CVE-2011-1593

CVSS v2.0 4.9 (Medium)

EPSS 0.04 % (11^th)

Affected Products 8

Advisories 15

Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service (system crash) via a crafted (1) getdents or (2) XXXXXXX system call.

Weaknesses

CWE-190: Integer Overflow or Wraparound

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2011-05-03 20:55:08
(13 years ago)
Updated Date: 2023-02-13 01:19:24
(19 months ago)

Affected Products

Canonical

Ubuntu Linux

Linux

Linux Kernel

Redhat

Configuration #1

		CPE23	From	Up To
	Linux Kernel prior 2.6.38.4 version	cpe:2.3:o:linux:linux_kernel		< 2.6.38.4

Configuration #2

		CPE23	From	Up To
	Redhat Enterprise Linux 5.0	cpe:2.3:o:redhat:enterprise_linux:5.0
	Redhat Enterprise Linux Aus 5.6	cpe:2.3:o:redhat:enterprise_linux_aus:5.6
	Redhat Enterprise Linux Desktop 5.0	cpe:2.3:o:redhat:enterprise_linux_desktop:5.0
	Redhat Enterprise Linux Eus 5.6	cpe:2.3:o:redhat:enterprise_linux_eus:5.6
	Redhat Enterprise Linux Server 5.0	cpe:2.3:o:redhat:enterprise_linux_server:5.0
	Redhat Enterprise Linux Workstation 5.0	cpe:2.3:o:redhat:enterprise_linux_workstation:5.0

Configuration #3

		CPE23	From	Up To
	Canonical Ubuntu Linux 8.04	cpe:2.3:o:canonical:ubuntu_linux:8.04:::*:lts