CVE-2011-4131

EPSS 0.36%
Published 17.05.2012 11:00:33
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

The NFSv4 implementation in the Linux kernel before 3.2.2 does not properly handle bitmap sizes in GETACL replies, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words.

Affected products Warnungen 0 Metrics 2 CWE 0 References 14

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version3.2

Linux ≫ Linux Kernel Version3.2 Updaterc2

Linux ≫ Linux Kernel Version3.2 Updaterc3

Linux ≫ Linux Kernel Version3.2 Updaterc4

Linux ≫ Linux Kernel Version3.2 Updaterc5

Linux ≫ Linux Kernel Version3.2 Updaterc6

Linux ≫ Linux Kernel Version3.2 Updaterc7

Linux ≫ Linux Kernel Version3.2.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.36%	0.57

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.6	3.2	6.9	AV:A/AC:H/Au:N/C:N/I:N/A:C

http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html

http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html

http://rhn.redhat.com/errata/RHSA-2012-0862.html

http://secunia.com/advisories/48898

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.2

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=bf118a342f10dafe44b14451a1392c3254629a1f

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/081280.html

http://rhn.redhat.com/errata/RHSA-2012-1541.html

http://www.openwall.com/lists/oss-security/2011/11/12/1

https://bugzilla.redhat.com/show_bug.cgi?id=747106

https://github.com/torvalds/linux/commit/bf118a342f10dafe44b14451a1392c3254629a1f

https://nvd.nist.gov/vuln/detail/CVE-2011-4131

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-4131

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-4131

EUVD