Vulnerabilities

CVE-2011-2525

by Fred · 01/02/2012

The qdisc_notify function in net/sched/sch_api.c in the Linux kernel before 2.6.35 does not prevent tc_fill_qdisc function calls referencing builtin (aka CQ_F_BUILTIN) Qdisc structures, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a crafted call.

Date published : 2012-02-01

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=53b0f08042f04813cd1a7473dacd3edfacb28eb3

http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.35

Similar

Tags: Cybersecurity Alert