| Severity : |
Medium
|
| Published : |
2012-07-03
|
| Modified : |
2012-12-18
|
| Base Score : |
4.6
|
| Details : |
The Linux kernel before 3.2.2 does not properly restrict SG_IO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to (1) a partition block device or (2) an LVM volume.
|
| Product/Version : |
Professional PRO 5.0
Pro 4.x
CGE 4.x
Mobilinux 4.x
Professional PRO 5.0
CGE 5.x
Mobilinux 5.x
CGE 5.x
Mobilinux 5.x
Professional PRO 5.0
Professional PRO 5.0
Pro 4.x
CGE 4.x
Mobilinux 4.x
|
|
CVE Vulnerabilities List CVE-2011
