Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2011-4110

Опубликовано: 15 нояб. 2011
Источник: redhat
CVSS2: 4.9
EPSS Низкий

Описание

The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."

Отчет

This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1530.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 4kernelAffected
Red Hat Enterprise Linux 5kernelFixedRHSA-2011:147929.11.2011
Red Hat Enterprise Linux 6kernelFixedRHSA-2011:153005.12.2011
Red Hat Enterprise Linux 6.1 EUS - Server OnlykernelFixedRHSA-2012:011615.02.2012
Red Hat Enterprise MRG 2kernel-rtFixedRHSA-2012:001010.01.2012
Red Hat Enterprise MRG 2kernel-rtFixedRHSA-2012:033323.02.2012

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-476
https://bugzilla.redhat.com/show_bug.cgi?id=751297kernel: keys: NULL pointer deref in the user-defined key type

EPSS

Процентиль: 34%
0.00138
Низкий

4.9 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2011-4110

ubuntu
больше 13 лет назад

The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."

nvd логотип

CVE-2011-4110

nvd
больше 13 лет назад

The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."

debian логотип

CVE-2011-4110

debian
больше 13 лет назад

The user_update function in security/keys/user_defined.c in the Linux ...

github логотип

GHSA-6cq9-237h-c3vq

github
больше 3 лет назад

The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."

oracle-oval логотип

ELSA-2011-1530

oracle-oval
почти 14 лет назад

ELSA-2011-1530: Oracle Linux 6 kernel security, bug fix and enhancement update (MODERATE)

EPSS

Процентиль: 34%
0.00138
Низкий

4.9 Medium

CVSS2