CVE-2011-1160

The tpm_open function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive information from kernel memory via unspecified vectors.

From the Ubuntu Security Team

Peter Huewe discovered that the TPM device did not correctly initialize memory. A local attacker could exploit this to read kernel heap memory contents, leading to a loss of privacy.

• How can I get the fixes?
• What do statuses mean?
• Patch details

References

• MITRE
• NVD
• Launchpad
• Debian

Related Ubuntu Security Notices (USN)

• USN-1189-1
• Linux kernel vulnerabilities
• 19 August 2011
• USN-1202-1
• Linux kernel (OMAP4) vulnerabilities
• 13 September 2011
• USN-1160-1
• Linux kernel vulnerabilities
• 28 June 2011
• USN-1141-1
• Linux kernel vulnerabilities
• 1 June 2011
• USN-1204-1
• Linux kernel (i.MX51) vulnerabilities
• 13 September 2011
• USN-1162-1
• Linux kernel vulnerabilities (Marvell Dove)
• 29 June 2011
• USN-1167-1
• Linux kernel vulnerabilities
• 13 July 2011
• USN-1256-1
• Linux kernel (Natty backport) vulnerabilities
• 9 November 2011
• USN-1187-1
• Linux kernel (Maverick backport) vulnerabilities
• 9 August 2011
• USN-1212-1
• Linux kernel (OMAP4) vulnerabilities
• 21 September 2011
• USN-1159-1
• Linux kernel vulnerabilities (Marvell Dove)
• 13 July 2011

Other references

• https://www.cve.org/CVERecord?id=CVE-2011-1160