CVE-2011-4131

2012-05-1700:00:00

ubuntu.com

4.6 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:H/Au:N/C:N/I:N/A:C

0.003 Low

EPSS

Percentile

64.7%

JSON

The NFSv4 implementation in the Linux kernel before 3.2.2 does not properly
handle bitmap sizes in GETACL replies, which allows remote NFS servers to
cause a denial of service (OOPS) by sending an excessive number of bitmap
words.

Bugs

Notes

Author	Note
jdstrand	e5012d1f3861d18c7f3814e757c1c3ab3741dbcd is incomplete http://www.spinics.net/lists/linux-nfs/msg25288.html is proposed patch
apw	http://www.spinics.net/lists/linux-nfs/msg25746.html implies the proposed patch needs further work, awaiting resubmission http://www.spinics.net/lists/linux-nfs/msg26023.html looks to be the fixed patch, waiting on feedback now upstream as bf118a342f10dafe44b14451a1392c3254629a1f
jj	removed original incomplete e5012d1f3861d18c7f3814e757c1c3ab3741dbcd as breakfix
jdstrand	too intrusive to backport. Requires connecting to malicious NFS v4 server

OSVersionArchitecturePackageVersionFilename
ubuntu11.04noarchlinux< 2.6.38-15.60UNKNOWN
ubuntu11.10noarchlinux< 3.0.0-21.35UNKNOWN
ubuntu10.04noarchlinux-lts-backport-natty< 2.6.38-15.60~lucid1UNKNOWN
ubuntu10.04noarchlinux-lts-backport-oneiric< 3.0.0-21.35~lucid1UNKNOWN
ubuntu11.04noarchlinux-ti-omap4< 2.6.38-1209.25UNKNOWN
ubuntu11.10noarchlinux-ti-omap4< 3.0.0-1211.23UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	11.04	noarch	linux	< 2.6.38-15.60	UNKNOWN
ubuntu	11.10	noarch	linux	< 3.0.0-21.35	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-natty	< 2.6.38-15.60~lucid1	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-oneiric	< 3.0.0-21.35~lucid1	UNKNOWN
ubuntu	11.04	noarch	linux-ti-omap4	< 2.6.38-1209.25	UNKNOWN
ubuntu	11.10	noarch	linux-ti-omap4	< 3.0.0-1211.23	UNKNOWN