Published: 19/02/2011 Updated: 11/03/2011

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel module in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions does not properly handle errors, which allows malicious users to cause a denial of service via unknown vectors. NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openafs openafs 1.4.14
openafs openafs 1.4.12
openafs openafs 1.4.7

Two vulnerabilities were discovered the distributed filesystem AFS: CVE-2011-0430 Andrew Deason discovered that a double free in the Rx server process could lead to denial of service or the execution of arbitrary code CVE-2011-0431 It was discovered that insufficient error handling in the kernel module could lead to denial of servi ...

CWE-20 http://secunia.com/advisories/43407 http://secunia.com/advisories/43371 http://www.debian.org/security/2011/dsa-2168 http://www.vupen.com/english/advisories/2011/0411 http://www.securityfocus.com/bid/46428 http://www.vupen.com/english/advisories/2011/0410 http://www.securitytracker.com/id?1025095 https://nvd.nist.gov https://www.debian.org/security/./dsa-2168

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-0431

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect