VDB

CVE-2011-1180

CVE-2011-1180 PUBLISHED

Multiple stack-based buffer overflows in the iriap_getvaluebyclass_indication function in net/irda/iriap.c in the Linux kernel before 2.6.39 allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging connectivity to an IrDA infrared network and sending a large integer value for a (1) name length or (2) attribute length.

EPSS 1.16% · 78.9th percentile

Risk Scores

EPSS Score
1.16%
78.9th percentile

Affected Products

VendorProductVersions
Ubuntu:20.04:LTSlinux-gke5.4.0-1099.106, 5.4.0-1041.43, 5.4.0-1039.41
Ubuntu:20.04:LTSlinux-riscv5.4.0-26.30, 5.4.0-39.44, 5.4.0-40.45
Ubuntu:22.04:LTSlinux-realtime0, 5.15.0-1032.35
Ubuntu:Pro:20.04:LTSlinux-azure-fde-5.155.15.0-1103.112~20.04.1.1, *, *
Ubuntu:20.04:LTSlinux-gkeop5.4.0-1016.17, 5.4.0-1085.89, 5.4.0-1087.91
Ubuntu:24.04:LTSlinux-realtime0, 6.8.1-1015.16
Ubuntu:24.04:LTSlinux-raspi-realtime6.8.0-2019.20, 0
Ubuntu:18.04:LTSlinux-gcp5.0.0-1026.27~18.04.1, 5.0.0-1028.29~18.04.1, 5.0.0-1031.32
Ubuntu:18.04:LTSlinux-azure5.0.0-1016.17~18.04.1, 0, 4.15.0-1002.2
Ubuntu:18.04:LTSlinux-hwe4.18.0-14.15~18.04.1, 5.3.0-64.58~18.04.1, 5.3.0-66.60
Ubuntu:22.04:LTSlinux-riscv5.15.0-1019.22, *, 5.15.0-1026.30
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1074.77+cvm1.1, 5.4.0-1076.79+cvm1.1, 5.4.0-1078.81+cvm1.1
Ubuntu:22.04:LTSlinux-intel-iot-realtime5.15.0-1073.75, 0

Timeline

  • Jul 25, 2011 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 9, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
  • May 25, 2023 EPSS Score
  • Jul 17, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›