CVE-2011-1163 (retired)

Priority
Description
The osf_partition function in fs/partitions/osf.c in the Linux kernel
before 2.6.38 does not properly handle an invalid number of partitions,
which might allow local users to obtain potentially sensitive information
from kernel heap memory via vectors related to partition-table parsing.
Ubuntu-Description
Timo Warns discovered that OSF partition parsing routines did not correctly
clear memory. A local attacker with physical access could plug in a
specially crafted block device to read kernel memory, leading to a loss of
privacy.
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
More Information

Updated: 2019-03-26 11:55:47 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)