CVE-2011-1012

The ldm_parse_vmdb function in fs/partitions/ldm.c in the Linux kernel before 2.6.38-rc6-git6 does not validate the VBLK size value in the VMDB structure in an LDM partition table, which allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted partition table.
References
Link Resource
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=294f6cf48666825d23c9372ef37631232746e40d
http://openwall.com/lists/oss-security/2011/02/23/21 Mailing List Patch Third Party Advisory
http://openwall.com/lists/oss-security/2011/02/23/4 Mailing List Patch Third Party Advisory
http://securityreason.com/securityalert/8115 Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git6.log Broken Link
http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt Third Party Advisory
http://www.securityfocus.com/archive/1/516615/100/0/threaded Not Applicable
http://www.securityfocus.com/bid/46512 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1025127 Third Party Advisory VDB Entry
http://www.spinics.net/lists/mm-commits/msg82429.html Mailing List Patch Third Party Advisory
http://www.ubuntu.com/usn/USN-1146-1 Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=294f6cf48666825d23c9372ef37631232746e40d
http://openwall.com/lists/oss-security/2011/02/23/21 Mailing List Patch Third Party Advisory
http://openwall.com/lists/oss-security/2011/02/23/4 Mailing List Patch Third Party Advisory
http://securityreason.com/securityalert/8115 Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git6.log Broken Link
http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt Third Party Advisory
http://www.securityfocus.com/archive/1/516615/100/0/threaded Not Applicable
http://www.securityfocus.com/bid/46512 Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1025127 Third Party Advisory VDB Entry
http://www.spinics.net/lists/mm-commits/msg82429.html Mailing List Patch Third Party Advisory
http://www.ubuntu.com/usn/USN-1146-1 Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.38:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.38:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.38:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.38:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.38:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.38:rc5:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*

History

21 Nov 2024, 01:25

Type Values Removed Values Added
References () http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=294f6cf48666825d23c9372ef37631232746e40d - () http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=294f6cf48666825d23c9372ef37631232746e40d -
References () http://openwall.com/lists/oss-security/2011/02/23/21 - Mailing List, Patch, Third Party Advisory () http://openwall.com/lists/oss-security/2011/02/23/21 - Mailing List, Patch, Third Party Advisory
References () http://openwall.com/lists/oss-security/2011/02/23/4 - Mailing List, Patch, Third Party Advisory () http://openwall.com/lists/oss-security/2011/02/23/4 - Mailing List, Patch, Third Party Advisory
References () http://securityreason.com/securityalert/8115 - Third Party Advisory () http://securityreason.com/securityalert/8115 - Third Party Advisory
References () http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git6.log - Broken Link () http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git6.log - Broken Link
References () http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt - Third Party Advisory () http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt - Third Party Advisory
References () http://www.securityfocus.com/archive/1/516615/100/0/threaded - Not Applicable () http://www.securityfocus.com/archive/1/516615/100/0/threaded - Not Applicable
References () http://www.securityfocus.com/bid/46512 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/46512 - Third Party Advisory, VDB Entry
References () http://www.securitytracker.com/id?1025127 - Third Party Advisory, VDB Entry () http://www.securitytracker.com/id?1025127 - Third Party Advisory, VDB Entry
References () http://www.spinics.net/lists/mm-commits/msg82429.html - Mailing List, Patch, Third Party Advisory () http://www.spinics.net/lists/mm-commits/msg82429.html - Mailing List, Patch, Third Party Advisory
References () http://www.ubuntu.com/usn/USN-1146-1 - Third Party Advisory () http://www.ubuntu.com/usn/USN-1146-1 - Third Party Advisory

Information

Published : 2011-03-01 23:00

Updated : 2024-11-21 01:25


NVD link : CVE-2011-1012

Mitre link : CVE-2011-1012

CVE.ORG link : CVE-2011-1012


JSON object : View

Products Affected

linux

  • linux_kernel

canonical

  • ubuntu_linux
CWE
CWE-369

Divide By Zero