Vulnerability Details : CVE-2011-2689
The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure that the size of a chunk allocation is a multiple of the block size, which allows local users to cause a denial of service (BUG and system crash) by arranging for all resource groups to have too little free space.
Vulnerability category: Denial of service
Products affected by CVE-2011-2689
- cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.0:-:*:*:*:*:*:*
Threat overview for CVE-2011-2689
Top countries where our scanners detected CVE-2011-2689
Top open port discovered on systems with this issue
49152
IPs affected by CVE-2011-2689 67
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2011-2689!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2011-2689
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 14 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-2689
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.9
|
MEDIUM | AV:L/AC:L/Au:N/C:N/I:N/A:C |
3.9
|
6.9
|
NIST |
CWE ids for CVE-2011-2689
-
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-2689
-
http://securitytracker.com/id?1025776
Linux Kernel GFS2 Allocation Error Lets Local Users Deny Service - SecurityTrackerThird Party Advisory;VDB Entry
-
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6905d9e4dda6112f007e9090bca80507da158e63
-
https://bugzilla.redhat.com/show_bug.cgi?id=720861
720861 – (CVE-2011-2689) CVE-2011-2689 kernel: gfs2: make sure fallocate bytes is a multiple of blksizeIssue Tracking;Patch;Third Party Advisory
-
http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc1
404: File not foundBroken Link
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/68557
Linux Kernel GFS2 denial of service CVE-2011-2689 Vulnerability ReportThird Party Advisory;VDB Entry
-
http://rhn.redhat.com/errata/RHSA-2011-1065.html
RHSA-2011:1065 - Security Advisory - Red Hat Customer PortalThird Party Advisory
-
http://www.openwall.com/lists/oss-security/2011/07/13/1
oss-security - CVE-2011-2689 kernel: gfs2: make sure fallocate bytes is a multiple of blksizeMailing List;Patch;Third Party Advisory
-
http://www.securityfocus.com/bid/48677
Linux Kernel GFS2 'fs/gfs2/file.c' Local Denial of Service VulnerabilityThird Party Advisory;VDB Entry
-
http://marc.info/?l=bugtraq&m=139447903326211&w=2
'[security bulletin] HPSBGN02970 rev.1 - HP Rapid Deployment Pack (RDP) or HP Insight Control Server ' - MARCThird Party Advisory
Jump to