CVE-2011-3359

Published: 15 December 2011

The dma_rx function in drivers/net/wireless/b43/dma.c in the Linux kernel before 2.6.39 does not properly allocate receive buffers, which allows remote attackers to cause a denial of service (system crash) via a crafted frame.

From the Ubuntu Security Team

A flaw was found in the b43 driver in the Linux kernel. An attacker could use this flaw to cause a denial of service if the system has an active wireless interface using the b43 driver.

Notes

Author	Note
apw	ignoring on lucid/fsl-imx51 as this is now off support and out buildds do not have this h/w

Priority

Cvss 3 Severity Score

7.5

Score breakdown

Status

Package	Release	Status
linux Launchpad, Ubuntu, Debian	hardy	Released (2.6.24-30.98)
	lucid	Released (2.6.32-32.62)
	maverick	Released (2.6.35-30.52)
	natty	Released (2.6.38-9.43)
	oneiric	Not vulnerable (2.6.39-0.3)
	precise	Not vulnerable (3.1.0-1.1)
	quantal	Not vulnerable (3.1.0-1.0)
	upstream	Released (2.6.39~rc3)
	Patches: vendor: https://rhn.redhat.com/errata/RHSA-2011-1465.html Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 Fixed by c85ce65ecac078ab1a1835c87c4a6319cf74660a
linux-armadaxp Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Does not exist
	natty	Does not exist
	oneiric	Does not exist
	precise	Not vulnerable (3.2.0-1600.1)
	quantal	Not vulnerable (3.2.0-1602.5)
	upstream	Released (2.6.39~rc3)
linux-ec2 Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Released (2.6.32-316.30)
	maverick	Ignored (end of life)
	natty	Does not exist
	oneiric	Does not exist
	precise	Does not exist
	quantal	Does not exist
	upstream	Released (2.6.39~rc3)
linux-fsl-imx51 Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Ignored (end of life, was not-affected)
	maverick	Does not exist
	natty	Does not exist
	oneiric	Does not exist
	precise	Does not exist
	quantal	Does not exist
	upstream	Released (2.6.39~rc3)
linux-lts-backport-maverick Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Released (2.6.35-30.54~lucid1)
	maverick	Does not exist
	natty	Does not exist
	oneiric	Does not exist
	precise	Does not exist
	quantal	Does not exist
	upstream	Released (2.6.39~rc3)
linux-lts-backport-natty Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Not vulnerable (2.6.38-9.43~lucid1)
	maverick	Does not exist
	natty	Does not exist
	oneiric	Does not exist
	precise	Does not exist
	quantal	Does not exist
	upstream	Released (2.6.39~rc3)
linux-lts-backport-oneiric Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Not vulnerable (3.0.0-5.6~lucid1)
	maverick	Does not exist
	natty	Does not exist
	oneiric	Does not exist
	precise	Does not exist
	quantal	Does not exist
	upstream	Released (2.6.39~rc3)
linux-mvl-dove Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Released (2.6.32-217.34)
	maverick	Released (2.6.32-417.34)
	natty	Does not exist
	oneiric	Does not exist
	precise	Does not exist
	quantal	Does not exist
	upstream	Released (2.6.39~rc3)
linux-ti-omap4 Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Does not exist
	maverick	Released (2.6.35-903.29)
	natty	Released (2.6.38-1209.13)
	oneiric	Not vulnerable (2.6.38-1309.13)
	precise	Not vulnerable (3.0.0-1401.2)
	quantal	Not vulnerable (3.0.0-1401.2)
	upstream	Released (2.6.39~rc3)

Severity score breakdown

Parameter	Value
Base score	7.5
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	None
Scope	Unchanged
Confidentiality	None
Integrity impact	None
Availability impact	High
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›