CVE-2011-4324

Common Vulnerabilities and Exposures

Upstream information

CVE-2011-4324 at MITRE

Description

The encode_share_access function in fs/nfs/nfs4xdr.c in the Linux kernel before 2.6.29 allows local users to cause a denial of service (BUG and system crash) by using the mknod system call with a pathname on an NFSv4 filesystem.

NVD CVSS v2 Base Score: 4.9 (AV:L/AC:L/Au:N/C:N/I:N/A:C)

Novell/SUSE information

Note from the SUSE Security Team

This issues was fixed in Linux 2.6.29, so it does not SLE11 SP1 or newer products.

Novell Bugzilla entry: 732613

SUSE Security Advisories:

SUSE-SU-2012:0736-1, published Thu, 14 Jun 2012 18:08:31 +0200 (CEST)

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise 10 SP4 DEBUGINFO for IPF	`kernel-debug-debuginfo >= 2.6.16.60-0.97.1` `kernel-default-debuginfo >= 2.6.16.60-0.97.1` `kernel-source-debuginfo >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8160
SLE SDK 10 SP4 for IPF	`kernel-debug >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8160
SUSE Linux Enterprise Server 10 SP4 for IPF	`kernel-debug >= 2.6.16.60-0.97.1` `kernel-default >= 2.6.16.60-0.97.1` `kernel-source >= 2.6.16.60-0.97.1` `kernel-syms >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8160
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T	`kernel-default >= 2.6.16.60-0.97.1` `kernel-smp >= 2.6.16.60-0.97.1` `kernel-source >= 2.6.16.60-0.97.1` `kernel-syms >= 2.6.16.60-0.97.1` `kernel-xen >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8161
SUSE Linux Enterprise 10 SP4 DEBUGINFO for AMD64 and Intel EM64T	`kernel-debug-debuginfo >= 2.6.16.60-0.97.1` `kernel-default-debuginfo >= 2.6.16.60-0.97.1` `kernel-kdump-debuginfo >= 2.6.16.60-0.97.1` `kernel-smp-debuginfo >= 2.6.16.60-0.97.1` `kernel-source-debuginfo >= 2.6.16.60-0.97.1` `kernel-xen-debuginfo >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8161
SLE SDK 10 SP4 for X86-64	`kernel-debug >= 2.6.16.60-0.97.1` `kernel-kdump >= 2.6.16.60-0.97.1` `kernel-xen >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8161
SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T	`kernel-debug >= 2.6.16.60-0.97.1` `kernel-default >= 2.6.16.60-0.97.1` `kernel-kdump >= 2.6.16.60-0.97.1` `kernel-smp >= 2.6.16.60-0.97.1` `kernel-source >= 2.6.16.60-0.97.1` `kernel-syms >= 2.6.16.60-0.97.1` `kernel-xen >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8161
SUSE Linux Enterprise 10 SP4 DEBUGINFO for IBM POWER	`kernel-default-debuginfo >= 2.6.16.60-0.97.1` `kernel-iseries64-debuginfo >= 2.6.16.60-0.97.1` `kernel-kdump-debuginfo >= 2.6.16.60-0.97.1` `kernel-ppc64-debuginfo >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8163
SLE SDK 10 SP4 for IBM iSeries and IBM pSeries	`kernel-kdump >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8163
SUSE Linux Enterprise Server 10 SP4 for IBM POWER	`kernel-default >= 2.6.16.60-0.97.1` `kernel-iseries64 >= 2.6.16.60-0.97.1` `kernel-kdump >= 2.6.16.60-0.97.1` `kernel-ppc64 >= 2.6.16.60-0.97.1` `kernel-source >= 2.6.16.60-0.97.1` `kernel-syms >= 2.6.16.60-0.97.1`	Builds ZYPP Patch Nr: 8163
SUSE CORE 9 for AMD64 and Intel EM64T	`kernel-default >= 2.6.5-7.286.TDC.45` `kernel-smp >= 2.6.5-7.286.TDC.45` `kernel-source >= 2.6.5-7.286.TDC.45` `kernel-syms >= 2.6.5-7.286.TDC.45` `xen-kmp >= 3.0.4_2.6.5_7.286.TDC.45_-0.3`	Builds YOU Patch Nr: 12874

Products

Products By Category

Collaboration

Endpoint Management

File & Networking Services

Services & Support

Help Yourself

Let Us Help

Download

IT Consulting

Technical Training

Customer Center

Contribute

Partners

Partner With Novell

PartnerNet

Find a Partner

Developers

Communities

About Novell

How to Buy