Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3209

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2011-3209
Last Modified 03 Oct 2012 12:00:00
Published 03 Oct 2012 07:02:56
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2011-3209

Summary

The div_long_long_rem implementation in include/asm-x86/div64.h in the Linux kernel before 2.6.26 on the x86 platform allows local users to cause a denial of service (Divide Error Fault and panic) via a clock_gettime system call.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.25.20


References

CONFIRM - http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f8bd2258e2d520dff28c855658bd24bdafb5102d

CONFIRM - https://github.com/torvalds/linux/commit/f8bd2258e2d520dff28c855658bd24bdafb5102d

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=732878

MLIST - [oss-security] 20111024 kernel; CVE-2011-2942 and CVE-2011-3209

CONFIRM - http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.26

Related Patches

Novell SUSE 2012:7915 kernel security update for SLE 10 SP4 x86_64

Novell SUSE 2012:7918 kernel security update for SLE 10 SP4 i586


Last Updated: 27 May 2016 10:57:36