CVE-2011-4131

Published: May 17, 2012

Modified: Aug 7, 2024

PUBLISHED

Description

The NFSv4 implementation in the Linux kernel before 3.2.2 does not properly handle bitmap sizes in GETACL replies, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SU-2012:0554

vendor-advisory

x_refsource_SUSE

48898

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20111111 Re: CVE Request -- kernel: nfs4_getfacl decoding kernel oops

mailing-list

x_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=747106

x_refsource_CONFIRM

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=bf118a342f10dafe44b14451a1392c3254629a1f

x_refsource_CONFIRM

RHSA-2012:1541

vendor-advisory

x_refsource_REDHAT

FEDORA-2012-8359

vendor-advisory

x_refsource_FEDORA

openSUSE-SU-2013:0925

vendor-advisory

x_refsource_SUSE

RHSA-2012:0862

vendor-advisory

x_refsource_REDHAT

https://github.com/torvalds/linux/commit/bf118a342f10dafe44b14451a1392c3254629a1f

x_refsource_CONFIRM

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.2

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-4131

Description

Affected Products

References