1
PublicDateAtUSN: 2013-09-25
2
Candidate: CVE-2013-4350
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4350
6
http://www.openwall.com/lists/oss-security/2013/09/13
7
https://usn.ubuntu.com/usn/usn-2019-1
8
https://usn.ubuntu.com/usn/usn-2021-1
9
https://usn.ubuntu.com/usn/usn-2022-1
10
https://usn.ubuntu.com/usn/usn-2024-1
11
https://usn.ubuntu.com/usn/usn-2038-1
12
https://usn.ubuntu.com/usn/usn-2039-1
13
https://usn.ubuntu.com/usn/usn-2041-1
14
https://usn.ubuntu.com/usn/usn-2045-1
15
https://usn.ubuntu.com/usn/usn-2050-1
16
https://usn.ubuntu.com/usn/usn-2049-1
18
The IPv6 SCTP implementation in net/sctp/ipv6.c in the Linux kernel through
19
3.11.1 uses data structures and function calls that do not trigger an
20
intended configuration of IPsec encryption, which allows remote attackers
21
to obtain sensitive information by sniffing the network.
23
Alan Chester reported a flaw in the IPv6 Stream Control Transmission
24
Protocol (SCTP) of the Linux kernel. A remote attacker could exploit this
25
flaw to obtain sensitive information by sniffing network traffic.
27
jdstrand> requires IPv6 on SCTP IPsec traffic
28
jdstrand> Per kernel team, too intrusive to backport
30
https://bugzilla.kernel.org/show_bug.cgi?id=24412
31
https://bugzilla.redhat.com/show_bug.cgi?id=1007872
32
https://launchpad.net/bugs/1226497
38
break-fix: - 95ee62083cb6453e056562d91f597552021e6ae7
39
upstream_linux: released (3.12~rc2)
40
lucid_linux: ignored (see note)
41
precise_linux: released (3.2.0-57.87)
42
quantal_linux: released (3.5.0-43.66)
43
raring_linux: released (3.8.0-34.49)
44
saucy_linux: released (3.11.0-13.20)
45
trusty_linux: not-affected (3.12.0-1.3)
46
devel_linux: not-affected (3.13.0-24.46)
49
upstream_linux-ec2: released (3.12~rc2)
50
lucid_linux-ec2: ignored (see note)
51
precise_linux-ec2: DNE
52
quantal_linux-ec2: DNE
58
Patches_linux-mvl-dove:
59
upstream_linux-mvl-dove: released (3.12~rc2)
60
lucid_linux-mvl-dove: ignored (reached end-of-life)
61
precise_linux-mvl-dove: DNE
62
quantal_linux-mvl-dove: DNE
63
raring_linux-mvl-dove: DNE
64
saucy_linux-mvl-dove: DNE
65
trusty_linux-mvl-dove: DNE
66
devel_linux-mvl-dove: DNE
68
Patches_linux-ti-omap4:
69
upstream_linux-ti-omap4: released (3.12~rc2)
70
lucid_linux-ti-omap4: DNE
71
precise_linux-ti-omap4: released (3.2.0-1441.60)
72
quantal_linux-ti-omap4: released (3.5.0-235.51)
73
raring_linux-ti-omap4: released (3.5.0-235.51)
74
saucy_linux-ti-omap4: released (3.5.0-235.51)
75
trusty_linux-ti-omap4: DNE
76
devel_linux-ti-omap4: DNE
78
Patches_linux-fsl-imx51:
79
upstream_linux-fsl-imx51: released (3.12~rc2)
80
lucid_linux-fsl-imx51: ignored (reached end-of-life, does not affect buildd)
81
precise_linux-fsl-imx51: DNE
82
quantal_linux-fsl-imx51: DNE
83
raring_linux-fsl-imx51: DNE
84
saucy_linux-fsl-imx51: DNE
85
trusty_linux-fsl-imx51: DNE
86
devel_linux-fsl-imx51: DNE
88
Patches_linux-linaro-omap:
89
upstream_linux-linaro-omap: released (3.12~rc2)
90
lucid_linux-linaro-omap: DNE
91
precise_linux-linaro-omap: ignored (abandoned)
92
quantal_linux-linaro-omap: ignored (abandoned)
93
raring_linux-linaro-omap: DNE
94
saucy_linux-linaro-omap: DNE
95
trusty_linux-linaro-omap: DNE
96
devel_linux-linaro-omap: DNE
98
Patches_linux-linaro-shared:
99
upstream_linux-linaro-shared: released (3.12~rc2)
100
lucid_linux-linaro-shared: DNE
101
precise_linux-linaro-shared: ignored (abandoned)
102
quantal_linux-linaro-shared: ignored (abandoned)
103
raring_linux-linaro-shared: DNE
104
saucy_linux-linaro-shared: DNE
105
trusty_linux-linaro-shared: DNE
106
devel_linux-linaro-shared: DNE
108
Patches_linux-linaro-vexpress:
109
upstream_linux-linaro-vexpress: released (3.12~rc2)
110
lucid_linux-linaro-vexpress: DNE
111
precise_linux-linaro-vexpress: ignored (abandoned)
112
quantal_linux-linaro-vexpress: ignored (abandoned)
113
raring_linux-linaro-vexpress: DNE
114
saucy_linux-linaro-vexpress: DNE
115
trusty_linux-linaro-vexpress: DNE
116
devel_linux-linaro-vexpress: DNE
118
Patches_linux-qcm-msm:
119
upstream_linux-qcm-msm: released (3.12~rc2)
120
lucid_linux-qcm-msm: ignored (abandoned)
121
precise_linux-qcm-msm: ignored (abandoned)
122
quantal_linux-qcm-msm: ignored (abandoned)
123
raring_linux-qcm-msm: DNE
124
saucy_linux-qcm-msm: DNE
125
trusty_linux-qcm-msm: DNE
126
devel_linux-qcm-msm: DNE
128
Tags_linux-armadaxp: not-ue
129
Patches_linux-armadaxp:
130
upstream_linux-armadaxp: released (3.12~rc2)
131
lucid_linux-armadaxp: DNE
132
precise_linux-armadaxp: released (3.2.0-1628.40)
133
quantal_linux-armadaxp: released (3.5.0-1624.33)
134
raring_linux-armadaxp: DNE
135
saucy_linux-armadaxp: DNE
136
trusty_linux-armadaxp: DNE
137
devel_linux-armadaxp: DNE
139
Patches_linux-lts-quantal: DNE
140
upstream_linux-lts-quantal: released (3.12~rc2)
141
lucid_linux-lts-quantal: DNE
142
precise_linux-lts-quantal: released (3.5.0-43.66~precise1)
143
quantal_linux-lts-quantal: DNE
144
raring_linux-lts-quantal: DNE
145
saucy_linux-lts-quantal: DNE
146
trusty_linux-lts-quantal: DNE
147
devel_linux-lts-quantal: DNE
149
Patches_linux-lts-raring:
150
upstream_linux-lts-raring: released (3.12~rc2)
151
lucid_linux-lts-raring: DNE
152
precise_linux-lts-raring: released (3.8.0-34.49~precise1)
153
quantal_linux-lts-raring: DNE
154
raring_linux-lts-raring: DNE
155
saucy_linux-lts-raring: DNE
156
trusty_linux-lts-raring: DNE
157
devel_linux-lts-raring: DNE
159
Patches_linux-lts-saucy:
160
upstream_linux-lts-saucy: released (3.12~rc2)
161
lucid_linux-lts-saucy: DNE
162
precise_linux-lts-saucy: not-affected (3.11.0-13.20~precise2)
163
quantal_linux-lts-saucy: DNE
164
raring_linux-lts-saucy: DNE
165
saucy_linux-lts-saucy: DNE
166
trusty_linux-lts-saucy: DNE
167
devel_linux-lts-saucy: DNE
169
Patches_linux-goldfish:
170
upstream_linux-goldfish: released (3.12~rc2)
171
lucid_linux-goldfish: DNE
172
precise_linux-goldfish: DNE
173
quantal_linux-goldfish: DNE
174
saucy_linux-goldfish: ignored
175
trusty_linux-goldfish: ignored (was needed now end-of-life)
176
devel_linux-goldfish: not-affected (3.4.0-4.20)
178
Patches_linux-grouper:
179
upstream_linux-grouper: released (3.12~rc2)
180
lucid_linux-grouper: DNE
181
precise_linux-grouper: DNE
182
quantal_linux-grouper: DNE
183
saucy_linux-grouper: ignored
184
trusty_linux-grouper: ignored (see note)
185
devel_linux-grouper: ignored (see note)
187
Patches_linux-maguro:
188
upstream_linux-maguro: released (3.12~rc2)
189
lucid_linux-maguro: DNE
190
precise_linux-maguro: DNE
191
quantal_linux-maguro: DNE
192
saucy_linux-maguro: ignored
193
trusty_linux-maguro: ignored (see note)
194
devel_linux-maguro: DNE
197
upstream_linux-mako: released (3.12~rc2)
198
lucid_linux-mako: DNE
199
precise_linux-mako: DNE
200
quantal_linux-mako: DNE
201
saucy_linux-mako: ignored
202
trusty_linux-mako: ignored (was needed now end-of-life)
203
devel_linux-mako: ignored (see note)
206
upstream_linux-manta: released (3.12~rc2)
207
lucid_linux-manta: DNE
208
precise_linux-manta: DNE
209
quantal_linux-manta: DNE
210
saucy_linux-manta: ignored
211
trusty_linux-manta: ignored (was needed now end-of-life)
212
devel_linux-manta: ignored (see note)
215
upstream_linux-flo: released (3.12~rc2)
217
precise_linux-flo: DNE
218
quantal_linux-flo: DNE
220
trusty_linux-flo: ignored (was needed now end-of-life)
221
devel_linux-flo: ignored (see note)
223
Patches_linux-lts-trusty:
224
upstream_linux-lts-trusty: released (3.12~rc2)
225
lucid_linux-lts-trusty: DNE
226
precise_linux-lts-trusty: not-affected (3.13.0-24.46~precise1)
227
saucy_linux-lts-trusty: DNE
228
trusty_linux-lts-trusty: DNE
229
devel_linux-lts-trusty: DNE