CVE-2011-4077 : Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c in XFS in the Linux kernel 2.6, when CONFIG_XFS

Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c in XFS in the Linux kernel 2.6, when CONFIG_XFS_DEBUG is disabled, allows local users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via an XFS image containing a symbolic link with a long pathname.

Published 2012-01-27 15:55:04

Updated 2023-07-27 15:21:12

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: OverflowMemory CorruptionExecute codeDenial of service

Exploit prediction scoring system (EPSS) score for CVE-2011-4077

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2011-4077

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.9	MEDIUM	AV:L/AC:M/Au:N/C:C/I:C/A:C	3.4	10.0	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2011-4077

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-4077

http://www.openwall.com/lists/oss-security/2011/10/26/1

oss-security - CVE Request -- kernel: xfs: potential buffer overflow in xfs_readlink()
Mailing List;Patch;Third Party Advisory
http://xorl.wordpress.com/2011/12/07/cve-2011-4077-linux-kernel-xfs-readlink-memory-corruption/

CVE-2011-4077: Linux kernel XFS readlink() Memory Corruption | xorl %eax, %eax
Exploit;Third Party Advisory
http://www.openwall.com/lists/oss-security/2011/10/26/3

oss-security - Re: CVE Request -- kernel: xfs: potential buffer overflow in xfs_readlink()
Mailing List;Patch;Third Party Advisory
http://oss.sgi.com/archives/xfs/2011-10/msg00345.html

High Performance Computing Solutions – Reliable, Available, Scalable HPC Systems | HPE
Patch;Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=749156

749156 – (CVE-2011-4077) CVE-2011-4077 kernel: xfs: potential buffer overflow in xfs_readlink()
Issue Tracking;Patch;Third Party Advisory
http://marc.info/?l=bugtraq&m=139447903326211&w=2

'[security bulletin] HPSBGN02970 rev.1 - HP Rapid Deployment Pack (RDP) or HP Insight Control Server ' - MARC
Mailing List;Third Party Advisory

CVEs referencing this url

Products affected by CVE-2011-4077

Linux » Linux Kernel
Versions from including (>=) 2.6.12 and before (<) 3.0.11
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 3.1 and before (<) 3.1.5
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2011-4077

Exploit prediction scoring system (EPSS) score for CVE-2011-4077

CVSS scores for CVE-2011-4077

CWE ids for CVE-2011-4077

References for CVE-2011-4077

Products affected by CVE-2011-4077