Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2011-2928

Published: 29/08/2011 Updated: 13/02/2023
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
VMScore: 437
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Linux

Vulnerability Summary

The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel prior to 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) by accessing a long symlink on a malformed Be filesystem.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel 3.1

linux linux kernel

Vendor Advisories

Debian Security Advisories: DSA-2310-1 linux-2.6 -- privilege escalation/denial of service/information leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leak The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-4067 Rafael Dominguez Vega of MWR InfoSecurity reported an issue in the auerswald module, a driver for ...
Debian Security Advisories: DSA-2303-2 linux-2.6 -- privilege escalation/denial of service/information leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-1020 Kees Cook discovered an issue in the /proc filesystem that allows local users to gain access to sensitive process in ...
Ubuntu Security Notice: linux-mvl-dove vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-fsl-imx51 vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-ti-omap4 vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux vulnerabilities
Multiple kernel flaws have been fixed ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-lts-backport-maverick vulnerabilities
Multiple kernel flaws have been fixed ...
Ubuntu Security Notice: linux-lts-backport-natty vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-ti-omap4 vulnerabilities
Multiple kernel flaws have been fixed ...
Ubuntu Security Notice: linux-ec2 vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux vulnerabilities
Multiple kernel flaws have been fixed ...
Ubuntu Security Notice: linux-mvl-dove vulnerabilities
Several security issues were fixed in the kernel ...

References

CWE-476http://www.openwall.com/lists/oss-security/2011/08/19/5http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.1-rc3http://www.securityfocus.com/bid/49256http://www.pre-cert.de/advisories/PRE-SA-2011-06.txthttp://www.openwall.com/lists/oss-security/2011/08/19/1http://securityreason.com/securityalert/8360https://exchange.xforce.ibmcloud.com/vulnerabilities/69343http://www.securityfocus.com/archive/1/519387/100/0/threadedhttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=338d0f0a6fbc82407864606f5b64b75aeb3c70f2https://nvd.nist.govhttps://www.debian.org/security/./dsa-2310https://usn.ubuntu.com/1240-1/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525CVE-2024-4652CVE-2024-1438CVE-2024-4671CVE-2024-34351arbitrary CVE-2024-4650SQL injectionoverflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook