CVE-2010-4256

Publication date 25 January 2011

Last updated 24 July 2024


Ubuntu priority

The pipe_fcntl function in fs/pipe.c in the Linux kernel before 2.6.37 does not properly determine whether a file is a named pipe, which allows local users to cause a denial of service via an F_SETPIPE_SZ fcntl call.

From the Ubuntu Security Team

It was discovered that named pipes did not correctly handle certain fcntl calls. A local attacker could exploit this to crash the system, leading to a denial of service.

Read the notes from the security team

Status

Package Ubuntu Release Status
linux 11.04 natty
Fixed 2.6.37-8.20
10.10 maverick
Fixed 2.6.35-25.43
10.04 LTS lucid
Not affected
9.10 karmic
Not affected
8.04 LTS hardy
Not affected
6.06 LTS dapper Not in release
linux-ec2 11.04 natty Not in release
10.10 maverick Ignored end of life
10.04 LTS lucid
Not affected
9.10 karmic Ignored end of life
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
linux-fsl-imx51 11.04 natty Not in release
10.10 maverick Not in release
10.04 LTS lucid
Not affected
9.10 karmic Ignored end of life
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
linux-lts-backport-maverick 11.04 natty Not in release
10.10 maverick Not in release
10.04 LTS lucid
Fixed 2.6.35-25.44~lucid1
9.10 karmic Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
linux-lts-backport-natty 11.04 natty Not in release
10.10 maverick Not in release
10.04 LTS lucid
Not affected
8.04 LTS hardy Not in release
linux-mvl-dove 11.04 natty Not in release
10.10 maverick
Not affected
10.04 LTS lucid
Not affected
9.10 karmic Ignored end of life
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
linux-source-2.6.15 11.04 natty Not in release
10.10 maverick Not in release
10.04 LTS lucid Not in release
9.10 karmic Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper
Not affected
linux-ti-omap4 11.04 natty
Not affected
10.10 maverick
Fixed 2.6.35-903.23
10.04 LTS lucid Not in release
9.10 karmic Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release

Notes


sbeattie

http://openwall.com/lists/oss-security/2010/11/30/6 claims it was introduced in 2.6.35-rc2


apw

it was introduced by commit 35f3d14dbbc58447c61e38a162ea10add6b31dc7 "pipe: add support for shrinking and growing pipes" which was introduced in v2.6.35-rc1

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
linux

References

Related Ubuntu Security Notices (USN)

    • USN-1202-1
    • Linux kernel (OMAP4) vulnerabilities
    • 13 September 2011
    • USN-1083-1
    • Linux kernel vulnerabilities
    • 3 March 2011
    • USN-1054-1
    • Linux kernel vulnerabilities
    • 1 February 2011

Other references