CVE-2011-0695

CVSS v2.0 5.7 (Medium)

EPSS 0.56 % (78^th)

Affected Products 7

Advisories 13

Race condition in the cm_work_handler function in the InfiniBand driver (drivers/infiniband/core/cma.c) in Linux kernel 2.6.x allows remote attackers to cause a denial of service (panic) by sending an InfiniBand request while other request handlers are still running, which triggers an invalid pointer dereference.

Weaknesses

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2011-03-15 17:55:04
(13 years ago)
Updated Date: 2020-08-11 20:17:26
(4 years ago)

Affected Products

Canonical

Ubuntu Linux

Linux

Linux Kernel

Redhat

Configuration #1

		CPE23	From	Up To
	Linux Kernel from 2.6.0 version and 2.6.39.4 and prior versions	cpe:2.3:o:linux:linux_kernel	>= 2.6.0	<= 2.6.39.4

Configuration #2

		CPE23	From	Up To
	Redhat Enterprise Linux Desktop 5.0	cpe:2.3:o:redhat:enterprise_linux_desktop:5.0
	Redhat Enterprise Linux Eus 5.6	cpe:2.3:o:redhat:enterprise_linux_eus:5.6
	Redhat Enterprise Linux Server 5.0	cpe:2.3:o:redhat:enterprise_linux_server:5.0
	Redhat Enterprise Linux Server Aus 5.6	cpe:2.3:o:redhat:enterprise_linux_server_aus:5.6
	Redhat Enterprise Linux Workstation 5.0	cpe:2.3:o:redhat:enterprise_linux_workstation:5.0

Configuration #3

		CPE23	From	Up To
	Canonical Ubuntu Linux 8.04	cpe:2.3:o:canonical:ubuntu_linux:8.04:::*:-