CVE-2011-3637NULL Pointer Dereference in Kernel

CWE-476NULL Pointer Dereference17 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 80.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Linux KernelRedhat Enterprise Linux
Timeline
PublishedMay 17
Latest updateMay 13

Description

The m_stop function in fs/proc/task_mmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (OOPS) via vectors that trigger an m_start error.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDlinux/linux_kernel< 2.6.39

Also affects: Enterprise Linux 6.0

Patches

Patch: www.openwall.comPatch: github.comPatch: www.openwall.com

🔴Vulnerability Details

1
GHSA
GHSA-q7rh-q4x3-vhq2: The m_stop function in fs/proc/task_mmu2022-05-13

📋Vendor Advisories

12
Ubuntu
Linux kernel (Natty backport) vulnerabilities2011-11-09
Ubuntu
Linux kernel vulnerabilities2011-09-29
Ubuntu
Linux kernel (EC2) vulnerabilities2011-09-26
Ubuntu
Linux kernel (OMAP4) vulnerabilities2011-09-21
Ubuntu
Linux kernel vulnerabilities2011-09-21

💬Community

3
Bugzilla
CVE-2011-3637 kernel: proc: fix oops on invalid /proc/<pid>/maps access [fedora-all]2011-10-25
Bugzilla
CVE-2011-3637 kernel: proc: fix oops on invalid /proc/<pid>/maps access2011-10-21
Bugzilla
flash-plugin: security bulletin APSB10-262010-11-04