CVE-2011-1017

Heap-based buffer overflow in the ldm_frag_add function in fs/partitions/ldm.c in the Linux kernel 2.6.37.2 and earlier might allow local users to gain privileges or obtain sensitive information via a crafted LDM partition table.
References
Link Resource
http://openwall.com/lists/oss-security/2011/02/23/16 Mailing List Third Party Advisory
http://openwall.com/lists/oss-security/2011/02/24/14 Exploit Mailing List Third Party Advisory
http://openwall.com/lists/oss-security/2011/02/24/4 Exploit Mailing List Third Party Advisory
http://secunia.com/advisories/43716 Third Party Advisory
http://secunia.com/advisories/43738 Third Party Advisory
http://securityreason.com/securityalert/8115 Third Party Advisory
http://securitytracker.com/id?1025128 Third Party Advisory VDB Entry
http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt Patch Third Party Advisory
http://www.securityfocus.com/archive/1/516615/100/0/threaded Not Applicable
http://www.securityfocus.com/bid/46512 Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-1146-1 Third Party Advisory
http://openwall.com/lists/oss-security/2011/02/23/16 Mailing List Third Party Advisory
http://openwall.com/lists/oss-security/2011/02/24/14 Exploit Mailing List Third Party Advisory
http://openwall.com/lists/oss-security/2011/02/24/4 Exploit Mailing List Third Party Advisory
http://secunia.com/advisories/43716 Third Party Advisory
http://secunia.com/advisories/43738 Third Party Advisory
http://securityreason.com/securityalert/8115 Third Party Advisory
http://securitytracker.com/id?1025128 Third Party Advisory VDB Entry
http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt Patch Third Party Advisory
http://www.securityfocus.com/archive/1/516615/100/0/threaded Not Applicable
http://www.securityfocus.com/bid/46512 Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-1146-1 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*

History

21 Nov 2024, 01:25

Type Values Removed Values Added
References () http://openwall.com/lists/oss-security/2011/02/23/16 - Mailing List, Third Party Advisory () http://openwall.com/lists/oss-security/2011/02/23/16 - Mailing List, Third Party Advisory
References () http://openwall.com/lists/oss-security/2011/02/24/14 - Exploit, Mailing List, Third Party Advisory () http://openwall.com/lists/oss-security/2011/02/24/14 - Exploit, Mailing List, Third Party Advisory
References () http://openwall.com/lists/oss-security/2011/02/24/4 - Exploit, Mailing List, Third Party Advisory () http://openwall.com/lists/oss-security/2011/02/24/4 - Exploit, Mailing List, Third Party Advisory
References () http://secunia.com/advisories/43716 - Third Party Advisory () http://secunia.com/advisories/43716 - Third Party Advisory
References () http://secunia.com/advisories/43738 - Third Party Advisory () http://secunia.com/advisories/43738 - Third Party Advisory
References () http://securityreason.com/securityalert/8115 - Third Party Advisory () http://securityreason.com/securityalert/8115 - Third Party Advisory
References () http://securitytracker.com/id?1025128 - Third Party Advisory, VDB Entry () http://securitytracker.com/id?1025128 - Third Party Advisory, VDB Entry
References () http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt - Patch, Third Party Advisory () http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt - Patch, Third Party Advisory
References () http://www.securityfocus.com/archive/1/516615/100/0/threaded - Not Applicable () http://www.securityfocus.com/archive/1/516615/100/0/threaded - Not Applicable
References () http://www.securityfocus.com/bid/46512 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/46512 - Third Party Advisory, VDB Entry
References () http://www.ubuntu.com/usn/USN-1146-1 - Third Party Advisory () http://www.ubuntu.com/usn/USN-1146-1 - Third Party Advisory

Information

Published : 2011-03-01 23:00

Updated : 2024-11-21 01:25


NVD link : CVE-2011-1017

Mitre link : CVE-2011-1017

CVE.ORG link : CVE-2011-1017


JSON object : View

Products Affected

canonical

  • ubuntu_linux

linux

  • linux_kernel
CWE
CWE-787

Out-of-bounds Write