CVE-2011-4112: Null Pointer Dereference
First published: Tue Jul 26 2011(Updated: )
The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFF_TX_SKB_SHARING flag, which allows local users to cause a denial of service (panic) by leveraging the CAP_NET_ADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction with a bridge device for a VLAN interface.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux kernel | <3.1 | |
| Avaya 9608 | >=6.0<=6.6.0 | |
| Avaya 9608 Firmware | ||
| Avaya 9608G Firmware | >=6.0<=6.6.0 | |
| Avaya 9608G | ||
| Avaya 9611G Firmware | >=6.0<=6.6.0 | |
| Avaya 9611G Firmware | ||
| Avaya 9621G Firmware | >=6.0<=6.6.0 | |
| Avaya 9621G | ||
| Avaya 9641G | >=6.0<=6.6.0 | |
| Avaya 9641G | ||
| Avaya 9641GS | >=6.0<=6.6.0 | |
| Avaya 9641GS Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1
- https://bugzilla.redhat.com/show_bug.cgi?id=751006
- http://www.openwall.com/lists/oss-security/2011/11/21/4
- https://github.com/torvalds/linux/commit/550fd08c2cebad61c548def135f67aba284c6162
- http://downloads.avaya.com/css/P8/documents/100156038
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=550fd08c2cebad61c548def135f67aba284c6162
- https://www.cve.org/CVERecord?id=CVE-2011-4112 https://nvd.nist.gov/vuln/detail/CVE-2011-4112
- https://access.redhat.com/security/cve/CVE-2011-4112
- http://git.kernel.org/linus/550fd08c2cebad61c548def135f67aba284c6162
- http://git.kernel.org/linus/d8873315065f1f527c7c380402cf59b1e1d0ae36
- http://www.openwall.com/lists/oss-security/2011/11/24/3
Frequently Asked Questions
What is the severity of CVE-2011-4112?
CVE-2011-4112 has been classified as a moderate severity vulnerability due to its potential for denial of service.
How do I fix CVE-2011-4112?
To fix CVE-2011-4112, upgrade the Linux kernel to version 3.1 or later.
Which software versions are affected by CVE-2011-4112?
CVE-2011-4112 affects the Linux kernel versions prior to 3.1 and specific Avaya 9608, 9608G, 9611G, 9621G, 9641G, and 9641GS firmware versions between 6.0 and 6.6.0.
What causes the vulnerability in CVE-2011-4112?
CVE-2011-4112 is caused by improper restriction of the IFF_TX_SKB_SHARING flag in the net subsystem of the Linux kernel.
Can CVE-2011-4112 lead to a system compromise?
CVE-2011-4112 does not lead to system compromise but can cause a denial of service through a kernel panic.
- collector/redhat-cve
- agent/type
- agent/remedy
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-4112
- agent/event
- agent/trending
- agent/source
- collector/nvd-historical
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- vendor/linux
- canonical/linux kernel
- vendor/avaya
- canonical/avaya 9608
- version/avaya 9608/6.0
- version/avaya 9608/6.6.0
- canonical/avaya 9608 firmware
- canonical/avaya 9608g firmware
- version/avaya 9608g firmware/6.0
- version/avaya 9608g firmware/6.6.0
- canonical/avaya 9608g
- canonical/avaya 9611g firmware
- version/avaya 9611g firmware/6.0
- version/avaya 9611g firmware/6.6.0
- canonical/avaya 9621g firmware
- version/avaya 9621g firmware/6.0
- version/avaya 9621g firmware/6.6.0
- canonical/avaya 9621g
- canonical/avaya 9641g
- version/avaya 9641g/6.0
- version/avaya 9641g/6.6.0
- canonical/avaya 9641gs
- version/avaya 9641gs/6.0
- version/avaya 9641gs/6.6.0
- canonical/avaya 9641gs firmware