ByteOS Network

NVD Vulnerability Details :

CVE-2011-1171

Modified

Source-secalert@redhat.com

Published At-22 Jun, 2011 | 22:55

Updated At-29 Apr, 2026 | 01:13

net/ipv4/netfilter/ip_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N

Type: Primary

Version: 2.0

Base score: 2.1

Base severity: LOW

Vector:

AV:L/AC:L/Au:N/C:P/I:N/A:N

Hyperlink	Source	Resource
http://downloads.avaya.com/css/P8/documents/100145416	secalert@redhat.com	N/A
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78b79876761b86653df89c48a7010b5cbd41a84a	secalert@redhat.com	N/A
http://marc.info/?l=linux-kernel&m=129978077609894&w=2	secalert@redhat.com	Patch
http://rhn.redhat.com/errata/RHSA-2011-0833.html	secalert@redhat.com	N/A
http://securityreason.com/securityalert/8278	secalert@redhat.com	N/A
http://securityreason.com/securityalert/8283	secalert@redhat.com	N/A
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39	secalert@redhat.com	N/A
http://www.openwall.com/lists/oss-security/2011/03/18/15	secalert@redhat.com	Patch
http://www.openwall.com/lists/oss-security/2011/03/21/1	secalert@redhat.com	Patch
http://www.openwall.com/lists/oss-security/2011/03/21/4	secalert@redhat.com	Patch
https://bugzilla.redhat.com/show_bug.cgi?id=689327	secalert@redhat.com	Patch
http://downloads.avaya.com/css/P8/documents/100145416	af854a3a-2127-422b-91ae-364da2661108	N/A
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78b79876761b86653df89c48a7010b5cbd41a84a	af854a3a-2127-422b-91ae-364da2661108	N/A
http://marc.info/?l=linux-kernel&m=129978077609894&w=2	af854a3a-2127-422b-91ae-364da2661108	Patch
http://rhn.redhat.com/errata/RHSA-2011-0833.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://securityreason.com/securityalert/8278	af854a3a-2127-422b-91ae-364da2661108	N/A
http://securityreason.com/securityalert/8283	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.openwall.com/lists/oss-security/2011/03/18/15	af854a3a-2127-422b-91ae-364da2661108	Patch
http://www.openwall.com/lists/oss-security/2011/03/21/1	af854a3a-2127-422b-91ae-364da2661108	Patch
http://www.openwall.com/lists/oss-security/2011/03/21/4	af854a3a-2127-422b-91ae-364da2661108	Patch
https://bugzilla.redhat.com/show_bug.cgi?id=689327	af854a3a-2127-422b-91ae-364da2661108	Patch

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History