CVE-2011-1017
Publication date 1 March 2011
Last updated 24 July 2024
Ubuntu priority
Heap-based buffer overflow in the ldm_frag_add function in fs/partitions/ldm.c in the Linux kernel 2.6.37.2 and earlier might allow local users to gain privileges or obtain sensitive information via a crafted LDM partition table.
From the Ubuntu Security Team
Timo Warns discovered that the LDM disk partition handling code did not correctly handle certain values. By inserting a specially crafted disk device, a local attacker could exploit this to gain root privileges.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| linux | ||
| linux-ec2 | ||
| linux-fsl-imx51 | ||
| linux-lts-backport-maverick | ||
| linux-lts-backport-natty | ||
| linux-mvl-dove | ||
| linux-source-2.6.15 | ||
| linux-ti-omap4 | ||
Patch details
| Package | Patch details |
|---|---|
| linux |
References
Related Ubuntu Security Notices (USN)
- USN-1164-1
- Linux kernel vulnerabilities (i.MX51)
- 6 July 2011
- USN-1202-1
- Linux kernel (OMAP4) vulnerabilities
- 13 September 2011
- USN-1160-1
- Linux kernel vulnerabilities
- 28 June 2011
- USN-1168-1
- Linux kernel vulnerabilities
- 15 July 2011
- USN-1162-1
- Linux kernel vulnerabilities (Marvell Dove)
- 29 June 2011
- USN-1146-1
- Linux kernel vulnerabilities
- 9 June 2011
- USN-1167-1
- Linux kernel vulnerabilities
- 13 July 2011
- USN-1187-1
- Linux kernel (Maverick backport) vulnerabilities
- 9 August 2011
- USN-1111-1
- Linux kernel vulnerabilities
- 5 May 2011
- USN-1212-1
- Linux kernel (OMAP4) vulnerabilities
- 21 September 2011
- USN-1161-1
- Linux kernel vulnerabilities (EC2)
- 13 July 2011
- USN-1159-1
- Linux kernel vulnerabilities (Marvell Dove)
- 13 July 2011