Launchpad.net

CVE 2009-3612

The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.

Related bugs and status

CVE-2009-3612 (Candidate) is related to these bugs:

Bug #352615: Please provide squashfs-modules udeb

		In	Importance	Status
352615	Please provide squashfs-modules udeb	linux (Ubuntu)	Medium	Fix Released
352615	Please provide squashfs-modules udeb	linux (Ubuntu Karmic)	Low	Fix Released
352615	Please provide squashfs-modules udeb	linux (Ubuntu Lucid)	Medium	Fix Released

Bug #395973: Please update kernel to version 2.6.24-26.34 to fix several security vulnerabilities

Summary				In	Importance	Status
	395973	Please update kernel to version 2.6.24-26.34 to fix several security vulnerabilities		The Dell Mini Project	Undecided	Confirmed

Bug #400652: usbstorage: Sony-Ericsson W760i "No sense [current]"

Summary				In	Importance	Status
	400652	usbstorage: Sony-Ericsson W760i "No sense [current]"		linux (Ubuntu)	Medium	Fix Released
	400652	usbstorage: Sony-Ericsson W760i "No sense [current]"		linux (Ubuntu Karmic)	Undecided	Fix Released

Bug #404626: Turning wifi "off" using Fn+F2 on Eee PC with Ralink rt2860 results in kernel panic (rfkill)

		In	Importance	Status
404626	Turning wifi "off" using Fn+F2 on Eee PC with Ralink rt2860 results in kernel panic (rfkill)	linux (Ubuntu)	High	Fix Released
404626	Turning wifi "off" using Fn+F2 on Eee PC with Ralink rt2860 results in kernel panic (rfkill)	Linux	Medium	Invalid
404626	Turning wifi "off" using Fn+F2 on Eee PC with Ralink rt2860 results in kernel panic (rfkill)	Release Notes for Ubuntu	Undecided	Fix Released
404626	Turning wifi "off" using Fn+F2 on Eee PC with Ralink rt2860 results in kernel panic (rfkill)	linux (Ubuntu Karmic)	High	Fix Released

Bug #407824: BOTH Network controller: Intel Corporation Wireless WiFi Link 5100 AND Ethernet controller: Marvell Technology Group Ltd. 88E8040T PCI-E Fast Ethernet Controller (rev 12) FAIL TO LOAD!

Summary				In	Importance	Status
	407824	BOTH Network controller: Intel Corporation Wireless WiFi Link 5100 AND Ethernet controller: Marvell Technology Group Ltd. 88E8040T PCI-E Fast Ethernet Controller (rev 12) FAIL TO LOAD!		linux (Ubuntu)	Medium	Fix Released
	407824	BOTH Network controller: Intel Corporation Wireless WiFi Link 5100 AND Ethernet controller: Marvell Technology Group Ltd. 88E8040T PCI-E Fast Ethernet Controller (rev 12) FAIL TO LOAD!		linux (Ubuntu Karmic)	Medium	Fix Released

Bug #431963: io/fs errors when launching gdm on imx51 with sata

		In	Importance	Status
431963	io/fs errors when launching gdm on imx51 with sata	linux-fsl-imx51 (Ubuntu)	High	Fix Released
431963	io/fs errors when launching gdm on imx51 with sata	linux-fsl-imx51 (Ubuntu Karmic)	High	Fix Released
431963	io/fs errors when launching gdm on imx51 with sata	linux-fsl-imx51 (Ubuntu Lucid)	High	Fix Released

Bug #437258: BUG: unable to handle kernel NULL pointer dereference at 00000040

		In	Importance	Status
437258	BUG: unable to handle kernel NULL pointer dereference at 00000040	linux (Ubuntu)	Medium	Fix Released
437258	BUG: unable to handle kernel NULL pointer dereference at 00000040	linux (Ubuntu Karmic)	Medium	Fix Released
437258	BUG: unable to handle kernel NULL pointer dereference at 00000040	Linux	Undecided	Won't Fix

Bug #445572: [Regression] Jumbo frames doesn't work with Intel 82574L NIC

Summary				In	Importance	Status
	445572	[Regression] Jumbo frames doesn't work with Intel 82574L NIC		linux (Ubuntu)	Medium	Fix Released
	445572	[Regression] Jumbo frames doesn't work with Intel 82574L NIC		linux (Ubuntu Karmic)	Undecided	Fix Released

Bug #446146: Several Huawei USB dongle don't work with kernel 2.6.31-12.40 (2.6.31.1 update related)

		In	Importance	Status
446146	Several Huawei USB dongle don't work with kernel 2.6.31-12.40 (2.6.31.1 update related)	linux (Ubuntu)	High	Fix Released
446146	Several Huawei USB dongle don't work with kernel 2.6.31-12.40 (2.6.31.1 update related)	Linux	Medium	Fix Released
446146	Several Huawei USB dongle don't work with kernel 2.6.31-12.40 (2.6.31.1 update related)	linux (Ubuntu Karmic)	High	Won't Fix

Bug #453444: /var/log fills up with "all normal" messages @ about 575/sec fill up the available space

		In	Importance	Status
453444	/var/log fills up with "all normal" messages @ about 575/sec fill up the available space	rsyslog (Ubuntu)	High	Fix Released
453444	/var/log fills up with "all normal" messages @ about 575/sec fill up the available space	linux (Ubuntu)	Medium	Won't Fix
453444	/var/log fills up with "all normal" messages @ about 575/sec fill up the available space	linux (Ubuntu Karmic)	Medium	Fix Released
453444	/var/log fills up with "all normal" messages @ about 575/sec fill up the available space	rsyslog (Ubuntu Karmic)	High	Fix Released

Bug #453682: late resume failure on dove

		In	Importance	Status
453682	late resume failure on dove	linux-mvl-dove (Ubuntu)	High	Fix Released
453682	late resume failure on dove	linux-mvl-dove (Ubuntu Karmic)	High	Fix Released
453682	late resume failure on dove	linux-mvl-dove (Ubuntu Lucid)	High	Fix Released

Bug #456264: China Telecom CDMA EVDO USB dangle does not work in Ubuntu

Summary				In	Importance	Status
	456264	China Telecom CDMA EVDO USB dangle does not work in Ubuntu		linux (Ubuntu)	Medium	Fix Released
	456264	China Telecom CDMA EVDO USB dangle does not work in Ubuntu		linux (Ubuntu Karmic)	Medium	Fix Released

Bug #459265: oops in gss_validate

		In	Importance	Status
459265	oops in gss_validate	linux (Ubuntu)	Medium	Fix Released
459265	oops in gss_validate	Linux	Medium	Fix Released
459265	oops in gss_validate	linux (Ubuntu Karmic)	Medium	Fix Released

Bug #461556: [Karmic] Update to 2.6.31.5 Stable Kernel

Summary				In	Importance	Status
	461556	[Karmic] Update to 2.6.31.5 Stable Kernel		linux (Ubuntu)	Medium	Invalid
	461556	[Karmic] Update to 2.6.31.5 Stable Kernel		linux (Ubuntu Karmic)	Medium	Fix Released

Bug #474577: 5d423cc added on 2.6.31 prevents ath9k to load

		In	Importance	Status
474577	5d423cc added on 2.6.31 prevents ath9k to load	linux (Ubuntu)	Medium	Won't Fix
474577	5d423cc added on 2.6.31 prevents ath9k to load	Linux	Medium	Fix Released
474577	5d423cc added on 2.6.31 prevents ath9k to load	linux (Ubuntu Karmic)	Medium	Fix Released

Bug #476154: Stack trace on console, can not do clean shutdown

		In	Importance	Status
476154	Stack trace on console, can not do clean shutdown	linux (Ubuntu)	Medium	Fix Released
476154	Stack trace on console, can not do clean shutdown	Linux	Medium	Fix Released
476154	Stack trace on console, can not do clean shutdown	linux (Ubuntu Karmic)	Medium	Fix Released

Bug #479102: AppArmor does not correctly reenable kernel preemption

Summary				In	Importance	Status
	479102	AppArmor does not correctly reenable kernel preemption		linux (Ubuntu)	Undecided	Fix Released
	479102	AppArmor does not correctly reenable kernel preemption		linux (Ubuntu Karmic)	Medium	Fix Released

Bug #479115: AppArmor does not put cred reference causing a leak

Summary				In	Importance	Status
	479115	AppArmor does not put cred reference causing a leak		linux (Ubuntu)	Undecided	Fix Released
	479115	AppArmor does not put cred reference causing a leak		linux (Ubuntu Karmic)	Medium	Fix Released

Bug #480112: AppArmor oops in aa_may_change_ptraced_domain

Summary				In	Importance	Status
	480112	AppArmor oops in aa_may_change_ptraced_domain		linux (Ubuntu)	Undecided	Fix Released
	480112	AppArmor oops in aa_may_change_ptraced_domain		linux (Ubuntu Karmic)	Medium	Fix Released

Bug #480144: [Karmic] Update to 2.6.31.6 Stable Kernel

Summary				In	Importance	Status
	480144	[Karmic] Update to 2.6.31.6 Stable Kernel		linux (Ubuntu)	Undecided	Invalid
	480144	[Karmic] Update to 2.6.31.6 Stable Kernel		linux (Ubuntu Karmic)	Medium	Fix Released

Bug #491301: [Karmic] mac80211: Fix remotly triggerable problems in the stack

Summary				In	Importance	Status
	491301	[Karmic] mac80211: Fix remotly triggerable problems in the stack		linux (Ubuntu)	High	Fix Released

Bug #494831: Alignment trap/Unhandled fault errors on boot

		In	Importance	Status
494831	Alignment trap/Unhandled fault errors on boot	linux-mvl-dove (Ubuntu)	Critical	Fix Released
494831	Alignment trap/Unhandled fault errors on boot	linux-mvl-dove (Ubuntu Lucid)	Critical	Fix Released
494831	Alignment trap/Unhandled fault errors on boot	linux-mvl-dove (Ubuntu Karmic)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2009-3612

Related bugs and status

Related bugs

References