CVE-2011-1082

2011-04-0400:00:00

ubuntu.com

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

EPSS

Percentile

9.7%

JSON

fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file
descriptors within other epoll data structures without properly checking
for (1) closed loops or (2) deep chains, which allows local users to cause
a denial of service (deadlock or stack memory consumption) via a crafted
application that makes epoll_create and epoll_ctl system calls.

Bugs

<https://launchpad.net/bugs/820029>

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchlinux< 2.6.32-31.60UNKNOWN
ubuntu10.10noarchlinux< 2.6.35-29.51UNKNOWN
ubuntu11.04noarchlinux< 2.6.38-6.33UNKNOWN
ubuntu10.04noarchlinux-ec2< 2.6.32-315.28UNKNOWN
ubuntu10.04noarchlinux-fsl-imx51< 2.6.31-610.27UNKNOWN
ubuntu10.04noarchlinux-lts-backport-maverick< 2.6.35-30.54~lucid1UNKNOWN
ubuntu10.04noarchlinux-mvl-dove< 2.6.32-216.33UNKNOWN
ubuntu10.10noarchlinux-mvl-dove< 2.6.32-416.33UNKNOWN
ubuntu10.10noarchlinux-ti-omap4< 2.6.35-903.23UNKNOWN
ubuntu11.04noarchlinux-ti-omap4< 2.6.38-1204.5UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	linux	< 2.6.32-31.60	UNKNOWN
ubuntu	10.10	noarch	linux	< 2.6.35-29.51	UNKNOWN
ubuntu	11.04	noarch	linux	< 2.6.38-6.33	UNKNOWN
ubuntu	10.04	noarch	linux-ec2	< 2.6.32-315.28	UNKNOWN
ubuntu	10.04	noarch	linux-fsl-imx51	< 2.6.31-610.27	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-maverick	< 2.6.35-30.54~lucid1	UNKNOWN
ubuntu	10.04	noarch	linux-mvl-dove	< 2.6.32-216.33	UNKNOWN
ubuntu	10.10	noarch	linux-mvl-dove	< 2.6.32-416.33	UNKNOWN
ubuntu	10.10	noarch	linux-ti-omap4	< 2.6.35-903.23	UNKNOWN
ubuntu	11.04	noarch	linux-ti-omap4	< 2.6.38-1204.5	UNKNOWN