|Bugzilla:||747106: CVE-2011-4131 kernel: nfs4_getfacl decoding kernel oops|
The MITRE CVE dictionary describes this issue as:
The NFSv4 implementation in the Linux kernel before 3.2.2 does not properly handle bitmap sizes in GETACL replies, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words.
This issue does not affect the Linux kernel as shipped with Red Hat Enterprise Linux 4 as it does not provide support for NFS ACLs. This issue does not affect the Linux kernel as shipped with Red Hat Enterprise Linux 5. This has been addressed in Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2012-0333.html. Future kernel updates in Red Hat Enterprise Linux 6 may address this issue.
CVSS v2 metrics
|Access Vector:||Adjacent Network|
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Red Hat security errata
|MRG Grid for RHEL 6 Server v.2 (kernel-rt)||RHSA-2012:0333||February 23, 2012|
|Red Hat Enterprise Linux Server EUS (v. 6.2) (kernel)||RHSA-2012:1541||December 04, 2012|
|Red Hat Enterprise Linux version 6 (kernel)||RHSA-2012:0862||June 19, 2012|
Red Hat would like to thank Andy Adamson for reporting this issue.
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.