PT-2011-4030 · Linux+1 · Linux Kernel+1

Eugene Teo

Publicado

2011-07-21

Atualizado

2023-02-13

CVE-2011-2689

CVSS v2.0

4.9

Média

Vetor

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.0-rc1

Description The issue allows local users to cause a denial of service, resulting in a system crash, by arranging for all resource groups to have too little free space. This is due to the gfs2 fallocate function in fs/gfs2/file.c not ensuring that the size of a chunk allocation is a multiple of the block size.

Recommendations For Linux kernel versions prior to 3.0-rc1, update to version 3.0-rc1 or later to resolve the issue. As a temporary workaround, consider restricting access to the gfs2 fallocate function to minimize the risk of exploitation.

Correção

DoS

Resource Exhaustion

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-400

Identificadores relacionados

CVE-2011-2689

RHSA-2011:1065

RHSA-2011:1189

RHSA-2011_1065

RHSA-2011_1189

USN-1211-1

USN-1212-1

USN-1256-1

Produtos afetados

Linux Kernel

Red Hat

PT-2011-4030 · Linux+1 · Linux Kernel+1

CVE-2011-2689

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 48