CVE 2011-4127
The Linux kernel before 3.2.2 does not properly restrict SG_IO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to (1) a partition block device or (2) an LVM volume.
Related bugs and status
CVE-2011-4127 (Candidate) is related to these bugs:
Bug #911397: CVE-2011-4127
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
911397 | CVE-2011-4127 | linux (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-fsl-imx51 (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-mvl-dove (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-ti-omap4 (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-ec2 (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-ec2 (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-fsl-imx51 (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-mvl-dove (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-ti-omap4 (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu Lucid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu Lucid) | Medium | Won't Fix | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu Lucid) | Medium | Fix Released | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-armadaxp (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-armadaxp (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu Quantal) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu Quantal) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu Quantal) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu Raring) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu Raring) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu Raring) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-quantal (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-quantal (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu Saucy) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu Saucy) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu Saucy) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-raring (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-raring (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-armadaxp (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-ec2 (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-fsl-imx51 (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-quantal (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-raring (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-mvl-dove (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-ti-omap4 (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-saucy (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-saucy (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-saucy (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu Utopic) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu Utopic) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu Utopic) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-armadaxp (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-ec2 (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-fsl-imx51 (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-maverick (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-natty (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-backport-oneiric (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-quantal (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-raring (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-saucy (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-mvl-dove (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-ti-omap4 (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-trusty (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-trusty (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-trusty (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-trusty (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-utopic (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-utopic (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-utopic (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-lts-utopic (Ubuntu Vivid) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-goldfish (Ubuntu) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-goldfish (Ubuntu Precise) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-goldfish (Ubuntu Trusty) | Medium | Invalid | ||
911397 | CVE-2011-4127 | linux-goldfish (Ubuntu Vivid) | Medium | Invalid |
Bug #1632405: virt-customize enters infinite loop: dhclient-script: cannot open /etc/fstab
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1632405 | virt-customize enters infinite loop: dhclient-script: cannot open /etc/fstab | libguestfs (Ubuntu) | Undecided | Fix Released | ||
1632405 | virt-customize enters infinite loop: dhclient-script: cannot open /etc/fstab | libguestfs (Ubuntu Xenial) | Medium | Fix Released |
Bug #1814939: [FTBFS] libguestfs fails to build on Xenial - dh_install --fail-missing
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1814939 | [FTBFS] libguestfs fails to build on Xenial - dh_install --fail-missing | libguestfs (Ubuntu) | Medium | Fix Released | ||
1814939 | [FTBFS] libguestfs fails to build on Xenial - dh_install --fail-missing | libguestfs (Ubuntu Xenial) | Medium | Fix Released |
Bug #1816388: FTBFS on s390x on xenial
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1816388 | FTBFS on s390x on xenial | libguestfs (Ubuntu) | Undecided | Fix Released | ||
1816388 | FTBFS on s390x on xenial | libguestfs (Ubuntu Xenial) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.