CVE-2011-1585 — Kernel vulnerability

CWE-26420 documents7 sources

Severity

3.3LOWNVD

EPSS

0.1%

top 84.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Suse Linux Enterprise Server

Timeline

PublishedJun 8

Latest updateMay 14

Description

The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user.

CVSS vector

AV:L/AC:M/C:P/I:P/A:NExploitability: 3.4 | Impact: 4.9

Affected Packages2 packages

▶NVDlinux/linux_kernel< 2.6.36

▶NVDsuse/suse_linux_enterprise_server10

Patches

Patch: bugzilla.redhat.com ↗Patch: github.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

OpenStack Nova Long server names grow nova-api log files significantly↗2022-05-14

▶

GHSA

GHSA-x654-xc6m-hm65: The cifs_find_smb_ses function in fs/cifs/connect↗2022-05-13

▶

CVEList

CVE-2011-1585: The cifs_find_smb_ses function in fs/cifs/connect↗2013-06-08

▶

📋Vendor Advisories

Ubuntu

Linux (OMAP4) vulnerabilities↗2011-11-24

▶

Ubuntu

Linux (Maverick backport) vulnerabilities↗2011-11-24

▶

Ubuntu

Linux kernel vulnerabilities↗2011-11-21

▶

Ubuntu

Linux kernel vulnerabilities↗2011-11-21

▶

Ubuntu

Linux kernel (FSL-IMX51) vulnerabilities↗2011-11-21

▶

💬Community

Bugzilla

CVE-2012-1585 openstack-nova: Long server names grow nova-api log files significantly [fedora-16]↗2012-03-29

▶

Bugzilla

CVE-2012-1585 openstack-nova: Long server names grow nova-api log files significantly [epel-6]↗2012-03-29

▶

Bugzilla

CVE-2011-1585 kernel: cifs session reuse↗2011-04-18

▶

Bugzilla

CVE-2010-1585 Mozilla ParanoidFragmentSink allows javascript: URLs in chrome documents (MFSA 2011-08)↗2011-02-04

▶