[Bug 1174867] Re: CVE-2013-3301

John Johansen Tue, 11 Jun 2013 02:41:36 -0700

** Changed in: linux-ec2 (Ubuntu Lucid)
       Status: New => Invalid

** Changed in: linux (Ubuntu Lucid)
       Status: New => Invalid


** Description changed:

  The ftrace implementation in the Linux kernel before 3.8.8 allows local
  users to cause a denial of service (NULL pointer dereference and system
  crash) or possibly have unspecified other impact by leveraging the
  CAP_SYS_ADMIN capability for write access to the (1) set_ftrace_pid or
  (2) set_graph_function file, and then making an lseek system call.
  
- Break-Fix: -    6a76f8c0ab19f215af2a3442870eeb5f0e81998d
+ Break-Fix: 756d17ee7ee4fbc8238bdf97100af63e6ac441ef
+ 6a76f8c0ab19f215af2a3442870eeb5f0e81998d

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1174867

Title:
  CVE-2013-3301

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1174867/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1174867] Re: CVE-2013-3301

Reply via email to