Lucene search
PRIOn knowledge basePRION:CVE-2011-2495HistoryJun 13, 2012 - 10:24 a.m.
Design/Logic Flaw
2012-06-1310:24:00
PRIOn knowledge base
www.prio-n.com
4
fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user’s password.
References
ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51
rhn.redhat.com/errata/RHSA-2011-1212.html
www.openwall.com/lists/oss-security/2011/06/27/1
bugzilla.redhat.com/show_bug.cgi?id=716825
github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51
Related
veracode
veracode
Information Disclosure
2020-04-10 01:01:29
cve
cve
CVE-2011-2495
2012-06-13 10:24:55
nvd
nvd
CVE-2011-2495
2012-06-13 10:24:55
cvelist
cvelist
CVE-2011-2495
2012-06-13 10:00:00
ubuntucve
ubuntucve
CVE-2011-2495
2011-10-03 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-10-20 00:00:00
Linux kernel vulnerabilities
2011-11-29 00:00:00
Linux (Natty backport) vulnerabilities
2011-11-24 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1236-1)
2011-10-21 00:00:00
Ubuntu Update for linux USN-1236-1
2011-10-21 00:00:00
CentOS Update for kernel CESA-2011:1212 centos5 i386
2011-09-23 00:00:00
nessus
nessus
Ubuntu 8.04 LTS : linux vulnerabilities (USN-1236-1)
2011-10-21 00:00:00
RHEL 5 : kernel (RHSA-2011:1212)
2011-09-07 00:00:00
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
2012-08-01 00:00:00
suse
suse
kernel update for SLE11 SP1 (important)
2011-09-01 17:08:16
kernel update for SLE11 SP1 (important)
2011-09-02 14:08:13
local kernel information leak in kernel
2011-09-01 17:07:40
redhat
redhat
(RHSA-2011:1813) Important: kernel security and bug fix update
2011-12-13 00:00:00
(RHSA-2011:1212) Important: kernel security and bug fix update
2011-09-06 00:00:00
(RHSA-2011:1189) Important: kernel security, bug fix, and enhancement update
2011-08-23 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2011-09-07 00:00:00
Unbreakable Enterprise kernel security and bug fix update
2011-08-24 00:00:00
Unbreakable Enterprise kernel security and bug fix update
2011-12-14 00:00:00
centos
centos
kernel security update
2011-09-08 23:40:55
securityvulns
securityvulns
[USN-1281-1] Linux (OMAP4) vulnerabilities
2011-11-27 00:00:00
Linux kernel multiple security vulnerabilities
2011-11-27 00:00:00
[SECURITY] [DSA 2303-2] New linux-2.6 packages fix regression
2011-09-13 00:00:00
debian
debian
[SECURITY] [DSA 2310-1] linux-2.6 security update
2011-09-22 22:48:48
[SECURITY] [DSA 2303-1] linux-2.6 security update
2011-09-08 21:31:02
[SECURITY] [DSA 2303-2] New linux-2.6 packages fix regression
2011-09-11 02:06:57
osv
osv
linux-2.6 - several issues
2011-09-22 00:00:00
linux-2.6 - several issues
2011-09-10 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00