PT-2011-3669 · Linux+1 · Linux Kernel+1

Andrea Righi

Published

2011-08-23

Updated

2023-02-13

CVE-2011-2183

CVSS v2.0

4.0

Medium

Vector

AV:L/AC:H/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.39.3

Description A race condition exists in the scan get next rmap item function in mm/ksm.c when Kernel SamePage Merging (KSM) is enabled. This issue allows local users to cause a denial of service, potentially resulting in a NULL pointer dereference, or possibly have other unspecified impacts via a crafted application.

Recommendations For Linux kernel versions prior to 2.6.39.3, update to version 2.6.39.3 or later to resolve the issue. As a temporary workaround, consider disabling Kernel SamePage Merging (KSM) until a patch is available.

Exploit

Fix

DoS

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

CVE-2011-2183

DSA-2389-1

RHSA-2011:1189

RHSA-2011:1253

RHSA-2011_1189

USN-1203-1

USN-1208-1

USN-1216-1

USN-1218-1

USN-1244-1

USN-1272-1

USN-1278-1

USN-1279-1

USN-1281-1

USN-1285-1

Affected Products

Linux Kernel

Red Hat

PT-2011-3669 · Linux+1 · Linux Kernel+1

CVE-2011-2183

Weakness Enumeration

Related Identifiers

Affected Products

References · 22