CVE-2011-2689
Publication date 28 July 2011
Last updated 24 July 2024
Ubuntu priority
The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure that the size of a chunk allocation is a multiple of the block size, which allows local users to cause a denial of service (BUG and system crash) by arranging for all resource groups to have too little free space.
From the Ubuntu Security Team
It was discovered that GFS2 did not correctly check block sizes. A local attacker could exploit this to crash the system, leading to a denial of service.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| linux | 14.04 LTS trusty |
Not affected
|
| linux-ec2 | 14.04 LTS trusty | Not in release |
| linux-flo | 14.04 LTS trusty | Not in release |
| linux-fsl-imx51 | 14.04 LTS trusty | Not in release |
| linux-goldfish | 14.04 LTS trusty | Not in release |
| linux-grouper | 14.04 LTS trusty | Not in release |
| linux-lts-backport-maverick | 14.04 LTS trusty | Not in release |
| linux-lts-backport-natty | 14.04 LTS trusty | Not in release |
| linux-lts-backport-oneiric | 14.04 LTS trusty | Not in release |
| linux-maguro | 14.04 LTS trusty | Not in release |
| linux-mako | 14.04 LTS trusty | Not in release |
| linux-manta | 14.04 LTS trusty | Not in release |
| linux-mvl-dove | 14.04 LTS trusty | Not in release |
| linux-ti-omap4 | 14.04 LTS trusty | Not in release |
References
Related Ubuntu Security Notices (USN)
- USN-1211-1
- Linux kernel vulnerabilities
- 21 September 2011
- USN-1256-1
- Linux kernel (Natty backport) vulnerabilities
- 9 November 2011
- USN-1212-1
- Linux kernel (OMAP4) vulnerabilities
- 21 September 2011