CVE-2011-2534

Priority
Description
Buffer overflow in the clusterip_proc_write function in
net/ipv4/netfilter/ipt_CLUSTERIP.c in the Linux kernel before 2.6.39 might
allow local users to cause a denial of service or have unspecified other
impact via a crafted write operation, related to string data that lacks a
terminating '\0' character.
Ubuntu-Description
Vasiliy Kulikov discovered that the netfilter code did not check certain
strings copied from userspace. A local attacker with netfilter access could
exploit this to read kernel memory or crash the system, leading to a denial
of service.
Notes
Package
Upstream:released (2.6.39~rc1)
Package
Upstream:released (2.6.39~rc1)
Package
Upstream:released (2.6.39~rc1)
Package
Upstream:released (2.6.39~rc1)
Package
Upstream:released (2.6.39~rc1)
Package
Upstream:released (2.6.39~rc1)
More Information

Updated: 2019-12-05 20:57:23 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)