CVE Reference: CVE-2011-0695

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2011-0695

Description:
Race condition in the cm_work_handler function in the InfiniBand driver (drivers/infiniband/core/cma.c) in Linux kernel 2.6.x allows remote attackers to cause a denial of service (panic) by sending an InfiniBand request while other request handlers are still running, which triggers an invalid pointer dereference.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/66056

UBUNTU
  http://www.ubuntu.com/usn/USN-1146-1

SAID
  Secunia Advisory: SA43693

REDHAT
  http://rhn.redhat.com/errata/RHSA-2011-0927.html

MLIST
  http://www.openwall.com/lists/oss-security/2011/03/11/1
  http://www.spinics.net/lists/linux-rdma/msg07448.html
  http://www.spinics.net/lists/linux-rdma/msg07447.html

BID
  46839


Return to the previous page.