#VU45145 Resource exhaustion in Linux kernel - CVE-2011-1082
Published: April 4, 2011 / Updated: August 11, 2020
Vulnerability identifier: #VU45145
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Green
CVE-ID: CVE-2011-1082
CWE-ID: CWE-400
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vulnerable software:
Linux kernel
Linux kernel
Software vendor:
Linux Foundation
Linux Foundation
Description
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for (1) closed loops or (2) deep chains, which allows local users to cause a denial of service (deadlock or stack memory consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.
Remediation
Install update from vendor's website.
External links
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=22bacca48a1755f79b7e0f192ddb9fbb7fc6e64e
- http://openwall.com/lists/oss-security/2011/03/02/1
- http://openwall.com/lists/oss-security/2011/03/02/2
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38
- https://bugzilla.redhat.com/show_bug.cgi?id=681575
- https://lkml.org/lkml/2011/2/5/220