Detections
Analytics

CVE-2011-0431

high

Description

The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel module in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions does not properly handle errors, which allows attackers to cause a denial of service via unknown vectors. NOTE: some of these details are obtained from third party information.

References

http://www.vupen.com/english/advisories/2011/0411

http://www.vupen.com/english/advisories/2011/0410

http://www.securitytracker.com/id?1025095

http://www.securityfocus.com/bid/46428

http://www.debian.org/security/2011/dsa-2168

http://secunia.com/advisories/43407

http://secunia.com/advisories/43371

Details

Source: Mitre, NVD

Published: 2011-02-19

Updated: 2011-03-11

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High