Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel 缓冲区错误漏洞
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 2.6.39之前版本的fs/partitions/efi.c中的is_gpt_valid函数不能检查Extensible Firmware Interface (EFI) GUID Partition Table (GPT)实体。Linux Kernel自动评估存储设备的分区表。评估EFI GUID分区表的代码中存在缓冲区错误漏洞。攻击者可以通过连接特制的GPT存储设备导致拒绝服务(基于堆的缓冲
CVSS Information
N/A
Vulnerability Type
N/A