Lucene search

[email protected]CVE-2011-2518

HistoryMay 24, 2012 - 11:55 p.m.

CVE-2011-2518

2012-05-2423:55:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2011-2518

tomoyo_mount_acl

linux kernel

denial of service

oops

nvd

security issue

kernel vulnerability

6.3 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

The tomoyo_mount_acl function in security/tomoyo/mount.c in the Linux kernel before 2.6.39.2 calls the kern_path function with arguments taken directly from a mount system call, which allows local users to cause a denial of service (OOPS) or possibly have unspecified other impact via a NULL value for the device name.

CPENameOperatorVersion
linux:linux_kernellinux linux kernellt2.6.39.2

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	lt	2.6.39.2

References

ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.2

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4e78c724d47e2342aa8fde61f6b8536f662f795f

marc.info/?l=bugtraq&m=139447903326211&w=2

www.openwall.com/lists/oss-security/2011/07/01/5

github.com/torvalds/linux/commit/4e78c724d47e2342aa8fde61f6b8536f662f795f

Social References

6.3 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2011-2518

seebug1 prion1 ubuntucve1 redhatcve1 openvas6 ubuntu3 nessus3 securityvulns2