Unrated severityNVD Advisory· Published Apr 10, 2011· Updated Apr 29, 2026

CVE-2011-1163

Description

The osf_partition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vectors related to partition-table parsing.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: <2.6.38
Red Hat/Enterprise Linux Desktop2 versions
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Eus
cpe:2.3:o:redhat:enterprise_linux_eus:5.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server2 versions
cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server Aus
cpe:2.3:o:redhat:enterprise_linux_server_aus:5.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Workstation2 versions
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
SUSE S.A./Linux Enterprise Server
cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:ltss:*:*:*
Ubuntu/Linux Kernelllm-fuzzy
Range: <2.6.38

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

openwall.com/lists/oss-security/2011/03/15/14nvdMailing ListPatchThird Party Advisory
openwall.com/lists/oss-security/2011/03/15/9nvdMailing ListPatchThird Party Advisory
www.spinics.net/lists/mm-commits/msg82737.htmlnvdMailing ListPatchThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
downloads.avaya.com/css/P8/documents/100145416nvdThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.htmlnvdMailing ListThird Party Advisory
rhn.redhat.com/errata/RHSA-2011-0833.htmlnvdThird Party Advisory
securityreason.com/securityalert/8189nvdThird Party Advisory
securitytracker.com/idnvdThird Party AdvisoryVDB Entry
www.pre-cert.de/advisories/PRE-SA-2011-02.txtnvdThird Party Advisory
www.securityfocus.com/archive/1/517050nvdThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/46878nvdThird Party AdvisoryVDB Entry
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38nvdBroken Link
git.kernel.orgnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000