2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
8.5%
The osf_partition function in fs/partitions/osf.c in the Linux kernel
before 2.6.38 does not properly handle an invalid number of partitions,
which might allow local users to obtain potentially sensitive information
from kernel heap memory via vectors related to partition-table parsing.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | linux | < 2.6.24-29.91 | UNKNOWN |
ubuntu | 10.04 | noarch | linux | < 2.6.32-33.64 | UNKNOWN |
ubuntu | 10.10 | noarch | linux | < 2.6.35-30.55 | UNKNOWN |
ubuntu | 11.04 | noarch | linux | < 2.6.38-7.35 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-ec2 | < 2.6.32-317.32 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-fsl-imx51 | < 2.6.31-610.27 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-lts-backport-maverick | < 2.6.35-30.55~lucid1 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-mvl-dove | < 2.6.32-217.34 | UNKNOWN |
ubuntu | 10.10 | noarch | linux-mvl-dove | < 2.6.32-417.34 | UNKNOWN |
ubuntu | 10.10 | noarch | linux-ti-omap4 | < 2.6.35-903.23 | UNKNOWN |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1163
launchpad.net/bugs/cve/CVE-2011-1163
nvd.nist.gov/vuln/detail/CVE-2011-1163
security-tracker.debian.org/tracker/CVE-2011-1163
ubuntu.com/security/notices/USN-1159-1
ubuntu.com/security/notices/USN-1161-1
ubuntu.com/security/notices/USN-1162-1
ubuntu.com/security/notices/USN-1167-1
ubuntu.com/security/notices/USN-1168-1
ubuntu.com/security/notices/USN-1170-1
ubuntu.com/security/notices/USN-1183-1
ubuntu.com/security/notices/USN-1187-1
ubuntu.com/security/notices/USN-1202-1
ubuntu.com/security/notices/USN-1204-1