CVE-2011-1137
published 2011-03-11CVE-2011-1137: Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service (memory consumption…
PriorityP338medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
28.07%
97.9th percentile
Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service (memory consumption leading to OOM kill) via a malformed SSH message.
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | proftpd-dfsg | < proftpd-dfsg 1.3.3d-4 (bookworm) | proftpd-dfsg 1.3.3d-4 (bookworm) |
| linux | linux_kernel | >= 2.6.16 < 4.14.323 | 4.14.323 |
| linux | linux_kernel | >= 4.15.0 < 4.19.292 | 4.19.292 |
| linux | linux_kernel | >= 4.20.0 < 5.4.254 | 5.4.254 |
| linux | linux_kernel | >= 5.11.0 < 5.15.127 | 5.15.127 |
| linux | linux_kernel | >= 5.16.0 < 6.1.46 | 6.1.46 |
| linux | linux_kernel | >= 5.5.0 < 5.10.191 | 5.10.191 |
| linux | linux_kernel | >= 6.2.0 < 6.4.11 | 6.4.11 |
| proftpd | proftpd | <= 1.3.3 | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
| proftpd | proftpd | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_redhat5.5LOW
vendor_debian5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
usb-storage: alauda: Fix uninit-value in alauda_check_media()
osv·2025-12-09
CVE-2023-53847 usb-storage: alauda: Fix uninit-value in alauda_check_media()
usb-storage: alauda: Fix uninit-value in alauda_check_media()
In the Linux kernel, the following vulnerability has been resolved:
usb-storage: alauda: Fix uninit-value in alauda_check_media()
Syzbot got KMSAN to complain about access to an uninitialized value in
the alauda subdriver of usb-storage:
BUG: KMSAN: uninit-value in alauda_transport+0x462/0x57f0
drivers/usb/storage/alauda.c:1137
CPU: 0 PID: 12279 Comm: usb-storage Not tainted 5.3.0-rc7+ #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:77 [inline]
dump_stack+0x191/0x1f0 lib/dump_stack.c:113
kmsan_report+0x13a/0x2b0 mm/kmsan/kmsan_report.c:108
__msan_warning+0x73/0xe0 mm/kmsan/kmsan_instr.c:250
alauda_check_media+0x344/0x3310 drivers/usb/stora
GHSA
GHSA-mvv4-4mqg-wq2g: Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1
ghsa_unreviewed·2022-05-17
CVE-2011-1137 [MEDIUM] GHSA-mvv4-4mqg-wq2g: Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1
Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service (memory consumption leading to OOM kill) via a malformed SSH message.
OSV
CVE-2011-1137: Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1
osv·2011-03-11·CVSS 5.0
CVE-2011-1137 [MEDIUM] CVE-2011-1137: Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1
Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service (memory consumption leading to OOM kill) via a malformed SSH message.
Debian
CVE-2011-1137: proftpd-dfsg - Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier...
vendor_debian·2011·CVSS 5.0
CVE-2011-1137 [MEDIUM] CVE-2011-1137: proftpd-dfsg - Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier...
Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service (memory consumption leading to OOM kill) via a malformed SSH message.
Scope: local
bookworm: resolved (fixed in 1.3.3d-4)
bullseye: resolved (fixed in 1.3.3d-4)
forky: resolved (fixed in 1.3.3d-4)
sid: resolved (fixed in 1.3.3d-4)
trixie: resolved (fixed in 1.3.3d-4)
No detection rules found.
Bugzilla
CVE-2023-53847 kernel: usb-storage: alauda: Fix uninit-value in alauda_check_media()
bugzilla·2025-12-09
CVE-2023-53847 [LOW] CVE-2023-53847 kernel: usb-storage: alauda: Fix uninit-value in alauda_check_media()
CVE-2023-53847 kernel: usb-storage: alauda: Fix uninit-value in alauda_check_media()
In the Linux kernel, the following vulnerability has been resolved:
usb-storage: alauda: Fix uninit-value in alauda_check_media()
Syzbot got KMSAN to complain about access to an uninitialized value in
the alauda subdriver of usb-storage:
BUG: KMSAN: uninit-value in alauda_transport+0x462/0x57f0
drivers/usb/storage/alauda.c:1137
CPU: 0 PID: 12279 Comm: usb-storage Not tainted 5.3.0-rc7+ #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS
Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:77 [inline]
dump_stack+0x191/0x1f0 lib/dump_stack.c:113
kmsan_report+0x13a/0x2b0 mm/kmsan/kmsan_report.c:108
__msan_warning+0x73/0xe0 mm/kmsan/kmsan_instr.c:250
alauda_check_media+0x344/0
Bugzilla
CVE-2011-1137 proftpd: integer overflow in mod_sftp
bugzilla·2011-03-03·CVSS 5.0
CVE-2011-1137 [MEDIUM] CVE-2011-1137 proftpd: integer overflow in mod_sftp
CVE-2011-1137 proftpd: integer overflow in mod_sftp
An integer overflow flaw was reported [1],[2] in the mod_sftp module of ProFTPD. If a specially crafted SSH message was sent to a ProFTPD server using mod_sftp, it could lead to the allocation of enormous amounts of memory and an eventual OOM termination by the kernel. This issue was assigned the name CVE-2011-1137 [3]. It was fixed in CVS [4],[5],[6]
References:
[1] http://bugs.proftpd.org/show_bug.cgi?id=3586
[2] http://www.exploit-db.com/exploits/16129/
[3] http://www.openwall.com/lists/oss-security/2011/03/02/5
[4] http://proftp.cvs.sourceforge.net/viewvc/proftp/proftpd/contrib/mod_sftp/packet.c?r1=1.14.2.2&r2=1.14.2.3
[5] http://proftp.cvs.sourceforge.net/viewvc/proftp/proftpd/contrib/mod_sftp/packet.h?r1=1.3&r2=1.3.2.1
[6] http:/
Bugzilla
CVE-2011-1137 proftpd: integer overflow in mod_sftp [fedora-all]
bugzilla·2011-03-03·CVSS 5.0
CVE-2011-1137 [MEDIUM] CVE-2011-1137 proftpd: integer overflow in mod_sftp [fedora-all]
CVE-2011-1137 proftpd: integer overflow in mod_sftp [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=681718
Please note: this issue affects multiple supported
http://bugs.proftpd.org/show_bug.cgi?id=3586http://bugs.proftpd.org/show_bug.cgi?id=3587http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058344.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-April/058356.htmlhttp://proftp.cvs.sourceforge.net/viewvc/proftp/proftpd/contrib/mod_sftp/mod_sftp.c?r1=1.29.2.1&r2=1.29.2.2http://proftp.cvs.sourceforge.net/viewvc/proftp/proftpd/contrib/mod_sftp/packet.c?r1=1.14.2.2&r2=1.14.2.3http://proftp.cvs.sourceforge.net/viewvc/proftp/proftpd/contrib/mod_sftp/packet.h?r1=1.3&r2=1.3.2.1http://secunia.com/advisories/43234http://secunia.com/advisories/43635http://secunia.com/advisories/43978http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.485806http://www.debian.org/security/2011/dsa-2185http://www.exploit-db.com/exploits/16129/http://www.securityfocus.com/bid/46183http://www.vupen.com/english/advisories/2011/0617http://www.vupen.com/english/advisories/2011/0857https://bugzilla.redhat.com/show_bug.cgi?id=681718http://bugs.proftpd.org/show_bug.cgi?id=3586http://bugs.proftpd.org/show_bug.cgi?id=3587http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058344.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-April/058356.htmlhttp://proftp.cvs.sourceforge.net/viewvc/proftp/proftpd/contrib/mod_sftp/mod_sftp.c?r1=1.29.2.1&r2=1.29.2.2http://proftp.cvs.sourceforge.net/viewvc/proftp/proftpd/contrib/mod_sftp/packet.c?r1=1.14.2.2&r2=1.14.2.3http://proftp.cvs.sourceforge.net/viewvc/proftp/proftpd/contrib/mod_sftp/packet.h?r1=1.3&r2=1.3.2.1http://secunia.com/advisories/43234http://secunia.com/advisories/43635http://secunia.com/advisories/43978http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.485806http://www.debian.org/security/2011/dsa-2185http://www.exploit-db.com/exploits/16129/http://www.securityfocus.com/bid/46183http://www.vupen.com/english/advisories/2011/0617http://www.vupen.com/english/advisories/2011/0857https://bugzilla.redhat.com/show_bug.cgi?id=681718
2011-03-11
Published