Linux · Linux Kernel · CVE-2011-2517
**Name of the Vulnerable Software and Affected Versions**
Linux kernel versions prior to 2.6.39.2
**Description**
The issue is related to multiple buffer overflows in the Linux kernel, specifically in the net/wireless/nl80211.c file. This can be exploited by local users who have the CAP NET ADMIN capability, allowing them to gain privileges during scan operations when a long SSID value is used.
**Recommendations**
For Linux kernel versions prior to 2.6.39.2, update to version 2.6.39.2 or later to resolve the issue. As a temporary workaround, consider restricting the CAP NET ADMIN capability to minimize the risk of exploitation.