This bug was fixed in the package linux - 2.6.24-29.93 --------------- linux (2.6.24-29.93) hardy-proposed; urgency=low
[Herton R. Krzesinski] * Release Tracking Bug - LP: #823912 [Upstream Kernel Changes] * close races in /proc/*/{environ,auxv}, CVE-2011-1020 - LP: #813026 - CVE-2011-1020 * dccp: fix oops on Reset after close, CVE-2011-1093 - LP: #814087 - CVE-2011-1093 * Bluetooth: sco: fix information leak to userspace, CVE-2011-1078 - LP: #816542 - CVE-2011-1078 * Bluetooth: bnep: fix buffer overflow, CVE-2011-1079 - LP: #816544 - CVE-2011-1079 * bridge: netfilter: fix information leak, CVE-2011-1080 - LP: #816545 - CVE-2011-1080 * char/tpm: Fix unitialized usage of data buffer, CVE-2011-1160 - LP: #816546 - CVE-2011-1160 * irda: validate peer name and attribute lengths, CVE-2011-1180 - LP: #816547 - CVE-2011-1180 * rose_loopback_timer sets VC number <= ROSE_DEFAULT_MAXVC, CVE-2011-1493 - LP: #816550 - CVE-2011-1493 * ROSE: prevent heap corruption with bad facilities, CVE-2011-1493 - LP: #816550 - CVE-2011-1493 * rose: Add length checks to CALL_REQUEST parsing, CVE-2011-1493 - LP: #816550 - CVE-2011-1493 * Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. - LP: #819569 - CVE-2011-2492 -- Herton Ronaldo Krzesinski <herton.krzesin...@canonical.com> Wed, 10 Aug 2011 10:07:45 -0300 ** Changed in: linux (Ubuntu Hardy) Status: Fix Committed => Fix Released ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1020 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1078 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1079 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1080 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1093 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1160 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1180 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1493 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/819569 Title: CVE-2011-2492 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/819569/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs