CVE-2011-1593

Priority
Description
Multiple integer overflows in the next_pidmap function in kernel/pid.c in
the Linux kernel before 2.6.38.4 allow local users to cause a denial of
service (system crash) via a crafted (1) getdents or (2) readdir system
call.
Ubuntu-Description
Tavis Ormandy discovered that the pidmap function did not correctly handle
large requests. A local attacker could exploit this to crash the system,
leading to a denial of service.
Notes
Package
Upstream:released (2.6.39~rc4)
Package
Upstream:released (2.6.39~rc4)
Package
Upstream:released (2.6.39~rc4)
Package
Upstream:released (2.6.39~rc4)
Package
Upstream:released (2.6.39~rc4)
Package
Upstream:released (2.6.39~rc4)
Package
Upstream:released (2.6.39~rc4)
More Information

Updated: 2019-12-05 20:57:00 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)