CVE-2011-2707

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.1

Description The issue allows local users to obtain sensitive information from kernel memory locations. This is due to the ptrace setxregs function in arch/xtensa/kernel/ptrace.c not validating user-space pointers, enabling users to craft a PTRACE SETXTREGS request to access sensitive information.

Recommendations For Linux kernel versions prior to 3.1, update to version 3.1 or later to resolve the issue.