6.2 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.1%
Integer overflow in the sys_oabi_semtimedop function in
arch/arm/kernel/sys_oabi-compat.c in the Linux kernel before 2.6.39 on the
ARM platform, when CONFIG_OABI_COMPAT is enabled, allows local users to
gain privileges or cause a denial of service (heap memory corruption) by
providing a crafted argument and leveraging a race condition.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | linux | < 2.6.32-33.64 | UNKNOWN |
ubuntu | 10.10 | noarch | linux | < 2.6.35-32.64 | UNKNOWN |
ubuntu | 11.04 | noarch | linux | < 2.6.38-10.44 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-ec2 | < 2.6.32-317.32 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-lts-backport-maverick | < 2.6.35-32.64~lucid1 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-mvl-dove | < 2.6.32-217.34 | UNKNOWN |
ubuntu | 10.10 | noarch | linux-mvl-dove | < 2.6.32-417.34 | UNKNOWN |
ubuntu | 10.10 | noarch | linux-ti-omap4 | < 2.6.35-903.31 | UNKNOWN |
ubuntu | 11.04 | noarch | linux-ti-omap4 | < 2.6.38-1209.22 | UNKNOWN |
marc.info/?l=linux-kernel&m=130408851326428&w=2
launchpad.net/bugs/cve/CVE-2011-1759
nvd.nist.gov/vuln/detail/CVE-2011-1759
security-tracker.debian.org/tracker/CVE-2011-1759
ubuntu.com/security/notices/USN-1159-1
ubuntu.com/security/notices/USN-1161-1
ubuntu.com/security/notices/USN-1162-1
ubuntu.com/security/notices/USN-1167-1
ubuntu.com/security/notices/USN-1168-1
ubuntu.com/security/notices/USN-1332-1
ubuntu.com/security/notices/USN-1341-1
ubuntu.com/security/notices/USN-1383-1
ubuntu.com/security/notices/USN-1394-1
www.cve.org/CVERecord?id=CVE-2011-1759