Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4913

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2011-4913
Last Modified 11 May 2015 09:59:31
Published 21 Jun 2012 07:55:02
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4913

Summary

The rose_parse_ccitt function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 does not validate the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP fields, which allows remote attackers to (1) cause a denial of service (integer underflow, heap memory corruption, and panic) via a small length value in data sent to a ROSE socket, or (2) conduct stack-based buffer overflow attacks via a large length value in data sent to a ROSE socket.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.38

  • Linux Kernel 2.6.38.1

  • Linux Kernel 2.6.38.2

  • Linux Kernel 2.6.38.3

  • Linux Kernel 2.6.38.4

  • Linux Kernel 2.6.38.5

  • Linux Kernel 2.6.38.6

  • Linux Kernel 2.6.38.7

  • Linux Kernel 2.6.38.8


References

CONFIRM - https://github.com/torvalds/linux/commit/be20250c13f88375345ad99950190685eda51eb8

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=770777

MLIST - [oss-security] 20111227 Re: CVE request: kernel: multiple issues in ROSE

CONFIRM - http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=be20250c13f88375345ad99950190685eda51eb8

CONFIRM - http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39

SUSE - SUSE-SU-2015:0812


Last Updated: 27 May 2016 10:56:34