CVE-2011-4086

MEDIUM

Description

The journal_unmap_buffer function in fs/jbd2/transaction.c in the Linux kernel before 3.3.1 does not properly handle the _Delay and _Unwritten buffer head states, which allows local users to cause a denial of service (system crash) by leveraging the presence of an ext4 filesystem that was mounted with a journal.

ID	Name	Product	Family	Severity
79507	OracleVM 2.2 : kernel (OVMSA-2013-0039)	Nessus	OracleVM Local Security Checks	critical
79283	RHEL 5 : rhev-hypervisor5 (RHSA-2012:0168)	Nessus	Red Hat Local Security Checks	high
76644	RHEL 6 : MRG (RHSA-2012:0670)	Nessus	Red Hat Local Security Checks	high
74801	openSUSE Security Update : kernel (openSUSE-SU-2012:1439-1)	Nessus	SuSE Local Security Checks	critical
74658	openSUSE Security Update : Kernel (openSUSE-SU-2012:0799-1)	Nessus	SuSE Local Security Checks	critical
74604	openSUSE Security Update : kernel (openSUSE-SU-2012:0540-1)	Nessus	SuSE Local Security Checks	critical
69652	Amazon Linux AMI : kernel (ALAS-2012-45)	Nessus	Amazon Linux Local Security Checks	medium
68674	Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2014)	Nessus	Oracle Linux Local Security Checks	medium
68673	Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2013)	Nessus	Oracle Linux Local Security Checks	medium
68526	Oracle Linux 6 : kernel (ELSA-2012-0571)	Nessus	Oracle Linux Local Security Checks	medium
68454	Oracle Linux 5 : kernel (ELSA-2012-0107)	Nessus	Oracle Linux Local Security Checks	high
64173	SuSE 11.1 Security Update : Linux kernel (SAT Patch Numbers 6227 / 6229 / 6230)	Nessus	SuSE Local Security Checks	high
61313	Scientific Linux Security Update : kernel on SL6.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	medium
61241	Scientific Linux Security Update : kernel on SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
59322	USN-1458-1 : linux-ti-omap4 vulnerabilities	Nessus	Ubuntu Local Security Checks	critical
59292	Ubuntu 8.04 LTS : linux vulnerability (USN-1454-1)	Nessus	Ubuntu Local Security Checks	medium
59291	Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1453-1)	Nessus	Ubuntu Local Security Checks	high
59188	Ubuntu 10.04 LTS : linux vulnerabilities (USN-1445-1)	Nessus	Ubuntu Local Security Checks	high
59165	CentOS 6 : kernel (CESA-2012:0571)	Nessus	CentOS Local Security Checks	medium
59106	RHEL 6 : kernel (RHSA-2012:0571)	Nessus	Red Hat Local Security Checks	medium
59070	Debian DSA-2469-1 : linux-2.6 - privilege escalation/denial of service	Nessus	Debian Local Security Checks	high
59034	Ubuntu 10.04 LTS : linux-lts-backport-natty vulnerabilities (USN-1440-1)	Nessus	Ubuntu Local Security Checks	critical
59032	Ubuntu 11.04 : linux vulnerabilities (USN-1432-1)	Nessus	Ubuntu Local Security Checks	high
58947	Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1433-1)	Nessus	Ubuntu Local Security Checks	critical
58946	Ubuntu 11.10 : linux vulnerabilities (USN-1431-1)	Nessus	Ubuntu Local Security Checks	critical
58845	SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 6163 / 6164 / 6172)	Nessus	SuSE Local Security Checks	critical
57922	CentOS 5 : kernel (CESA-2012:0107)	Nessus	CentOS Local Security Checks	high
57906	Fedora 15 : kernel-2.6.42.3-2.fc15 (2012-1503)	Nessus	Fedora Local Security Checks	medium
57905	Fedora 16 : kernel-3.2.5-3.fc16 (2012-1497)	Nessus	Fedora Local Security Checks	medium
57885	RHEL 5 : kernel (RHSA-2012:0107)	Nessus	Red Hat Local Security Checks	high
801516	CentOS RHSA-2012-0571 Security Check	Log Correlation Engine	Generic	high
801512	CentOS RHSA-2012-0107 Security Check	Log Correlation Engine	Generic	high

CVE-2011-4086

Description

References

Details

Risk Information

CVSS v2.0