CVE-2011-3363

Published: May 24, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

The setup_cifs_sb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals, which allows remote CIFS servers to cause a denial of service (system crash) by placing a referral at the root of a share.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20110914 Re: CVE request -- kernel: cifs: always do is_path_accessible check in cifs_mount

mailing-list

x_refsource_MLIST

https://github.com/torvalds/linux/commit/70945643722ffeac779d2529a348f99567fa5c33

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=738291

x_refsource_CONFIRM

http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39

x_refsource_CONFIRM

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=70945643722ffeac779d2529a348f99567fa5c33

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-3363

Description

Affected Products

References