CVE-2011-2517
Linux Kernel < 2.6.39.2 - Local Privilege Escalation via Long SSID in Wireless Scan
Title source: llmDescription
Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value.
References (6)
Core 6
Core References
Patch x_refsource_confirm
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=208c72f4fe44fe09577e7975ba0e7fa0278f3d03
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2011-1212.html
Patch, Third Party Advisory x_refsource_confirm
https://github.com/torvalds/linux/commit/208c72f4fe44fe09577e7975ba0e7fa0278f3d03
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/07/01/4
Broken Link x_refsource_confirm
http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.2
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=718152
Scores
EPSS
0.0038
EPSS Percentile
29.8%
Details
CWE
CWE-119
Status
published
Products (5)
linux/linux_kernel
< 2.6.39.2
redhat/enterprise_linux
5.0
redhat/enterprise_linux_desktop
5.0
redhat/enterprise_linux_server
5.0
redhat/enterprise_linux_workstation
5.0
Published
May 24, 2012
Tracked Since
Feb 18, 2026