CVE-2011-0699

Published: 20 February 2020

Integer signedness error in the btrfs_ioctl_space_info function in the Linux kernel 2.6.37 allows local users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted slot value.

Priority

Medium

CVSS 3 base score: 7.0

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)
Patches:
Introduced by bf5fc093c5b625e4259203f1cee7ca73488a5620
Fixed by 51788b1bdd0d68345bab0af4301e7fa429277228
linux-armadaxp
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)
linux-ec2
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)
linux-lts-backport-natty
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)
linux-lts-backport-oneiric
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)
linux-mvl-dove
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)
linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.38~rc5)