CVE-2011-2695

CVSS v2.0

4.9

Medium

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.0-rc5

Description The issue is related to multiple off-by-one errors in the ext4 subsystem of the Linux kernel. These errors allow local users to cause a denial of service, resulting in a system crash, by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.

Recommendations For Linux kernel versions prior to 3.0-rc5, update to version 3.0-rc5 or later to resolve the issue.

Exploit

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-193

Related Identifiers

CVE-2011-2695

RHSA-2011:1189

RHSA-2011:1253

RHSA-2011:1386

RHSA-2011_1189

RHSA-2011_1386

USN-1228-1

USN-1239-1

USN-1240-1

USN-1241-1

USN-1242-1

USN-1243-1

USN-1244-1

USN-1245-1

USN-1246-1

USN-1253-1

USN-1256-1

Affected Products

Linux Kernel

Red Hat

CVE-2011-2695

Weakness Enumeration

Related Identifiers

Affected Products

References · 76