PT-2011-3359 · Linux+1 · Linux Kernel+1
Eugene Teo
·
Published
2011-06-01
·
Updated
2023-02-13
·
CVE-2011-1771
CVSS v2.0
4.4
Medium
| Vector | AV:L/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 2.6.39
Description
The issue is related to the cifs close function in the Linux kernel, which can cause a denial of service due to a NULL pointer dereference and BUG when the O DIRECT flag is set during an attempt to open a file on a CIFS filesystem. This could potentially have other unspecified impacts.
Recommendations
For Linux kernel versions prior to 2.6.39, update to version 2.6.39 or later to resolve the issue. As a temporary workaround, consider avoiding the use of the O DIRECT flag when opening files on a CIFS filesystem until the kernel is updated.
Exploit
Fix
DoS
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux Kernel
Red Hat