Secunia
Login
|
|
CVE Reference: CVE-2011-4077 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2011-4077 |
|
|
Description: Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c in XFS in the Linux kernel 2.6, when CONFIG_XFS_DEBUG is disabled, allows local users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via an XFS image containing a symbolic link with a long pathname. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA48964 MLIST http://oss.sgi.com/archives/xfs/2011-10/msg00345.html http://www.openwall.com/lists/oss-security/2011/10/26/3 http://www.openwall.com/lists/oss-security/2011/10/26/1 MISC http://xorl.wordpress.com/2011/12/07/cve-2011-4077-linux-kernel-xfs-readlink-memory-corruption/ CONFIRM |
|
| Return to the previous page. |
