CVE-2011-1023 : The Reliable Datagram Sockets (RDS) subsystem in the Linux kernel before 2.6.38

The Reliable Datagram Sockets (RDS) subsystem in the Linux kernel before 2.6.38 does not properly handle congestion map updates, which allows local users to cause a denial of service (BUG_ON and system crash) via vectors involving (1) a loopback (aka loop) transmit operation or (2) an InfiniBand (aka ib) transmit operation.

Published 2012-06-21 23:55:02

Updated 2023-02-13 01:18:48

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2011-1023

Linux » Linux Kernel
Versions up to, including, (<=) 2.6.37.6
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37 Update RC1
cpe:2.3:o:linux:linux_kernel:2.6.37:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37 Update RC2
cpe:2.3:o:linux:linux_kernel:2.6.37:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37 Update RC3
cpe:2.3:o:linux:linux_kernel:2.6.37:rc3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37 Update RC4
cpe:2.3:o:linux:linux_kernel:2.6.37:rc4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37 Update RC5
cpe:2.3:o:linux:linux_kernel:2.6.37:rc5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37.5
cpe:2.3:o:linux:linux_kernel:2.6.37.5:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37.4
cpe:2.3:o:linux:linux_kernel:2.6.37.4:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37.3
cpe:2.3:o:linux:linux_kernel:2.6.37.3:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37.2
cpe:2.3:o:linux:linux_kernel:2.6.37.2:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37.1
cpe:2.3:o:linux:linux_kernel:2.6.37.1:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.37
cpe:2.3:o:linux:linux_kernel:2.6.37:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2011-1023

Top countries where our scanners detected CVE-2011-1023

Top open port discovered on systems with this issue 49152

IPs affected by CVE-2011-1023 2,404

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2011-1023!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2011-1023

EPSS FAQ

0.15%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 33 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2011-1023

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.9	MEDIUM	AV:L/AC:L/Au:N/C:N/I:N/A:C	3.9	6.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

References for CVE-2011-1023

https://bugzilla.redhat.com/show_bug.cgi?id=680345

680345 – (CVE-2011-1023) CVE-2011-1023 kernel: BUG_ON() in rds_send_xmit()
http://www.openwall.com/lists/oss-security/2011/03/03/2

oss-security - CVE-2011-1023 kernel: rds: prevent BUG_ON triggering on congestion map updates
https://github.com/torvalds/linux/commit/6094628bfd94323fc1cea05ec2c6affd98c18f7f

rds: prevent BUG_ON triggering on congestion map updates · torvalds/linux@6094628 · GitHub
Exploit;Patch
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6094628bfd94323fc1cea05ec2c6affd98c18f7f
http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38

404 Not Found

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2011-1023

Products affected by CVE-2011-1023

Threat overview for CVE-2011-1023

Exploit prediction scoring system (EPSS) score for CVE-2011-1023

CVSS scores for CVE-2011-1023

References for CVE-2011-1023