CVE-2011-1172

2011-06-2200:00:00

ubuntu.com

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

net/ipv6/netfilter/ip6_tables.c in the IPv6 implementation in the Linux
kernel before 2.6.39 does not place the expected ‘\0’ character at the end
of string data in the values of certain structure members, which allows
local users to obtain potentially sensitive information from kernel memory
by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and
then reading the argument to the resulting modprobe process.

Bugs

<https://launchpad.net/bugs/801483>

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchlinux< 2.6.24-29.92UNKNOWN
ubuntu10.04noarchlinux< 2.6.32-32.62UNKNOWN
ubuntu10.10noarchlinux< 2.6.35-30.52UNKNOWN
ubuntu11.04noarchlinux< 2.6.38-9.43UNKNOWN
ubuntu10.04noarchlinux-ec2< 2.6.32-316.30UNKNOWN
ubuntu10.04noarchlinux-fsl-imx51< 2.6.31-610.27UNKNOWN
ubuntu10.04noarchlinux-lts-backport-maverick< 2.6.35-30.54~lucid1UNKNOWN
ubuntu10.04noarchlinux-mvl-dove< 2.6.32-217.34UNKNOWN
ubuntu10.10noarchlinux-mvl-dove< 2.6.32-417.34UNKNOWN
ubuntu10.10noarchlinux-ti-omap4< 2.6.35-903.23UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	8.04	noarch	linux	< 2.6.24-29.92	UNKNOWN
ubuntu	10.04	noarch	linux	< 2.6.32-32.62	UNKNOWN
ubuntu	10.10	noarch	linux	< 2.6.35-30.52	UNKNOWN
ubuntu	11.04	noarch	linux	< 2.6.38-9.43	UNKNOWN
ubuntu	10.04	noarch	linux-ec2	< 2.6.32-316.30	UNKNOWN
ubuntu	10.04	noarch	linux-fsl-imx51	< 2.6.31-610.27	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-maverick	< 2.6.35-30.54~lucid1	UNKNOWN
ubuntu	10.04	noarch	linux-mvl-dove	< 2.6.32-217.34	UNKNOWN
ubuntu	10.10	noarch	linux-mvl-dove	< 2.6.32-417.34	UNKNOWN
ubuntu	10.10	noarch	linux-ti-omap4	< 2.6.35-903.23	UNKNOWN