Ubuntu
linux package

CVE-2014-0077

Bug #1312980 reported by John Johansen on 2014-04-26

This bug report is a duplicate of: Bug #1312984: CVE-2014-0077. Edit Remove

256

This bug affects 1 person

	Status	Importance	Assigned to
linux (Ubuntu)	New	Medium	Unassigned
Lucid	New	Medium	Unassigned
Precise	New	Medium	Unassigned
Quantal	Won't Fix	Medium	Unassigned
Saucy	Won't Fix	Medium	Unassigned
Trusty	New	Medium	Unassigned
Utopic	New	Medium	Unassigned
linux-armadaxp (Ubuntu)	Invalid	Medium	Unassigned
Lucid	Invalid	Medium	Unassigned
Precise	New	Medium	Unassigned
Quantal	Won't Fix	Medium	Unassigned
Saucy	Invalid	Medium	Unassigned
Trusty	Invalid	Medium	Unassigned
Utopic	Invalid	Medium	Unassigned
linux-ec2 (Ubuntu)	Invalid	Medium	Unassigned
Lucid	New	Medium	Unassigned
Precise	Invalid	Medium	Unassigned
Quantal	Invalid	Medium	Unassigned
Saucy	Invalid	Medium	Unassigned
Trusty	Invalid	Medium	Unassigned
Utopic	Invalid	Medium	Unassigned
linux-fsl-imx51 (Ubuntu)	Invalid	Medium	Unassigned
Lucid	Invalid	Medium	Unassigned
Precise	Invalid	Medium	Unassigned
Quantal	Invalid	Medium	Unassigned
Saucy	Invalid	Medium	Unassigned
Trusty	Invalid	Medium	Unassigned
Utopic	Invalid	Medium	Unassigned
linux-lts-backport-maverick (Ubuntu)	New	Undecided	Unassigned
Lucid	Won't Fix	Undecided	Unassigned
Precise	Won't Fix	Undecided	Unassigned
Quantal	Won't Fix	Undecided	Unassigned
Saucy	Won't Fix	Undecided	Unassigned
Trusty	Won't Fix	Undecided	Unassigned
Utopic	Won't Fix	Undecided	Unassigned
linux-lts-backport-natty (Ubuntu)	New	Undecided	Unassigned
Lucid	Won't Fix	Undecided	Unassigned
Precise	Won't Fix	Undecided	Unassigned
Quantal	Won't Fix	Undecided	Unassigned
Saucy	Won't Fix	Undecided	Unassigned
Trusty	Won't Fix	Undecided	Unassigned
Utopic	Won't Fix	Undecided	Unassigned
linux-lts-quantal (Ubuntu)	Invalid	Medium	Unassigned
Lucid	Invalid	Medium	Unassigned
Precise	New	Medium	Unassigned
Quantal	Invalid	Medium	Unassigned
Saucy	Invalid	Medium	Unassigned
Trusty	Invalid	Medium	Unassigned
Utopic	Invalid	Medium	Unassigned
linux-lts-raring (Ubuntu)	Invalid	Medium	Unassigned
Lucid	Invalid	Medium	Unassigned
Precise	New	Medium	Unassigned
Quantal	Invalid	Medium	Unassigned
Saucy	Invalid	Medium	Unassigned
Trusty	Invalid	Medium	Unassigned
Utopic	Invalid	Medium	Unassigned
linux-lts-saucy (Ubuntu)	Invalid	Medium	Unassigned
Lucid	Invalid	Medium	Unassigned
Precise	New	Medium	Unassigned
Quantal	Invalid	Medium	Unassigned
Saucy	Invalid	Medium	Unassigned
Trusty	Invalid	Medium	Unassigned
Utopic	Invalid	Medium	Unassigned
linux-mvl-dove (Ubuntu)	Invalid	Medium	Unassigned
Lucid	Invalid	Medium	Unassigned
Precise	Invalid	Medium	Unassigned
Quantal	Invalid	Medium	Unassigned
Saucy	Invalid	Medium	Unassigned
Trusty	Invalid	Medium	Unassigned
Utopic	Invalid	Medium	Unassigned
linux-ti-omap4 (Ubuntu)	Invalid	Medium	Unassigned
Lucid	Invalid	Medium	Unassigned
Precise	New	Medium	Unassigned
Quantal	Won't Fix	Medium	Unassigned
Saucy	Won't Fix	Medium	Unassigned
Trusty	Invalid	Medium	Unassigned
Utopic	Invalid	Medium	Unassigned

Bug Description

drivers/vhost/net.c in the Linux kernel before 3.13.10, when mergeable buffers are disabled, does not properly validate packet lengths, which allows guest OS users to cause a denial of service (memory corruption and host OS crash) or possibly gain privileges on the host OS via crafted packets, related to the handle_rx and get_rx_bufs functions.

See original description

Tags:

Revision history for this message

John Johansen (jjohansen) wrote on 2014-04-26:

CVE-2014-0077

tags:	added: kernel-cve-tracking-bug
information type:	Public → Public Security
Changed in linux-armadaxp (Ubuntu Saucy):
status:	New → Invalid
Changed in linux-armadaxp (Ubuntu Trusty):
status:	New → Invalid
Changed in linux-armadaxp (Ubuntu Lucid):
status:	New → Invalid
Changed in linux-armadaxp (Ubuntu Utopic):
status:	New → Invalid
Changed in linux-ec2 (Ubuntu Precise):
status:	New → Invalid
Changed in linux-ec2 (Ubuntu Saucy):
status:	New → Invalid
Changed in linux-ec2 (Ubuntu Trusty):
status:	New → Invalid
Changed in linux-ec2 (Ubuntu Utopic):
status:	New → Invalid
Changed in linux-ec2 (Ubuntu Quantal):
status:	New → Invalid
Changed in linux-lts-quantal (Ubuntu Saucy):
status:	New → Invalid
Changed in linux-lts-quantal (Ubuntu Trusty):
status:	New → Invalid
Changed in linux-lts-quantal (Ubuntu Lucid):
status:	New → Invalid
Changed in linux-lts-quantal (Ubuntu Utopic):
status:	New → Invalid
Changed in linux-lts-quantal (Ubuntu Quantal):
status:	New → Invalid
Changed in linux-mvl-dove (Ubuntu Precise):
status:	New → Invalid
Changed in linux-mvl-dove (Ubuntu Saucy):
status:	New → Invalid
Changed in linux-mvl-dove (Ubuntu Trusty):
status:	New → Invalid
Changed in linux-mvl-dove (Ubuntu Utopic):
status:	New → Invalid
Changed in linux-mvl-dove (Ubuntu Quantal):
status:	New → Invalid
Changed in linux-lts-saucy (Ubuntu Saucy):
status:	New → Invalid
Changed in linux-lts-saucy (Ubuntu Trusty):
status:	New → Invalid
Changed in linux-lts-saucy (Ubuntu Lucid):
status:	New → Invalid
Changed in linux-lts-saucy (Ubuntu Utopic):
status:	New → Invalid
Changed in linux-lts-saucy (Ubuntu Quantal):
status:	New → Invalid
Changed in linux-ti-omap4 (Ubuntu Trusty):
status:	New → Invalid
Changed in linux-ti-omap4 (Ubuntu Lucid):
status:	New → Invalid
Changed in linux-ti-omap4 (Ubuntu Utopic):
status:	New → Invalid
Changed in linux-fsl-imx51 (Ubuntu Precise):
status:	New → Invalid
Changed in linux-fsl-imx51 (Ubuntu Saucy):
status:	New → Invalid
Changed in linux-fsl-imx51 (Ubuntu Trusty):
status:	New → Invalid
Changed in linux-fsl-imx51 (Ubuntu Utopic):
status:	New → Invalid
Changed in linux-fsl-imx51 (Ubuntu Quantal):
status:	New → Invalid
Changed in linux-lts-raring (Ubuntu Saucy):
status:	New → Invalid
Changed in linux-lts-raring (Ubuntu Trusty):
status:	New → Invalid
Changed in linux-lts-raring (Ubuntu Lucid):
status:	New → Invalid
Changed in linux-lts-raring (Ubuntu Utopic):
status:	New → Invalid
Changed in linux-lts-raring (Ubuntu Quantal):
status:	New → Invalid
description:	updated
Changed in linux-armadaxp (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux-armadaxp (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux-armadaxp (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux-armadaxp (Ubuntu Lucid):
importance:	Undecided → Medium
Changed in linux-armadaxp (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux-armadaxp (Ubuntu Quantal):
importance:	Undecided → Medium
Changed in linux-ec2 (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux-ec2 (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux-ec2 (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux-ec2 (Ubuntu Lucid):
importance:	Undecided → Medium
Changed in linux-ec2 (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux-ec2 (Ubuntu Quantal):
importance:	Undecided → Medium
Changed in linux-lts-quantal (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux-lts-quantal (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux-lts-quantal (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux-lts-quantal (Ubuntu Lucid):
importance:	Undecided → Medium
Changed in linux-lts-quantal (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux-lts-quantal (Ubuntu Quantal):
importance:	Undecided → Medium
Changed in linux-mvl-dove (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux-mvl-dove (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux-mvl-dove (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux-mvl-dove (Ubuntu Lucid):
status:	New → Invalid
importance:	Undecided → Medium
Changed in linux-mvl-dove (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux-mvl-dove (Ubuntu Quantal):
importance:	Undecided → Medium
Changed in linux-lts-saucy (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux-lts-saucy (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux-lts-saucy (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux-lts-saucy (Ubuntu Lucid):
importance:	Undecided → Medium
Changed in linux-lts-saucy (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux-lts-saucy (Ubuntu Quantal):
importance:	Undecided → Medium
Changed in linux (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux (Ubuntu Lucid):
importance:	Undecided → Medium
Changed in linux (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux (Ubuntu Quantal):
importance:	Undecided → Medium
Changed in linux-ti-omap4 (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux-ti-omap4 (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux-ti-omap4 (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux-ti-omap4 (Ubuntu Lucid):
importance:	Undecided → Medium
Changed in linux-ti-omap4 (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux-ti-omap4 (Ubuntu Quantal):
importance:	Undecided → Medium
Changed in linux-fsl-imx51 (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux-fsl-imx51 (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux-fsl-imx51 (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux-fsl-imx51 (Ubuntu Lucid):
status:	New → Invalid
importance:	Undecided → Medium

John Johansen (jjohansen) on 2014-04-26

Changed in linux-fsl-imx51 (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux-fsl-imx51 (Ubuntu Quantal):
importance:	Undecided → Medium
Changed in linux-lts-raring (Ubuntu Precise):
importance:	Undecided → Medium
Changed in linux-lts-raring (Ubuntu Saucy):
importance:	Undecided → Medium
Changed in linux-lts-raring (Ubuntu Trusty):
importance:	Undecided → Medium
Changed in linux-lts-raring (Ubuntu Lucid):
importance:	Undecided → Medium
Changed in linux-lts-raring (Ubuntu Utopic):
importance:	Undecided → Medium
Changed in linux-lts-raring (Ubuntu Quantal):
importance:	Undecided → Medium

Jamie Strandboge (jdstrand) on 2014-06-26

Changed in linux-lts-backport-maverick (Ubuntu Lucid):
status:	New → Won't Fix
Changed in linux-lts-backport-natty (Ubuntu Lucid):
status:	New → Won't Fix
Changed in linux-lts-backport-maverick (Ubuntu Precise):
status:	New → Won't Fix
Changed in linux-lts-backport-natty (Ubuntu Precise):
status:	New → Won't Fix
Changed in linux (Ubuntu Quantal):
status:	New → Won't Fix
Changed in linux-armadaxp (Ubuntu Quantal):
status:	New → Won't Fix
Changed in linux-lts-backport-maverick (Ubuntu Quantal):
status:	New → Won't Fix
Changed in linux-lts-backport-natty (Ubuntu Quantal):
status:	New → Won't Fix
Changed in linux-ti-omap4 (Ubuntu Quantal):
status:	New → Won't Fix
Changed in linux-lts-backport-maverick (Ubuntu Saucy):
status:	New → Won't Fix
Changed in linux-lts-backport-natty (Ubuntu Saucy):
status:	New → Won't Fix
Changed in linux-lts-backport-maverick (Ubuntu Trusty):
status:	New → Won't Fix
Changed in linux-lts-backport-natty (Ubuntu Trusty):
status:	New → Won't Fix
Changed in linux-lts-backport-maverick (Ubuntu Utopic):
status:	New → Won't Fix
Changed in linux-lts-backport-natty (Ubuntu Utopic):
status:	New → Won't Fix

Revision history for this message

Joseph Salisbury (jsalisbury) wrote on 2014-09-15: Closing unsupported series nomination.

This bug was nominated against a series that is no longer supported, ie saucy. The bug task representing the saucy nomination is being closed as Won't Fix.

This change has been made by an automated script, maintained by the Ubuntu Kernel Team.

Changed in linux (Ubuntu Saucy):
status:	New → Won't Fix

Revision history for this message

Rolf Leggewie (r0lf) wrote on 2014-12-05:

saucy has seen the end of its life and is no longer receiving any updates. Marking the saucy task for this ticket as "Won't Fix".

Changed in linux-ti-omap4 (Ubuntu Saucy):
status:	New → Won't Fix

Report a bug

This report contains Public Security information

Everyone can see this security related information.

Duplicate of bug #1312984 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntulinux package

CVE-2014-0077

Bug Description

Other bug subscribers

Remote bug watches

Ubuntu
linux package