Vulnerabilities

CVE-2011-2928

by Fred · 29/08/2011

The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) by accessing a long symlink on a malformed Be filesystem.

Date published : 2011-08-29

http://www.securityfocus.com/bid/49256

http://www.securityfocus.com/archive/1/519387/100/0/threaded

Similar

Tags: Cybersecurity Alert