NVD

Id
9432  
Name
CVE-2011-2695  
Description
Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service (BUG_ON and system crash) by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.  
Reject
 
CVSS Version
2  
CVSS Score
4.9  
Severity
Medium  
CVSS Base Score
4.9  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:N/I:N/A:C)  
Pub Date
2017-01-07  
Published
2011-07-28  
Modified Date
2012-03-19  
Seq
2011-2695  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
53830 9432 CVE-2011-2695 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f17722f917b2f21497deb6edc62fb1683daa08e6  View
53831 9432 CVE-2011-2695 http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc5  View
53832 9432 CVE-2011-2695 [oss-security] 20110715 CVE Request -- kernel: ext4: kernel panic when writing data to the last block of sparse file  View
53833 9432 CVE-2011-2695 [oss-security] 20110715 Re: CVE Request -- kernel: ext4: kernel panic when writing data to the last block of sparse file  View
53834 9432 CVE-2011-2695 [linux-ext4] 20110603 [PATCH 1/2] ext4: Fix max file size and logical block counting of extent format file  View
53835 9432 CVE-2011-2695 https://bugzilla.redhat.com/show_bug.cgi?id=722557  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
34538 JVNDB-2011-004780 Linux kernel の ext4 サブシステムにおけるサービス運用妨害 (DoS) 脆弱性 Linux kernel の ext4 サブシステムには、一つずれエラーにより、サービス運用妨害 (BUG_ON およびシステムクラッシュ) 状態となる脆弱性が存在します。 CVE-2011-2695 50602 CVE-2011-2695 9432 4.9 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-004780.html 2011-07-28 2012-03-27 View