Multiple Integer Overflows in Linux Kernel's agp_allocate_memory and agp_create_user_memory Functions

Multiple Integer Overflows in Linux Kernel's agp_allocate_memory and agp_create_user_memory Functions

CVE-2011-1746 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.