Lucene search

K

[email protected]NVD:CVE-2011-1745

HistoryMay 09, 2011 - 7:55 p.m.

CVE-2011-1745

2011-05-0919:55:03

CWE-190

[email protected]

web.nvd.nist.gov

1

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl call.

Affected configurations

NVD

Node

linuxlinux_kernelRange<2.6.38.5

Node

redhatenterprise_linuxMatch5.0

OR

redhatenterprise_linux_ausMatch5.6

OR

redhatenterprise_linux_desktopMatch5.0

OR

redhatenterprise_linux_eusMatch5.6

OR

redhatenterprise_linux_serverMatch5.0

OR

redhatenterprise_linux_workstationMatch5.0

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=194b3da873fd334ef183806db751473512af29ce

openwall.com/lists/oss-security/2011/04/21/4

openwall.com/lists/oss-security/2011/04/22/7

rhn.redhat.com/errata/RHSA-2011-0927.html

www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.5

www.securityfocus.com/bid/47534

bugzilla.redhat.com/show_bug.cgi?id=698996

lkml.org/lkml/2011/4/14/293

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

Related for NVD:CVE-2011-1745

cve2 ubuntucve2 cvelist2 veracode1 prion2 nvd1 nessus33 ubuntu11 openvas54 oraclelinux3 suse6 redhat4 fedora8 centos1 debian2 securityvulns2 osv2 vmware2 packetstorm1