CVE-2011-2496

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.39 kernel-kdumppae (affected versions not specified)

Description The issue is related to an integer overflow in the Linux kernel, specifically in the vma to resize function in mm/mremap.c, which can be exploited by local users to cause a denial of service, resulting in a system crash. Additionally, there are multiple vulnerabilities in the kernel-kdumppae package of SUSE Linux Enterprise that can be exploited remotely, potentially leading to a disruption of protected information.

Recommendations For Linux kernel versions prior to 2.6.39, update to version 2.6.39 or later to resolve the issue. For kernel-kdumppae, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-189

Related Identifiers

BDU:2015-04607

CVE-2011-2496

DSA-2303-1

DSA-2310-1

RHSA-2011:1253

RHSA-2011:1350

RHSA-2011:1386

RHSA-2011_1350

RHSA-2011_1386

USN-1167-1

USN-1241-1

USN-1256-1

USN-1268-1

USN-1269-1

USN-1272-1

USN-1274-1

USN-1278-1

USN-1280-1

USN-1281-1

USN-1286-1

Affected Products

Linux Kernel

Red Hat

Kernel-Kdumppae

CVE-2011-2496

Weakness Enumeration

Related Identifiers

Affected Products

References · 28