CVE-2011-1083
CVE-2011-1083
The epoll implementation in the Linux kernel 2.6.37.2 and earlier does not properly traverse a tree of epoll file descriptors, which allows local users to cause a denial of service (CPU consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://article.gmane.org/gmane.linux.kernel/1105744http://article.gmane.org/gmane.linux.kernel/1105888http://article.gmane.org/gmane.linux.kernel/1106686http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.htmlhttp://lists.opensuse.org/opensuse-security-announce/2012-05/msg00013.htmlhttp://openwall.com/lists/oss-security/2011/03/02/1http://openwall.com/lists/oss-security/2011/03/02/2http://rhn.redhat.com/errata/RHSA-2012-0862.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=681578http://secunia.com/advisories/43522http://secunia.com/advisories/48115http://secunia.com/advisories/48410