Lucene search

K

[email protected]NVD:CVE-2011-3619

HistoryJun 08, 2013 - 1:05 p.m.

CVE-2011-3619

2013-06-0813:05:55

CWE-20

[email protected]

web.nvd.nist.gov

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

The apparmor_setprocattr function in security/apparmor/lsm.c in the Linux kernel before 3.0 does not properly handle invalid parameters, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact by writing to a /proc/#####/attr/current file.

Affected configurations

NVD

Node

linuxlinux_kernelRange≤3.0rc7

OR

linuxlinux_kernelMatch3.0rc1

OR

linuxlinux_kernelMatch3.0rc2

OR

linuxlinux_kernelMatch3.0rc3

OR

linuxlinux_kernelMatch3.0rc4

OR

linuxlinux_kernelMatch3.0rc5

OR

linuxlinux_kernelMatch3.0rc6

References

ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a5b2c5b2ad5853591a6cac6134cd0f599a720865

www.openwall.com/lists/oss-security/2011/10/17/6

github.com/torvalds/linux/commit/a5b2c5b2ad5853591a6cac6134cd0f599a720865

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

Related for NVD:CVE-2011-3619

seebug1 ubuntucve1 cvelist1 cve1 prion1 redhatcve1 nessus8 openvas10 ubuntu6