CVE-2011-2022 — Improper Input Validation in Kernel
CWE-20 — Improper Input ValidationCWE-416 — Use After FreeCWE-843 — Type ConfusionCWE-414 — Missing Lock CheckCWE-787 — Out-of-bounds WriteCWE-99 — Resource InjectionCWE-413 — Improper Resource LockingCWE-119 — Improper Restriction of Operations within the Bounds of a Memory BufferCWE-189CWE-310CWE-26437 documents9 sources
Severity
6.9MEDIUMNVD
CISA9.8CISA8.8CISA7.8CISA5.7
EPSS
0.0%
top 86.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 9
Latest updateJun 18
Description
The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745.
CVSS vector
AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0
Affected Packages4 packages
Also affects: Enterprise Linux 5.0, 5.6
Patches
🔴Vulnerability Details
2📋Vendor Advisories
29💬Community
1Bugzilla▶
CVE-2011-1745 CVE-2011-2022 kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls↗2011-04-22