CVE-2011-1581

2011-05-2600:00:00

ubuntu.com

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

0.014 Low

EPSS

Percentile

86.3%

JSON

The bond_select_queue function in drivers/net/bonding/bond_main.c in the
Linux kernel before 2.6.39, when a network device with a large number of
receive queues is installed but the default tx_queues setting is used, does
not properly restrict queue indexes, which allows remote attackers to cause
a denial of service (BUG and system crash) or possibly have unspecified
other impact by sending network traffic.

Bugs

<https://launchpad.net/bugs/792312>

OSVersionArchitecturePackageVersionFilename
ubuntu11.04noarchlinux< 2.6.38-11.47UNKNOWN
ubuntu10.04noarchlinux-lts-backport-natty< 2.6.38-11.49~lucid1UNKNOWN
ubuntu11.04noarchlinux-ti-omap4< 2.6.38-1209.15UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	11.04	noarch	linux	< 2.6.38-11.47	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-natty	< 2.6.38-11.49~lucid1	UNKNOWN
ubuntu	11.04	noarch	linux-ti-omap4	< 2.6.38-1209.15	UNKNOWN