CVE-2011-1747

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.38.6

Description The issue is related to the agp subsystem in the Linux kernel, which does not properly restrict memory allocation by the AGPIOC RESERVE and AGPIOC ALLOCATE ioctls. This allows local users to cause a denial of service by consuming large amounts of memory through repeated calls to these ioctls.

Recommendations For Linux kernel versions prior to 2.6.38.6, consider restricting access to the AGPIOC RESERVE and AGPIOC ALLOCATE ioctls to prevent denial of service attacks. As a temporary workaround, limit the number of calls to these ioctls to minimize the risk of memory consumption.