CVE Reference: CVE-2011-1746

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2011-1746

Description:
Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages.

CVE Status:
Candidate

References:

REDHAT
  http://rhn.redhat.com/errata/RHSA-2011-0927.html

MLIST
  http://openwall.com/lists/oss-security/2011/04/22/7
  http://openwall.com/lists/oss-security/2011/04/21/4

CONFIRM
  http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.5
  http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b522f02184b413955f3bc952e3776ce41edc6355

BID
  47535


Return to the previous page.