CVE-2011-2707

2012-05-24T23:55:00
ID CVE-2011-2707
Type cve
Reporter cve@mitre.org
Modified 2012-05-29T04:00:00

Description

The ptrace_setxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel before 3.1 does not validate user-space pointers, which allows local users to obtain sensitive information from kernel memory locations via a crafted PTRACE_SETXTREGS request.