CVE-2011-1021
Publication date 21 June 2012
Last updated 24 July 2024
Ubuntu priority
drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/debug/acpi/custom_method file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4347.
Status
Package | Ubuntu Release | Status |
---|---|---|
linux | 14.04 LTS trusty |
Not affected
|
linux-ec2 | 14.04 LTS trusty | Not in release |
linux-flo | 14.04 LTS trusty | Not in release |
linux-fsl-imx51 | 14.04 LTS trusty | Not in release |
linux-goldfish | 14.04 LTS trusty | Not in release |
linux-grouper | 14.04 LTS trusty | Not in release |
linux-lts-backport-maverick | 14.04 LTS trusty | Not in release |
linux-lts-backport-natty | 14.04 LTS trusty | Not in release |
linux-maguro | 14.04 LTS trusty | Not in release |
linux-mako | 14.04 LTS trusty | Not in release |
linux-manta | 14.04 LTS trusty | Not in release |
linux-mvl-dove | 14.04 LTS trusty | Not in release |
linux-ti-omap4 | 14.04 LTS trusty | Not in release |
Notes
apw
note that CONFIG_ACPI_DEBUG must be off before the fixing commit and CONFIG_ACPI_CUSTOM_METHOD must be off after it. Confirmed off in all cases, and CONFIG_ACPI_CUSTOM_METHOD is enforced off.