1. Home
  2. Vulnerabilities
  3. CVE-2011-4077

CVE-2011-4077

CVSS v2.0 6.9 (Medium)
69% Progress
EPSS 0.04 % (5th)
0.04% Progress
Affected Products 1
Advisories 34
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c in XFS in the Linux kernel 2.6, when CONFIG_XFS_DEBUG is disabled, allows local users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via an XFS image containing a symbolic link with a long pathname.

Weaknesses
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2012-01-27 15:55:04
(12 years ago)
Updated Date
2023-07-27 15:21:12
(13 months ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel from 2.6.12 version and prior 3.0.11 version cpe:2.3:o:linux:linux_kernel >= 2.6.12 < 3.0.11
  Linux Kernel from 3.1 version and prior 3.1.5 version cpe:2.3:o:linux:linux_kernel >= 3.1 < 3.1.5