Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2012-2133

Опубликовано: 22 мар. 2012
Источник: redhat
CVSS2: 6.2

Описание

Use-after-free vulnerability in the Linux kernel before 3.3.6, when huge pages are enabled, allows local users to cause a denial of service (system crash) or possibly gain privileges by interacting with a hugetlbfs filesystem, as demonstrated by a umount operation that triggers improper handling of quota data.

Отчет

This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5. Future kernel updates for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux MRG 2 may address this issue.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 4kernelNot affected
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise MRG 1kernelNot affected
Red Hat Enterprise Linux 6kernelFixedRHSA-2012:142606.11.2012
Red Hat Enterprise Linux 6.2 EUS - Server and Compute Node OnlykernelFixedRHSA-2013:074116.04.2013
Red Hat Enterprise MRG 2kernel-rtFixedRHSA-2012:149104.12.2012

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=817430kernel: use after free bug in "quota" handling

6.2 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2012-2133

ubuntu
почти 13 лет назад

Use-after-free vulnerability in the Linux kernel before 3.3.6, when huge pages are enabled, allows local users to cause a denial of service (system crash) or possibly gain privileges by interacting with a hugetlbfs filesystem, as demonstrated by a umount operation that triggers improper handling of quota data.

nvd логотип

CVE-2012-2133

nvd
почти 13 лет назад

Use-after-free vulnerability in the Linux kernel before 3.3.6, when huge pages are enabled, allows local users to cause a denial of service (system crash) or possibly gain privileges by interacting with a hugetlbfs filesystem, as demonstrated by a umount operation that triggers improper handling of quota data.

debian логотип

CVE-2012-2133

debian
почти 13 лет назад

Use-after-free vulnerability in the Linux kernel before 3.3.6, when hu ...

github логотип

GHSA-gj53-vvfv-7vp2

github
около 3 лет назад

Use-after-free vulnerability in the Linux kernel before 3.3.6, when huge pages are enabled, allows local users to cause a denial of service (system crash) or possibly gain privileges by interacting with a hugetlbfs filesystem, as demonstrated by a umount operation that triggers improper handling of quota data.

oracle-oval логотип

ELSA-2012-2044

oracle-oval
больше 12 лет назад

ELSA-2012-2044: Unbreakable Enterprise kernel security update (MODERATE)

6.2 Medium

CVSS2