CVE-2011-4914

The ROSE protocol implementation in the Linux kernel before 2.6.39 does not verify that certain data-length values are consistent with the amount of data sent, which might allow remote attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) via crafted data to a ROSE socket.

From the Ubuntu Security Team

Ben Hutchings discovered several flaws in the Linux Rose (X.25 PLP) layer. A local user or a remote user on an X.25 network could exploit these flaws to execute arbitrary code as root.

• How can I get the fixes?
• What do statuses mean?
• Patch details

References

• MITRE
• NVD
• Launchpad
• Debian

Related Ubuntu Security Notices (USN)

• USN-1204-1
• Linux kernel (i.MX51) vulnerabilities
• 13 September 2011
• USN-1208-1
• Linux kernel (Marvel DOVE) vulnerabilities
• 14 September 2011
• USN-1205-1
• Linux kernel (Maverick backport) vulnerabilities
• 13 September 2011
• USN-1189-1
• Linux kernel vulnerabilities
• 19 August 2011
• USN-1202-1
• Linux kernel (OMAP4) vulnerabilities
• 13 September 2011
• USN-1211-1
• Linux kernel vulnerabilities
• 21 September 2011
• USN-1203-1
• Linux kernel (Marvel DOVE) vulnerabilities
• 13 September 2011
• USN-1218-1
• Linux kernel vulnerabilities
• 29 September 2011
• USN-1256-1
• Linux kernel (Natty backport) vulnerabilities
• 9 November 2011
• USN-1201-1
• Linux kernel vulnerabilities
• 13 September 2011
• USN-1212-1
• Linux kernel (OMAP4) vulnerabilities
• 21 September 2011
• USN-1216-1
• Linux kernel (EC2) vulnerabilities
• 26 September 2011

Other references

• http://marc.info/?l=linux-netdev&m=130063972406389&w=2
• https://www.cve.org/CVERecord?id=CVE-2011-4914