Vulnetix
Try Vulnetix Request Demo
CVE-2011-1180 PUBLISHED

Multiple stack-based buffer overflows in the iriap_getvaluebyclass_indication function in net/irda/iriap.c in the Linux kernel before 2.6.39 allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging connectivity to an IrDA infrared network and sending a large integer value for a (1) name length or (2) attribute length.

EPSS 1.16% · 78.5th percentile

Risk Scores

EPSS Score
1.16%
78.5th percentile

Affected Products

VendorProductVersions
Ubuntu:20.04:LTSlinux-gke5.4.0-1054.57, 5.4.0-1053.56, 5.4.0-1052.55
Ubuntu:20.04:LTSlinux-riscv0, 5.4.0-40.45, 5.4.0-39.44
Ubuntu:22.04:LTSlinux-realtime0, 5.15.0-1032.35
Ubuntu:Pro:20.04:LTSlinux-azure-fde-5.155.15.0-1102.111~20.04.1.1, 5.15.0-1098.107~20.04.1.1, 5.15.0-1097.106~20.04.1.1
Ubuntu:20.04:LTSlinux-gkeop5.4.0-1040.41, 0, 5.4.0-1008.9
Ubuntu:24.04:LTSlinux-realtime6.8.1-1015.16, 0
Ubuntu:24.04:LTSlinux-raspi-realtime6.8.0-2019.20, 0
Ubuntu:18.04:LTSlinux-gcp4.15.0-1021.22, 4.15.0-1019.20, 4.15.0-1018.19
Ubuntu:18.04:LTSlinux-azure4.15.0-1025.26, 4.15.0-1028.29, 4.15.0-1014.14
Ubuntu:18.04:LTSlinux-hwe5.0.0-31.33~18.04.1, 5.3.0-74.70, 5.3.0-75.71
Ubuntu:22.04:LTSlinux-riscv5.15.0-1008.8, 5.15.0-1007.7, 5.15.0-1006.6
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1091.96+cvm1.1, 5.4.0-1095.101+cvm1.1, 5.4.0-1098.104+cvm1.1
Ubuntu:22.04:LTSlinux-intel-iot-realtime0, 5.15.0-1073.75

Timeline

References

Open in Interactive Console →