1
PublicDateAtUSN: 2010-11-22
2
Candidate: CVE-2010-4169
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4169
6
https://usn.ubuntu.com/usn/usn-1054-1
7
https://usn.ubuntu.com/usn/usn-1073-1
8
https://usn.ubuntu.com/usn/usn-1074-1
9
https://usn.ubuntu.com/usn/usn-1074-2
10
https://usn.ubuntu.com/usn/usn-1083-1
11
https://usn.ubuntu.com/usn/usn-1093-1
12
https://usn.ubuntu.com/usn/usn-1167-1
13
https://usn.ubuntu.com/usn/usn-1202-1
15
Use-after-free vulnerability in mm/mprotect.c in the Linux kernel before
16
2.6.37-rc2 allows local users to cause a denial of service via vectors
17
involving an mprotect system call.
19
Dave Jones discovered that the mprotect system call did not correctly
20
handle merged VMAs. A local attacker could exploit this to crash the
21
system, leading to a denial of service.
23
mdeslaur> introduced in dab5855
25
https://bugzilla.redhat.com/show_bug.cgi?id=651671
27
Discovered-by: Dave Jones
30
Patches_linux-source-2.6.15:
31
upstream_linux-source-2.6.15: released (2.6.37~rc2)
32
dapper_linux-source-2.6.15: not-affected
33
hardy_linux-source-2.6.15: DNE
34
karmic_linux-source-2.6.15: DNE
35
lucid_linux-source-2.6.15: DNE
36
maverick_linux-source-2.6.15: DNE
37
natty_linux-source-2.6.15: DNE
38
devel_linux-source-2.6.15: DNE
41
upstream: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=63bfd7384b119409685a17d5c58f0b56e5dc03da
42
karmic: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-4169/patches/karmic/linux/0001-perf_events-Fix-perf_counter_mmap-hook-in-mprotect.txt
43
lucid: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-4169/patches/lucid/linux/0001-perf_events-Fix-perf_counter_mmap-hook-in-mprotect.txt
44
maverick: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-4169/patches/maverick/linux/0001-perf_events-Fix-perf_counter_mmap-hook-in-mprotect.txt
45
upstream_linux: released (2.6.37~rc2)
47
hardy_linux: not-affected
48
karmic_linux: released (2.6.31-22.73)
49
lucid_linux: released (2.6.32-28.52)
50
maverick_linux: released (2.6.35-25.43)
51
natty_linux: released (2.6.37-5.13)
52
devel_linux: not-affected (2.6.39-0.0)
55
upstream_linux-ec2: released (2.6.37~rc2)
58
karmic_linux-ec2: released (2.6.31-307.27)
59
lucid_linux-ec2: released (2.6.32-312.24)
60
maverick_linux-ec2: ignored (binary supplied by "linux" now)
64
Patches_linux-ti-omap4:
65
upstream_linux-ti-omap4: released (2.6.37~rc2)
66
dapper_linux-ti-omap4: DNE
67
hardy_linux-ti-omap4: DNE
68
karmic_linux-ti-omap4: DNE
69
lucid_linux-ti-omap4: DNE
70
maverick_linux-ti-omap4: released (2.6.35-903.23)
71
natty_linux-ti-omap4: not-affected (2.6.38-1201.2)
72
devel_linux-ti-omap4: not-affected (2.6.38-1309.13)
74
upstream_linux-lts-backport-maverick: released (2.6.37~rc2)
75
dapper_linux-lts-backport-maverick: DNE
76
hardy_linux-lts-backport-maverick: DNE
77
karmic_linux-lts-backport-maverick: DNE
78
lucid_linux-lts-backport-maverick: released (2.6.35-25.44~lucid1)
79
maverick_linux-lts-backport-maverick: DNE
80
natty_linux-lts-backport-maverick: DNE
81
devel_linux-lts-backport-maverick: DNE
83
Patches_linux-mvl-dove:
84
upstream_linux-mvl-dove: released (2.6.37~rc2)
85
dapper_linux-mvl-dove: DNE
86
hardy_linux-mvl-dove: DNE
87
karmic_linux-mvl-dove: ignored (abandonded branch)
88
lucid_linux-mvl-dove: released (2.6.32-214.30)
89
maverick_linux-mvl-dove: released (2.6.32-414.30)
90
natty_linux-mvl-dove: DNE
91
devel_linux-mvl-dove: DNE
93
Patches_linux-fsl-imx51:
94
upstream_linux-fsl-imx51: released (2.6.37~rc2)
95
dapper_linux-fsl-imx51: DNE
96
hardy_linux-fsl-imx51: DNE
97
karmic_linux-fsl-imx51: released (2.6.31-112.30)
98
lucid_linux-fsl-imx51: released (2.6.31-608.22)
99
maverick_linux-fsl-imx51: DNE
100
natty_linux-fsl-imx51: DNE
101
devel_linux-fsl-imx51: DNE
103
Patches_linux-lts-backport-natty:
104
upstream_linux-lts-backport-natty: released (2.6.37~rc2)
105
hardy_linux-lts-backport-natty: DNE
106
lucid_linux-lts-backport-natty: not-affected (2.6.38-1.27~lucid1)
107
maverick_linux-lts-backport-natty: DNE
108
natty_linux-lts-backport-natty: DNE
109
devel_linux-lts-backport-natty: DNE