[CVE-2011-1163] Fix corrupted OSF partition table parsing
Andy Whitcroft
apw at canonical.com
Mon Jun 13 14:03:35 UTC 2011
CVE-2011-1163
The osf_partition function in fs/partitions/osf.c in the Linux
kernel before 2.6.38 does not properly handle an invalid number
of partitions, which might allow local users to obtain potentially
sensitive information from kernel heap memory via vectors related to
partition-table parsing.
The fixes for this issue have hit Lucid, Natty and Oneiric via
mainline/stable updates and thereby to the derivative branches. Fixes are
required for Hardy, Lucid/fsl-imx51, Maverick, and Maverick/ti-omap4.
Following this email are patches for these releases.
Proposing for Hardy, Lucid/fsl-imx51, Maverick, and Maverick/ti-omap4.
-apw
More information about the kernel-team
mailing list