CVE-2011-1163

Priority
Description
The osf_partition function in fs/partitions/osf.c in the Linux kernel
before 2.6.38 does not properly handle an invalid number of partitions,
which might allow local users to obtain potentially sensitive information
from kernel heap memory via vectors related to partition-table parsing.
Ubuntu-Description
Timo Warns discovered that OSF partition parsing routines did not correctly
clear memory. A local attacker with physical access could plug in a
specially crafted block device to read kernel memory, leading to a loss of
privacy.
Notes
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
Package
Upstream:released (2.6.38)
More Information

Updated: 2019-12-05 20:56:49 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)