What is the severity of CVE-2011-4110?

CVE-2011-4110 is classified as a medium severity vulnerability due to its potential to crash the system when exploited by an unprivileged user.

How do I fix CVE-2011-4110?

To fix CVE-2011-4110, update the Linux kernel to versions 2.6.18-274.12.1.el5, 2.6.32-220.el6, or other remedial versions listed for your Linux distribution.

Which systems are affected by CVE-2011-4110?

CVE-2011-4110 affects specific versions of the Linux kernel including 2.6.18, 2.6.32, and others as indicated in the vulnerability details.

Can CVE-2011-4110 be exploited remotely?

No, CVE-2011-4110 requires local access because it involves an unprivileged local user exploiting the flaw.

What type of vulnerability is CVE-2011-4110?

CVE-2011-4110 is a denial of service vulnerability that impacts the stability of the Linux kernel.

Vulnerability/
CVE-2011-4110

low

2.1

CWE

476 264

4/11/2011

15/11/2011

27/1/2012

21/11/2024

CVE-2011-4110: Null Pointer Dereference

First published: Fri Nov 04 2011(Updated: )

A flaw was found in the way Linux kernel handled user-defined key types. An unprivileged local user could use this flaw to crash the system. Reference: <a href="https://lkml.org/lkml/2011/11/15/363">https://lkml.org/lkml/2011/11/15/363</a>

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
redhat/kernel	<0:2.6.18-274.12.1.el5	0:2.6.18-274.12.1.el5
redhat/kernel	<0:2.6.32-220.el6	0:2.6.32-220.el6
redhat/kernel	<0:2.6.32-131.25.1.el6	0:2.6.32-131.25.1.el6
redhat/kernel-rt	<0:2.6.33.9-rt31.79.el6	0:2.6.33.9-rt31.79.el6
redhat/kernel-rt	<0:3.0.18-rt34.53.el6	0:3.0.18-rt34.53.el6
debian/linux-2.6
Linux kernel	=2.6
Linux Kernel	=2.6

Remedy

https://bugzilla.redhat.com/show_bug.cgi?id=751297

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is the severity of CVE-2011-4110?
CVE-2011-4110 is classified as a medium severity vulnerability due to its potential to crash the system when exploited by an unprivileged user.
How do I fix CVE-2011-4110?
To fix CVE-2011-4110, update the Linux kernel to versions 2.6.18-274.12.1.el5, 2.6.32-220.el6, or other remedial versions listed for your Linux distribution.
Which systems are affected by CVE-2011-4110?
CVE-2011-4110 affects specific versions of the Linux kernel including 2.6.18, 2.6.32, and others as indicated in the vulnerability details.
Can CVE-2011-4110 be exploited remotely?
No, CVE-2011-4110 requires local access because it involves an unprivileged local user exploiting the flaw.
What type of vulnerability is CVE-2011-4110?
CVE-2011-4110 is a denial of service vulnerability that impacts the stability of the Linux kernel.

collector/redhat-cve
agent/type
collector/launchpad-cve
source/Launchpad
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2011-4110
agent/author
agent/first-publish-date
agent/weakness
agent/severity
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
collector/mitre-cve
source/MITRE
collector/usn-cve
source/Ubuntu
agent/references
agent/remedy
agent/softwarecombine
agent/description
agent/event
agent/last-modified-date
agent/trending
agent/source
agent/tags
collector/nvd-cve
source/NVD
agent/software-canonical-lookup-request
collector/nvd-historical
collector/nvd-index
package-manager/redhat
package-manager/debian
vendor/linux
canonical/linux kernel
version/linux kernel/2.6