Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-4127HistoryJul 03, 2012 - 4:40 p.m.
CVE-2011-4127
2012-07-0316:40:00
Debian Security Bug Tracker
security-tracker.debian.org
24
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
The Linux kernel before 3.2.2 does not properly restrict SG_IO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to (1) a partition block device or (2) an LVM volume.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libguestfs | < 1:1.14.8-1 | libguestfs_1:1.14.8-1_all.deb |
| Debian | 11 | all | libguestfs | < 1:1.14.8-1 | libguestfs_1:1.14.8-1_all.deb |
| Debian | 10 | all | libguestfs | < 1:1.14.8-1 | libguestfs_1:1.14.8-1_all.deb |
| Debian | 999 | all | libguestfs | < 1:1.14.8-1 | libguestfs_1:1.14.8-1_all.deb |
| Debian | 13 | all | libguestfs | < 1:1.14.8-1 | libguestfs_1:1.14.8-1_all.deb |
Related
openvas
openvas
CentOS Update for kernel CESA-2011:1849 centos6
2012-07-30 00:00:00
Amazon Linux: Security Advisory (ALAS-2012-34)
2015-09-08 00:00:00
CentOS Update for kernel CESA-2011:1849 centos6
2012-07-30 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: libguestfs-1.10.12-1.fc15
2012-01-05 21:00:57
[SECURITY] Fedora 16 Update: libguestfs-1.14.8-1.fc16
2012-01-05 20:56:45
[SECURITY] Fedora 16 Update: kernel-3.2.1-3.fc16
2012-01-24 07:57:29
nessus
nessus
Fedora 16 : libguestfs-1.14.8-1.fc16 (2011-17372)
2012-01-06 00:00:00
Amazon Linux AMI : kernel (ALAS-2012-34)
2013-09-04 00:00:00
Scientific Linux Security Update : kernel on SL6.x i386/x86_64
2012-08-01 00:00:00
cve
cve
CVE-2011-4127
2012-07-03 16:40:00
veracode
veracode
Authorization Bypass
2020-04-10 01:03:58
oraclelinux
oraclelinux
kernel security and bug fix update
2011-12-22 00:00:00
qemu-kvm security, bug fix, and enhancement update
2012-01-23 00:00:00
Unbreakable Enterprise kernel security update
2011-12-23 00:00:00
ubuntucve
ubuntucve
CVE-2011-4127
2011-12-23 00:00:00
amazon
amazon
Medium: kernel
2012-01-06 10:19:00
seebug
seebug
Linux kernel 2.6.x 'SG_IO IOCTL' SCSI请求本地特权提升漏洞
2011-12-24 00:00:00
prion
prion
Design/Logic Flaw
2012-07-03 16:40:00
redhat
redhat
(RHSA-2011:1849) Important: kernel security and bug fix update
2011-12-22 00:00:00
(RHSA-2011:1850) Important: rhev-hypervisor6 security and bug fix update
2011-12-22 00:00:00
centos
centos
kernel, perf, python security update
2011-12-23 09:04:53
qemu security update
2012-01-24 03:15:05
kernel security update
2012-02-09 21:30:36
ubuntu
ubuntu
Linux kernel vulnerabilities
2012-03-27 00:00:00
Linux kernel (EC2) vulnerabilities
2012-03-06 00:00:00
Linux kernel vulnerabilities
2012-03-06 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2012-01-21 00:00:00
[SECURITY] [DSA 2389-1] linux-2.6 security update
2012-01-21 00:00:00
debian
debian
[SECURITY] [DSA 2389-1] linux-2.6 security update
2012-01-16 04:04:27
suse
suse
Security update for Linux kernel (important)
2012-02-06 23:08:27
kernel update for SLE11 SP2 (important)
2012-04-26 20:08:43
Security update for the Linux Kernel (important)
2012-02-06 15:08:23
osv
osv
linux-2.6 - several
2012-01-15 00:00:00
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
Related for DEBIANCVE:CVE-2011-4127