← Back to team overview

kernel-packages team mailing list archive

[Bug 1271519] [NEW] Restore old recvmsg behavior after CVE-2013-7266 fix is applied

 

Public bug reported:

After commit f3d3342602f8bcbf37d7c46641cb9bca7618eb1c ("net: rework
recvmsg handler msg_name and msg_namelen logic"), which fixes
CVE-2013-7266 to CVE-2013-7271, we end up with a bug in the af_rose.

Upstream commit f81152e35001e91997ec74a7b4e040e6ab0acccf restores the
old behaviour in net/rose/af_rose.c and should get applied to all the
series that got these CVEs fixed.

** Affects: linux (Ubuntu)
     Importance: Undecided
     Assignee: Luis Henriques (henrix)
         Status: Triaged

** Affects: linux (Ubuntu Lucid)
     Importance: Undecided
         Status: Fix Committed

** Affects: linux (Ubuntu Precise)
     Importance: Undecided
         Status: New

** Affects: linux (Ubuntu Quantal)
     Importance: Undecided
         Status: New

** Affects: linux (Ubuntu Raring)
     Importance: Undecided
         Status: New

** Affects: linux (Ubuntu Saucy)
     Importance: Undecided
         Status: New

** Also affects: linux (Ubuntu Lucid)
   Importance: Undecided
       Status: New

** Also affects: linux (Ubuntu Precise)
   Importance: Undecided
       Status: New

** Also affects: linux (Ubuntu Quantal)
   Importance: Undecided
       Status: New

** Also affects: linux (Ubuntu Raring)
   Importance: Undecided
       Status: New

** Also affects: linux (Ubuntu Saucy)
   Importance: Undecided
       Status: New

** Changed in: linux (Ubuntu Lucid)
       Status: New => Fix Committed

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1271519

Title:
  Restore old recvmsg behavior after CVE-2013-7266 fix is applied

Status in “linux” package in Ubuntu:
  Triaged
Status in “linux” source package in Lucid:
  Fix Committed
Status in “linux” source package in Precise:
  New
Status in “linux” source package in Quantal:
  New
Status in “linux” source package in Raring:
  New
Status in “linux” source package in Saucy:
  New

Bug description:
  After commit f3d3342602f8bcbf37d7c46641cb9bca7618eb1c ("net: rework
  recvmsg handler msg_name and msg_namelen logic"), which fixes
  CVE-2013-7266 to CVE-2013-7271, we end up with a bug in the af_rose.

  Upstream commit f81152e35001e91997ec74a7b4e040e6ab0acccf restores the
  old behaviour in net/rose/af_rose.c and should get applied to all the
  series that got these CVEs fixed.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1271519/+subscriptions


Follow ups

References