CVE-2011-0521

Priority
Low
Description
The dvb_ca_ioctl function in drivers/media/dvb/ttpci/av7110_ca.c in the
Linux kernel before 2.6.38-rc2 does not check the sign of a certain integer
field, which allows local users to cause a denial of service (memory
corruption) or possibly have unspecified other impact via a negative value.
Ubuntu-Description
Dan Carpenter discovered that the TTPCI DVB driver did not check certain
values during an ioctl. If the dvb-ttpci module was loaded, a local
attacker could exploit this to crash the system, leading to a denial of
service, or possibly gain root privileges.
References
Package
Upstream:released (2.6.38~rc2)
Package
Upstream:released (2.6.38~rc2)
Package
Upstream:released (2.6.38~rc2)
Package
Upstream:released (2.6.38~rc2)
Package
Upstream:released (2.6.38~rc2)
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.38~rc2)
Patches:
Upstream:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=cb26a24ee9706473f31d34cc259f4dcf45cd0644
Package
Upstream:released (2.6.38~rc2)
Package
Upstream:released (2.6.38~rc2)
More Information

Updated: 2018-06-26 04:39:42 UTC (commit 7799c934cca373482531a7b00e4dfe82302ceae5)