CVE-2011-1016
Publication date 28 February 2011
Last updated 24 July 2024
Ubuntu priority
The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do not properly validate data related to the AA resolve registers, which allows local users to write to arbitrary memory locations associated with (1) Video RAM (aka VRAM) or (2) the Graphics Translation Table (GTT) via crafted values.
From the Ubuntu Security Team
Marek Olšák discovered that the Radeon GPU drivers did not correctly validate certain registers. On systems with specific hardware, a local attacker could exploit this to write to arbitrary video memory.
Status
Package | Ubuntu Release | Status |
---|---|---|
linux | 11.04 natty |
Fixed 2.6.38-6.33
|
10.10 maverick |
Fixed 2.6.35-29.51
|
|
10.04 LTS lucid |
Fixed 2.6.32-32.62
|
|
9.10 karmic |
Not affected
|
|
8.04 LTS hardy |
Not affected
|
|
6.06 LTS dapper | Not in release | |
linux-ec2 | 11.04 natty | Not in release |
10.10 maverick | Ignored end of life | |
10.04 LTS lucid |
Fixed 2.6.32-316.30
|
|
9.10 karmic | Ignored end of life | |
8.04 LTS hardy | Not in release | |
6.06 LTS dapper | Not in release | |
linux-fsl-imx51 | 11.04 natty | Not in release |
10.10 maverick | Not in release | |
10.04 LTS lucid |
Not affected
|
|
9.10 karmic | Ignored end of life | |
8.04 LTS hardy | Not in release | |
6.06 LTS dapper | Not in release | |
linux-lts-backport-maverick | 11.04 natty | Not in release |
10.10 maverick | Not in release | |
10.04 LTS lucid |
Fixed 2.6.35-30.54~lucid1
|
|
9.10 karmic | Not in release | |
8.04 LTS hardy | Not in release | |
6.06 LTS dapper | Not in release | |
linux-lts-backport-natty | 11.04 natty | Not in release |
10.10 maverick | Not in release | |
10.04 LTS lucid |
Not affected
|
|
8.04 LTS hardy | Not in release | |
linux-mvl-dove | 11.04 natty | Not in release |
10.10 maverick |
Fixed 2.6.32-417.34
|
|
10.04 LTS lucid |
Fixed 2.6.32-217.34
|
|
9.10 karmic | Ignored end of life | |
8.04 LTS hardy | Not in release | |
6.06 LTS dapper | Not in release | |
linux-source-2.6.15 | 11.04 natty | Not in release |
10.10 maverick | Not in release | |
10.04 LTS lucid | Not in release | |
9.10 karmic | Not in release | |
8.04 LTS hardy | Not in release | |
6.06 LTS dapper |
Not affected
|
|
linux-ti-omap4 | 11.04 natty |
Fixed 2.6.38-1204.5
|
10.10 maverick |
Fixed 2.6.35-903.23
|
|
10.04 LTS lucid | Not in release | |
9.10 karmic | Not in release | |
8.04 LTS hardy | Not in release | |
6.06 LTS dapper | Not in release |
Patch details
Package | Patch details |
---|---|
linux |
References
Related Ubuntu Security Notices (USN)
- USN-1202-1
- Linux kernel (OMAP4) vulnerabilities
- 13 September 2011
- USN-1160-1
- Linux kernel vulnerabilities
- 28 June 2011
- USN-1141-1
- Linux kernel vulnerabilities
- 1 June 2011
- USN-1162-1
- Linux kernel vulnerabilities (Marvell Dove)
- 29 June 2011
- USN-1187-1
- Linux kernel (Maverick backport) vulnerabilities
- 9 August 2011
- USN-1159-1
- Linux kernel vulnerabilities (Marvell Dove)
- 13 July 2011