CVE-2011-1083

CVSS v2.0 4.9 (Medium)

EPSS 0.04 % (0^th)

Affected Products 6

Advisories 21

The epoll implementation in the Linux kernel 2.6.37.2 and earlier does not properly traverse a tree of epoll file descriptors, which allows local users to cause a denial of service (CPU consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.

Weaknesses

CWE-400: Uncontrolled Resource Consumption

Related CVEs

CVE-2012-3375

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2011-04-04 12:27:57
(13 years ago)
Updated Date: 2020-08-12 16:46:41
(4 years ago)

Affected Products

Linux

Linux Kernel

Redhat

Suse

Configuration #1

		CPE23	From	Up To
	Linux Kernel 2.6.37.2 and prior versions	cpe:2.3:o:linux:linux_kernel		<= 2.6.37.2

Configuration #2

		CPE23	From	Up To
	Suse Linux Enterprise Desktop 11 SP1	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1
	Suse Linux Enterprise Desktop 11 SP2	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2
	Suse Linux Enterprise Server 11 SP1 For	cpe:2.3:o:suse:linux_enterprise_server:11:sp1:::*:-
	Suse Linux Enterprise Server 11 SP1 for Vmware	cpe:2.3:o:suse:linux_enterprise_server:11:sp1:::*:vmware
	Suse Linux Enterprise Server 11 SP2 For	cpe:2.3:o:suse:linux_enterprise_server:11:sp2:::*:-
	Suse Linux Enterprise Server 11 SP2 for Vmware	cpe:2.3:o:suse:linux_enterprise_server:11:sp2:::*:vmware

Configuration #3

		CPE23	From	Up To
	Redhat Enterprise Linux Desktop 6.0	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
	Redhat Enterprise Linux Server 6.0	cpe:2.3:o:redhat:enterprise_linux_server:6.0
	Redhat Enterprise Linux Workstation 6.0	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0