CVE-2011-2695

CVSS v2.0 4.9 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 20

Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service (BUG_ON and system crash) by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.

Weaknesses

CWE-193: Off-by-one Error

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2011-07-28 22:55:02
(13 years ago)
Updated Date: 2023-02-13 00:18:56
(19 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	Up To
Linux Kernel prior 3.0 version	cpe:2.3:o:linux:linux_kernel	< 3.0
Linux Kernel 3.0	cpe:2.3:o:linux:linux_kernel:3.0:-
Linux Kernel 3.0 Rc1	cpe:2.3:o:linux:linux_kernel:3.0:rc1
Linux Kernel 3.0 Rc2	cpe:2.3:o:linux:linux_kernel:3.0:rc2
Linux Kernel 3.0 Rc3	cpe:2.3:o:linux:linux_kernel:3.0:rc3
Linux Kernel 3.0 Rc4	cpe:2.3:o:linux:linux_kernel:3.0:rc4