CVE-2012-3511

Published: Oct 3, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple race conditions in the madvise_remove function in mm/madvise.c in the Linux kernel before 3.4.5 allow local users to cause a denial of service (use-after-free and system crash) via vectors involving a (1) munmap or (2) close system call.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

USN-1572-1

vendor-advisory

x_refsource_UBUNTU

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5

x_refsource_CONFIRM

50732

third-party-advisory

x_refsource_SECUNIA

USN-1567-1

vendor-advisory

x_refsource_UBUNTU

USN-1577-1

vendor-advisory

x_refsource_UBUNTU

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9ab4233dd08036fe34a89c7dc6f47a8bf2eb29eb

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=849734

x_refsource_CONFIRM

https://github.com/torvalds/linux/commit/9ab4233dd08036fe34a89c7dc6f47a8bf2eb29eb

x_refsource_CONFIRM

USN-1529-1

vendor-advisory

x_refsource_UBUNTU

[oss-security] 20120820 Re: CVE Request -- kernel: mm: use-after-free in madvise_remove()

mailing-list

x_refsource_MLIST

55151

vdb-entry

x_refsource_BID

50633

third-party-advisory

x_refsource_SECUNIA

55055

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-3511

Description

Affected Products

References