1. Home
  2. Vulnerabilities
  3. CVE-2011-1082

CVE-2011-1082

CVSS v2.0 4.9 (Medium)
49% Progress
EPSS 0.04 % (10th)
0.04% Progress
Affected Products 1
Advisories 11
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for (1) closed loops or (2) deep chains, which allows local users to cause a denial of service (deadlock or stack memory consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.

Weaknesses
CWE-400
Uncontrolled Resource Consumption
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2011-04-04 12:27:57
(13 years ago)
Updated Date
2023-02-13 01:18:53
(19 months ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel prior 2.6.38 version cpe:2.3:o:linux:linux_kernel < 2.6.38