CVE-2011-2022

Priority
Description
The agp_generic_remove_memory function in drivers/char/agp/generic.c in the
Linux kernel before 2.6.38.5 does not validate a certain start parameter,
which allows local users to gain privileges or cause a denial of service
(system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a
different vulnerability than CVE-2011-1745.
Ubuntu-Description
Vasiliy Kulikov discovered that the AGP driver did not check certain ioctl
values. A local attacker with access to the video subsystem could exploit
this to crash the system, leading to a denial of service, or possibly gain
root privileges.
Notes
Package
Upstream:released (2.6.39~rc5)
Package
Upstream:released (2.6.39~rc5)
Package
Upstream:released (2.6.39~rc5)
Package
Upstream:released (2.6.39~rc5)
Package
Upstream:released (2.6.39~rc5)
Package
Upstream:released (2.6.39~rc5)
Package
Upstream:released (2.6.39~rc5)
More Information

Updated: 2019-12-05 20:57:09 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)