Linux Kernel "hfs_mac2asc ()" Local Privilege Escalation Vulnerability
Release date: 2011-11-21
Updated on: 2011-11-22
Affected Systems:
Linux kernel 2.6.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 50750
Cve id: CVE-2011-4330
Linux is the kernel of a free computer.
The "hfs_mac2asc ()" function of the Linux kernel has a buffer overflow vulnerability. A local attacker can exploit this vulnerability to execute arbitrary code without the core permission, resulting in full control of affected computers.
<* Source: Lecigne Clement
Link: https://lkml.org/lkml/2011/11/9/303
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Linux
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.kernel.org/