alloc_netdev_mqs() and/or information leak by creating
a device with a name made of contents of kernel stack.

The fix for this CVE has reached lucid and later via mainline and stable
updates. Following this email are two patches, one for hardy, and one
for lucid/fsl-imx51 and maverick/ti-omap4. Both are simply cherry-picks
they only differ in context.

Proposing for hardy, lucid/fsl-imx51, and maverick/ti-omap4.

-apw




--
Tim Gardner tim.gardner@canonical.com

--
kernel-team mailing list
kernel-team@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kernel-team
 

Thread Tools




All times are GMT. The time now is 06:56 AM.

VBulletin, Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org

Contact Us - Linux Archive - Archive - Top -