CVE-2011-3149 in Linux-PAM
Summary
The _expand_arg function in the pam_env module (modules/pam_env/pam_env.c) in Linux-PAM (aka pam) before 1.1.5 does not properly handle when environment variable expansion can overflow, which allows local users to cause a denial of service (CPU consumption).
If you want to get best quality of vulnerability data, you may have to visit VulDB.