CVE-2011-1581: Input Validation
First published: Wed Apr 13 2011(Updated: )
Backport of upstream commit: fd0e435b0fe85622f167b84432552885a4856ac8 bonding: Incorrect TX queue offset By default bonding only allocates 16 queues. This patch will prevent devices that have more than 16 receive queues (82599 has 128) from blowing out the tx queue index for the bonding device. For proper queue allocation, in the bonding driver and down to the devices, they should probably add the following line to one of the files in /etc/modprobe.d/ options bonding tx_queues=N where N>= number of processors that show up in /proc/cpuinfo.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/linux-2.6 | ||
| Linux kernel | <2.6.39 | |
| Linux Kernel | <2.6.39 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=696029
- http://securitytracker.com/id?1025558
- http://openwall.com/lists/oss-security/2011/04/13/4
- http://openwall.com/lists/oss-security/2011/04/13/16
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fd0e435b0fe85622f167b84432552885a4856ac8
- https://launchpad.net/bugs/cve/CVE-2011-1581
- https://rhn.redhat.com/errata/RHSA-2011-0542.html
- https://security-tracker.debian.org/tracker/CVE-2011-1581
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1581
- https://nvd.nist.gov/vuln/detail/CVE-2011-1581
- https://ubuntu.com/security/CVE-2011-1581
Frequently Asked Questions
What is the severity of CVE-2011-1581?
CVE-2011-1581 is classified as a moderate severity vulnerability affecting the Linux kernel.
How do I fix CVE-2011-1581?
To fix CVE-2011-1581, you should update the Linux kernel to version 2.6.39 or later that includes the patch.
What systems are affected by CVE-2011-1581?
CVE-2011-1581 affects Linux kernel versions up to 2.6.39 that utilize bonding with a limited number of transmit queues.
What is the impact of CVE-2011-1581?
The impact of CVE-2011-1581 can lead to incorrect transmission queue handling, causing potential network performance issues.
Is there a workaround for CVE-2011-1581?
A temporary workaround for CVE-2011-1581 may involve limiting the number of receive queues on affected devices until a kernel update is applied.
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-1581
- agent/type
- agent/author
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/weakness
- agent/severity
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/remedy
- agent/references
- agent/softwarecombine
- agent/description
- agent/event
- agent/last-modified-date
- agent/trending
- agent/source
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- package-manager/debian
- vendor/linux
- canonical/linux kernel