[Bug 819569] Re: CVE-2011-2492

Thu, 18 Aug 2011 23:01:31 -0700 

This bug was fixed in the package linux - 2.6.24-29.93

---------------
linux (2.6.24-29.93) hardy-proposed; urgency=low

  [Herton R. Krzesinski]

  * Release Tracking Bug
    - LP: #823912

  [Upstream Kernel Changes]

  * close races in /proc/*/{environ,auxv}, CVE-2011-1020
    - LP: #813026
    - CVE-2011-1020
  * dccp: fix oops on Reset after close, CVE-2011-1093
    - LP: #814087
    - CVE-2011-1093
  * Bluetooth: sco: fix information leak to userspace, CVE-2011-1078
    - LP: #816542
    - CVE-2011-1078
  * Bluetooth: bnep: fix buffer overflow, CVE-2011-1079
    - LP: #816544
    - CVE-2011-1079
  * bridge: netfilter: fix information leak, CVE-2011-1080
    - LP: #816545
    - CVE-2011-1080
  * char/tpm: Fix unitialized usage of data buffer, CVE-2011-1160
    - LP: #816546
    - CVE-2011-1160
  * irda: validate peer name and attribute lengths, CVE-2011-1180
    - LP: #816547
    - CVE-2011-1180
  * rose_loopback_timer sets VC number <= ROSE_DEFAULT_MAXVC, CVE-2011-1493
    - LP: #816550
    - CVE-2011-1493
  * ROSE: prevent heap corruption with bad facilities, CVE-2011-1493
    - LP: #816550
    - CVE-2011-1493
  * rose: Add length checks to CALL_REQUEST parsing, CVE-2011-1493
    - LP: #816550
    - CVE-2011-1493
  * Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace.
    - LP: #819569
    - CVE-2011-2492
 -- Herton Ronaldo Krzesinski <herton.krzesin...@canonical.com>   Wed, 10 Aug 
2011 10:07:45 -0300

** Changed in: linux (Ubuntu Hardy)
       Status: Fix Committed => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1020

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1078

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1079

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1080

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1093

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1160

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1180

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-1493

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/819569

Title:
  CVE-2011-2492

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/819569/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to