CVE-2011-1090 in Kernelinfo

Summary

The __nfs4_proc_set_acl function in fs/nfs/nfs4proc.c in the Linux kernel before 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service (panic) via a crafted attempt to set an ACL.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

02/24/2011

Disclosure

05/09/2011

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-399 (Confirmed)

CVSS

6.2

EPSS

0.00068

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1090
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1090
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1090/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!