Published: 17/05/2012 Updated: 13/02/2023

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 437

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

The mem_cgroup_usage_unregister_event function in mm/memcontrol.c in the Linux kernel prior to 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by registering memory threshold events.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
fedoraproject fedora 16
suse linux enterprise desktop 11
suse linux enterprise server 11
suse linux enterprise high availability extension 11

Several security issues were fixed in the kernel ...

CWE-476 https://github.com/torvalds/linux/commit/371528caec553785c37f73fa3926ea0de84f986f https://bugzilla.redhat.com/show_bug.cgi?id=800813 http://www.openwall.com/lists/oss-security/2012/03/07/3 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.10 http://secunia.com/advisories/48898 http://secunia.com/advisories/48964 https://exchange.xforce.ibmcloud.com/vulnerabilities/73711 http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075781.html http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=371528caec553785c37f73fa3926ea0de84f986f https://nvd.nist.gov https://usn.ubuntu.com/1422-1/

CVE-2012-1146

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect