CVE-2011-1169

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.38.1

Description The issue is related to an array index error in the asihpi hpi ioctl function, located in the sound/pci/asihpi/hpioctl.c file of the AudioScience HPI driver. This error might allow local users to cause a denial of service, resulting in memory corruption, or possibly gain privileges. The exploitation is potentially achievable via a crafted adapter index value that triggers access to an invalid kernel pointer.

Recommendations For Linux kernel versions prior to 2.6.38.1, update to version 2.6.38.1 or later to resolve the issue.