CVE-2011-1162 — LOW (2.1) — White Hats Nepal

Vulnerability Description

The tpm_read function in the Linux kernel 2.6 does not properly clear memory, which might allow local users to read the results of the previous TPM command.

CVSS Score

2.1

LOW

AV:L/AC:L/Au:N/C:P/I:N/A:N

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	2.6

Related Weaknesses (CWE)

CWE-200

References

http://www.securityfocus.com/bid/50764
https://bugzilla.redhat.com/show_bug.cgi?id=732629
http://www.securityfocus.com/bid/50764
https://bugzilla.redhat.com/show_bug.cgi?id=732629

FAQ

What is CVE-2011-1162?

CVE-2011-1162 is a vulnerability with a CVSS score of 2.1 (LOW). The tpm_read function in the Linux kernel 2.6 does not properly clear memory, which might allow local users to read the results of the previous TPM command.

How severe is CVE-2011-1162?

CVE-2011-1162 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2011-1162?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.