1
PublicDateAtUSN: 2011-07-25
2
Candidate: CVE-2011-1079
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1079
6
https://usn.ubuntu.com/usn/usn-1187-1
7
https://usn.ubuntu.com/usn/usn-1189-1
8
https://usn.ubuntu.com/usn/usn-1202-1
9
https://usn.ubuntu.com/usn/usn-1204-1
10
https://usn.ubuntu.com/usn/usn-1167-1
11
https://usn.ubuntu.com/usn/usn-1160-1
12
https://usn.ubuntu.com/usn/usn-1141-1
13
https://usn.ubuntu.com/usn/usn-1162-1
14
https://usn.ubuntu.com/usn/usn-1159-1
15
https://usn.ubuntu.com/usn/usn-1212-1
16
https://usn.ubuntu.com/usn/usn-1256-1
18
The bnep_sock_ioctl function in net/bluetooth/bnep/sock.c in the Linux
19
kernel before 2.6.39 does not ensure that a certain device field ends with
20
a '\0' character, which allows local users to obtain potentially sensitive
21
information from kernel stack memory, or cause a denial of service (BUG and
22
system crash), via a BNEPCONNADD command.
24
Vasiliy Kulikov discovered that the Bluetooth stack did not correctly check
25
that device name strings were NULL terminated. A local attacker could
26
exploit this to crash the system, leading to a denial of service, or leak
27
contents of kernel stack memory, leading to a loss of privacy.
30
https://launchpad.net/bugs/816544
32
Discovered-by: Vasiliy Kulikov
36
break-fix: - 43629f8f5ea32a998d06d1bb41eefa0e821ff573
37
upstream_linux: released (2.6.39~rc1)
38
hardy_linux: released (2.6.24-29.93)
39
lucid_linux: released (2.6.32-32.62)
40
maverick_linux: released (2.6.35-30.52)
41
natty_linux: released (2.6.38-9.43)
42
oneiric_linux: not-affected (2.6.39-0.1)
43
devel_linux: not-affected (2.6.39-0.1)
46
upstream_linux-ec2: released (2.6.39~rc1)
48
lucid_linux-ec2: released (2.6.32-316.30)
49
maverick_linux-ec2: ignored (binary supplied by "linux" now)
51
oneiric_linux-ec2: DNE
54
Patches_linux-mvl-dove:
55
upstream_linux-mvl-dove: released (2.6.39~rc1)
56
hardy_linux-mvl-dove: DNE
57
lucid_linux-mvl-dove: released (2.6.32-217.34)
58
maverick_linux-mvl-dove: released (2.6.32-417.34)
59
natty_linux-mvl-dove: DNE
60
oneiric_linux-mvl-dove: DNE
61
devel_linux-mvl-dove: DNE
63
Patches_linux-ti-omap4:
64
upstream_linux-ti-omap4: released (2.6.39~rc1)
65
hardy_linux-ti-omap4: DNE
66
lucid_linux-ti-omap4: DNE
67
maverick_linux-ti-omap4: released (2.6.35-903.23)
68
natty_linux-ti-omap4: released (2.6.38-1209.13)
69
oneiric_linux-ti-omap4: not-affected (2.6.38-1309.13)
70
devel_linux-ti-omap4: not-affected (2.6.38-1309.13)
72
Patches_linux-lts-backport-maverick:
73
upstream_linux-lts-backport-maverick: released (2.6.39~rc1)
74
hardy_linux-lts-backport-maverick: DNE
75
lucid_linux-lts-backport-maverick: released (2.6.35-30.54~lucid1)
76
maverick_linux-lts-backport-maverick: DNE
77
natty_linux-lts-backport-maverick: DNE
78
oneiric_linux-lts-backport-maverick: DNE
79
devel_linux-lts-backport-maverick: DNE
81
Patches_linux-fsl-imx51:
82
upstream_linux-fsl-imx51: released (2.6.39~rc1)
83
hardy_linux-fsl-imx51: DNE
84
lucid_linux-fsl-imx51: released (2.6.31-610.27)
85
maverick_linux-fsl-imx51: DNE
86
natty_linux-fsl-imx51: DNE
87
oneiric_linux-fsl-imx51: DNE
88
devel_linux-fsl-imx51: DNE
90
Patches_linux-lts-backport-natty:
91
upstream_linux-lts-backport-natty: released (2.6.39~rc1)
92
hardy_linux-lts-backport-natty: DNE
93
lucid_linux-lts-backport-natty: released (2.6.38-9.43~lucid1)
94
maverick_linux-lts-backport-natty: DNE
95
natty_linux-lts-backport-natty: DNE
96
oneiric_linux-lts-backport-natty: DNE
97
devel_linux-lts-backport-natty: DNE
99
Patches_linux-lts-backport-oneiric:
100
upstream_linux-lts-backport-oneiric: released (2.6.39~rc1)
101
hardy_linux-lts-backport-oneiric: DNE
102
lucid_linux-lts-backport-oneiric: not-affected
103
maverick_linux-lts-backport-oneiric: DNE
104
natty_linux-lts-backport-oneiric: DNE
105
oneiric_linux-lts-backport-oneiric: DNE
106
devel_linux-lts-backport-oneiric: DNE