CVE-2011-4127Improper Access Control in Kernel

CWE-264CWE-284Improper Access Control14 documents8 sources
Severity
4.6MEDIUMNVD
EPSS
0.1%
top 74.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LibguestfsLinux KernelSuse Linux Enterprise Server
Timeline
PublishedJul 3
Latest updateMay 14

Description

The Linux kernel before 3.2.2 does not properly restrict SG_IO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to (1) a partition block device or (2) an LVM volume.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages3 packages

NVDlinux/linux_kernel3.2.1+47
Debianlibguestfs/libguestfs< 1:1.14.8-1+3

Patches

Patch: github.comPatch: github.comPatch: github.com

🔴Vulnerability Details

3
GHSA
GHSA-hffv-wrg3-v4pp: The Linux kernel before 32022-05-14
OSV
CVE-2011-4127: The Linux kernel before 32012-07-03
CVEList
CVE-2011-4127: The Linux kernel before 32012-07-03

📋Vendor Advisories

6
Ubuntu
Linux kernel vulnerabilities2012-03-27
Ubuntu
Linux kernel (EC2) vulnerabilities2012-03-06
Ubuntu
Linux kernel (Oneiric backport) vulnerabilities2012-03-06
Ubuntu
Linux kernel vulnerabilities2012-03-06
Red Hat
kernel: possible privilege escalation via SG_IO ioctl2011-12-22

💬Community

4
Bugzilla
qemu-kvm: virtio-blk: refuse SG_IO requests with scsi=off (CVE-2011-4127 mitigation)2012-05-29
Bugzilla
qemu-kvm: virtio-blk: refuse SG_IO requests with scsi=off (CVE-2011-4127 mitigation) [rhel-6.3]2011-12-23
Bugzilla
CVE-2011-4127 kernel: possible privilege escalation via SG_IO ioctl [fedora-all]2011-12-22
Bugzilla
CVE-2011-4127 kernel: possible privilege escalation via SG_IO ioctl2011-11-09
CVE-2011-4127 — Improper Access Control in Linux Kernel | cvebase