Lucene search

[email protected]CVE-2011-0431

HistoryFeb 19, 2011 - 1:00 a.m.

CVE-2011-0431

2011-02-1901:00:00

CWE-20

[email protected]

web.nvd.nist.gov

openafs

kernel module

dos

cve-2011-0431

afs_linux_lock

nvd

6.2 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.01 Low

EPSS

Percentile

83.7%

JSON

The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel module in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions does not properly handle errors, which allows attackers to cause a denial of service via unknown vectors. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
openafs:openafsopenafseq1.4.12
openafs:openafsopenafseq1.4.7
openafs:openafsopenafseq1.4.14

CPE	Name	Operator	Version
openafs:openafs	openafs	eq	1.4.12
openafs:openafs	openafs	eq	1.4.7
openafs:openafs	openafs	eq	1.4.14

References

secunia.com/advisories/43371

secunia.com/advisories/43407

www.debian.org/security/2011/dsa-2168

www.securityfocus.com/bid/46428

www.securitytracker.com/id?1025095

www.vupen.com/english/advisories/2011/0410

www.vupen.com/english/advisories/2011/0411

6.2 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.01 Low

EPSS

Percentile

83.7%

JSON

Related for CVE-2011-0431

cvelist1 ubuntucve1 prion1 debiancve1 nessus3 osv1 openvas3 debian2 gentoo1