CVE-2011-4086

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.3.1 Linux (affected versions not specified)

Description The issue is related to the journal unmap buffer function in the Linux kernel, which does not properly handle certain buffer head states. This can be exploited by local users to cause a denial of service, resulting in a system crash, by leveraging the presence of an ext4 filesystem that was mounted with a journal. Additionally, there are multiple vulnerabilities in the Linux package that can lead to breaches of confidentiality, integrity, and availability of protected information.

Recommendations For Linux kernel versions prior to 3.3.1, update to version 3.3.1 or later to resolve the issue. At the moment, there is no information about a newer version that contains a fix for the multiple vulnerabilities in the Linux package.

Fix

DoS

Buffer Overflow

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-400

Related Identifiers

BDU:2015-01796

CESA-2012_0571

CVE-2011-4086

DSA-2469-1

RHSA-2012:0107

RHSA-2012:0571

RHSA-2012:0670

RHSA-2012_0107

RHSA-2012_0571

USN-1431-1

USN-1432-1

USN-1433-1

USN-1440-1

USN-1445-1

USN-1446-1

USN-1453-1

USN-1454-1

USN-1458-1

Affected Products

Centos

Linux Kernel

Red Hat

Suse

CVE-2011-4086

Weakness Enumeration

Related Identifiers

Affected Products

References · 36