CVE-2011-4077: Buffer Overflow
First published: Wed Oct 26 2011(Updated: )
A flaw was found in the way Linux kernel's XFS filesystem implementation handled links with pathname larger than MAXPATHLEN. When CONFIG_XFS_DEBUG configuration option was not enabled when compiling Linux kernel, an attacker able to mount malicious XFS image could use this flaw to crash the system, or potentially, elevate his privileges on that system. Proposed upstream patch: <a href="http://oss.sgi.com/archives/xfs/2011-10/msg00345.html">http://oss.sgi.com/archives/xfs/2011-10/msg00345.html</a>
Credit: secalert@redhat.com secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | =2.6.0 | |
| Linux Linux kernel | >=2.6.12<3.0.11 | |
| Linux Linux kernel | >=3.1<3.1.5 | |
| debian/linux-2.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2011/10/26/1
- https://bugzilla.redhat.com/show_bug.cgi?id=749156
- http://oss.sgi.com/archives/xfs/2011-10/msg00345.html
- http://xorl.wordpress.com/2011/12/07/cve-2011-4077-linux-kernel-xfs-readlink-memory-corruption/
- http://www.openwall.com/lists/oss-security/2011/10/26/3
- http://secunia.com/advisories/48964
- http://marc.info/?l=bugtraq&m=139447903326211&w=2
- http://marc.info/?l=bugtraq&m=139447903326211&w=2
- https://launchpad.net/bugs/cve/CVE-2011-4077
- https://rhn.redhat.com/errata/RHSA-2012-0007.html
- https://rhn.redhat.com/errata/RHSA-2012-0350.html
- https://rhn.redhat.com/errata/RHSA-2012-0333.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=749166
- http://oss.sgi.com/cgi-bin/gitweb.cgi?p=xfs/xfs.git;a=commitdiff;h=b52a360b2aa1c59ba9970fb0f52bbb093fcc7a24
- https://security-tracker.debian.org/tracker/CVE-2011-4077
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4077
- https://nvd.nist.gov/vuln/detail/CVE-2011-4077
- https://ubuntu.com/security/CVE-2011-4077
- collector/nvd-historical
- collector/nvd-index
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-4077
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/softwarecombine
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- collector/nvd-cve
- source/NVD
- agent/description
- agent/author
- agent/severity
- agent/references
- agent/weakness
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/usn-cve
- source/Ubuntu
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/2.6.0
- version/linux linux kernel/2.6.12
- version/linux linux kernel/3.1
- package-manager/debian