You are here

U-056: Linux Kernel HFS Buffer Overflow Lets Local Users Gain Root Privileges

December 9, 2011 - 8:00am

Addthis

PROBLEM:

Linux Kernel HFS Buffer Overflow Lets Local Users Gain Root Privileges.

PLATFORM:

Linux kernel

ABSTRACT:

A vulnerability was reported in the Linux Kernel.

referenceĀ  LINKS:

The Linux Kernel Archives
SecurityTracker Alert ID: 1026395
CVE-2011-4330

IMPACT ASSESSMENT:

Medium

Discussion:

When a specially crafted Hierarchical File System (HFS) file system is mounted, a local user can to trigger a buffer overflow and execute arbitrary code on the target system with root privileges. The vulnerability resides in the hfs_mac2asc() function.

Impact:

A local user can obtain root privileges on the target system.

Solution:

The vendor has issued a fix. The Linux Kernel

Addthis