CVE-2011-1771
Severity CVSS v4.0:
Pending analysis
Type:
CWE-476
NULL Pointer Dereference
Publication date:
06/09/2011
Last modified:
11/04/2025
Description
The cifs_close function in fs/cifs/file.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (NULL pointer dereference and BUG) or possibly have unspecified other impact by setting the O_DIRECT flag during an attempt to open a file on a CIFS filesystem.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Base Score 2.0
4.40
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 2.6.39 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba%3Dcommit%3Bh%3D7797069305d13252fd66cf722aa8f2cbeb3c95cd
- http://marc.info/?l=linux-cifs&m=130204357001849&w=2
- http://marc.info/?l=linux-cifs&m=130204730006155&w=2
- http://securityreason.com/securityalert/8367
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39
- http://www.openwall.com/lists/oss-security/2011/05/09/2
- https://bugzilla.redhat.com/show_bug.cgi?id=703016
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba%3Dcommit%3Bh%3D7797069305d13252fd66cf722aa8f2cbeb3c95cd
- http://marc.info/?l=linux-cifs&m=130204357001849&w=2
- http://marc.info/?l=linux-cifs&m=130204730006155&w=2
- http://securityreason.com/securityalert/8367
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39
- http://www.openwall.com/lists/oss-security/2011/05/09/2
- https://bugzilla.redhat.com/show_bug.cgi?id=703016