CVE-2011-1476
Publication date 25 March 2011
Last updated 4 July 2026
Ubuntu priority
Description
Integer underflow in the Open Sound System (OSS) subsystem in the Linux kernel before 2.6.39 on unspecified non-x86 platforms allows local users to cause a denial of service (memory corruption) by leveraging write access to /dev/sequencer.
From the Ubuntu Security Team
Dan Rosenberg reported errors in the OSS (Open Sound System) MIDI interface. A local attacker on non-x86 systems might be able to cause a denial of service.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| linux | ||
| linux-armadaxp | ||
| linux-ec2 | ||
| linux-fsl-imx51 | ||
| linux-lts-backport-maverick | ||
| linux-lts-backport-natty | ||
| linux-lts-backport-oneiric | ||
| linux-mvl-dove | ||
| linux-ti-omap4 | ||
Notes
References
Related Ubuntu Security Notices (USN)
- USN-1160-1
- Linux kernel vulnerabilities
- 28 June 2011
- USN-1141-1
- Linux kernel vulnerabilities
- 1 June 2011
- USN-1162-1
- Linux kernel vulnerabilities (Marvell Dove)
- 29 June 2011
- USN-1167-1
- Linux kernel vulnerabilities
- 13 July 2011
- USN-1394-1
- linux-ti-omap4 vulnerabilities
- 7 March 2012
- USN-1187-1
- Linux kernel (Maverick backport) vulnerabilities
- 9 August 2011
- USN-1390-1
- Linux kernel vulnerabilities
- 6 March 2012
- USN-1212-1
- Linux kernel (OMAP4) vulnerabilities
- 21 September 2011
- USN-1159-1
- Linux kernel vulnerabilities (Marvell Dove)
- 13 July 2011