mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-09 15:15:46 +02:00
0xMarcio
971 B
971 B
CVE-2011-2906
Description
** DISPUTED ** Integer signedness error in the pmcraid_ioctl_passthrough function in drivers/scsi/pmcraid.c in the Linux kernel before 3.1 might allow local users to cause a denial of service (memory consumption or memory corruption) via a negative size value in an ioctl call. NOTE: this may be a vulnerability only in unusual environments that provide a privileged program for obtaining the required file descriptor.
POC
Reference
- http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1
- http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1