Linux Kernel EFI GUID denial of service

kernel-guid-dos (66773) The risk level is classified as MediumMedium Risk


Linux Kernel is vulnerable to a denial of service, caused by an error in the EFI GUID partition. A local attacker could exploit this vulnerability using a corrupted EFI GUID partition table to cause a kernel OOPs.


Base Score: 2.1
  Access Vector: Local
  Access Complexity: Low
  Authentication: None
  Confidentiality Impact: None
  Integrity Impact: None
  Availability Impact: Partial
Temporal Score: 1.6
  Exploitability: Unproven
  Remediation Level: Official-Fix
  Report Confidence: Confirmed


Denial of Service


Apply the appropriate patch for your system. See References.


  • PRE-SA-2011-03: Linux Kernel EFI Partition Denial of Service Vulnerability.
  • The Linux Kernel Archives Web site: The Linux Kernel Archives.
  • BID-47343: Linux Kernel EFI Partition Denial of Service Vulnerability
  • CVE-2011-1577: Heap-based buffer overflow in the is_gpt_valid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service (OOPS) or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on removable media.
  • DSA-2264: linux-2.6 -- privilege escalation/denial of service/information leak
  • OSVDB ID: 73049: Linux Kernel fs/partitions/efi.c is_gpt_valid Function EFI GUID Partition Table Overflow DoS
  • OSVDB ID: 74654: Linux Kernel EFI GUID Partition Table (GPT) Implementation Crafted Partition Table Handling Local Overflow DoS
  • RHSA-2011-0833: Important: kernel security and bug fix update
  • RHSA-2011-1253: Important: kernel-rt security and bug fix update
  • RHSA-2011-1465: Important: kernel security and bug fix update
  • SUSE-SA:2011:027: Linux kernel security update

Platforms Affected:

  • Linux Kernel 2.4.0
  • Linux Kernel 2.6.0
  • Novell SLE SDK 10
  • Novell SUSE Linux Enterprise Server 10
  • RedHat Enterprise Linux 5
  • RedHat Enterprise Linux 5 Client
  • RedHat Enterprise Linux 6 Server
  • RedHat Enterprise Linux 6 Workstation
  • RedHat Enterprise Linux Desktop 6
  • RedHat Enterprise Linux EUS 5.6.z
  • RedHat Enterprise Linux HPC Node 6
  • RedHat Enterprise Linux Long Life 5.6
  • RedHat Enterprise Linux Server EUS 6.1.z
  • RedHat Enterprise MRG 2


Apr 13, 2011

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this

Return to the main page