CVE-2011-4330

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.6 ext4dev-kmp-trace (affected versions not specified)

Description The issue concerns a stack-based buffer overflow in the Linux kernel, specifically in the hfs mac2asc function, which can be triggered by a crafted HFS image. This could lead to a denial of service or potentially allow the execution of arbitrary code. Additionally, there are multiple vulnerabilities in the ext4dev-kmp-trace package of SUSE Linux Enterprise that can be exploited remotely, leading to a disruption of protected information availability.

Recommendations For Linux kernel version 2.6, consider applying a patch to fix the buffer overflow issue in the hfs mac2asc function. For ext4dev-kmp-trace, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Buffer Overflow

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-476

Related Identifiers

BDU:2015-04359

CVE-2011-4330

RHSA-2012:0007

RHSA-2012:0358

RHSA-2012_0007

USN-1286-1

USN-1291-1

USN-1292-1

USN-1293-1

USN-1299-1

USN-1300-1

USN-1301-1

USN-1302-1

USN-1303-1

USN-1304-1

USN-1311-1

USN-1312-1

USN-1322-1

USN-1330-1

USN-1336-1

USN-1340-1

Affected Products

Linux Kernel

Red Hat

Suse

Ext4Dev-Kmp-Trace

CVE-2011-4330

Weakness Enumeration

Related Identifiers

Affected Products

References · 45