Описание
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.6.39-2.7 |
| hardy | released | 2.6.24-29.94 |
| lucid | released | 2.6.32-33.64 |
| maverick | released | 2.6.35-30.60 |
| natty | released | 2.6.38-10.44 |
| oneiric | not-affected | 2.6.39-2.7 |
| upstream | released | 2.6.39~rc7 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.32-317.32 |
| maverick | ignored | end of life |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39~rc7 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.31-611.29 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39~rc7 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.35-30.60~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39~rc7 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.38-10.44~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39~rc7 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | not-affected | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39~rc7 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.32-217.34 |
| maverick | released | 2.6.32-417.34 |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39~rc7 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.0.0-1204.9 |
| hardy | DNE | |
| lucid | DNE | |
| maverick | released | 2.6.35-903.25 |
| natty | released | 2.6.38-1209.16 |
| oneiric | not-affected | 3.0.0-1204.9 |
| upstream | released | 2.6.39~rc7 |
Показывать по
Ссылки на источники
EPSS
5.6 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel b ...
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.
Уязвимости операционной системы SUSE Linux Enterprise, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
5.6 Medium
CVSS2
6.1 Medium
CVSS3