Red Hat Customer Portal

Skip to main content

CVE-2011-2695

Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service (BUG_ON and system crash) by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.

Details Source

Mitre

Statement

This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not include support for EXT4 filesystem.

Public Date

2011-06-03 00:00:00

Impact

Moderate

Bugzilla

CVE-2011-2695 kernel: ext4: kernel panic when writing data to the last block of sparse file

Bugzilla ID

722 557

CVSS Status

verified

Base Score

4.90

Base Metrics

AV:L/AC:L/Au:N/C:N/I:N/A:C

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 6 (kernel) RHSA-2011:1189 2011-08-23
Red Hat Enterprise Linux 5 (kernel) RHSA-2011:1386 2011-10-20
MRG Grid for RHEL 6 Server v.2 (kernel-rt) RHSA-2011:1253 2011-09-12

Affected Packages State

Platform Package State
Red Hat Enterprise MRG 2 realtime-kernel Affected
Red Hat Enterprise Linux 4 kernel Not affected