CVE-2011-0006

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.37

Description The issue allows local users to bypass Integrity Measurement Architecture (IMA) rules under certain circumstances when the Linux Security Modules (LSM) framework is disabled. This can happen when an administrator adds an IMA rule for LSM, and it can be exploited by local users in opportunistic situations.

Recommendations For Linux kernel versions prior to 2.6.37, update to version 2.6.37 or later to resolve the issue.