CVE-2011-3619
The apparmor_setprocattr function in security/apparmor/lsm.c in the Linux kernel before 3.0 does not properly handle invalid parameters, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact by writing to a /proc/#####/attr/current file.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | - | 3.0.x |
| linux / linux_kernel | 3.0-rc2 | 3.0-rc2.x |
| linux / linux_kernel | 3.0-rc4 | 3.0-rc4.x |
| linux / linux_kernel | 3.0-rc6 | 3.0-rc6.x |
| linux / linux_kernel | 3.0-rc3 | 3.0-rc3.x |
| linux / linux_kernel | 3.0-rc1 | 3.0-rc1.x |
| linux / linux_kernel | 3.0-rc5 | 3.0-rc5.x |
- http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a5b2c5b2ad5853591a6cac6134cd0f599a720865
- http://www.openwall.com/lists/oss-security/2011/10/17/6
- https://github.com/torvalds/linux/commit/a5b2c5b2ad5853591a6cac6134cd0f599a720865
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime