Novell Home

CVE-2011-4324

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2011-4324 at MITRE

Description

The encode_share_access function in fs/nfs/nfs4xdr.c in the Linux kernel before 2.6.29 allows local users to cause a denial of service (BUG and system crash) by using the mknod system call with a pathname on an NFSv4 filesystem.

NVD CVSS v2 Base Score: 4.9 (AV:L/AC:L/Au:N/C:N/I:N/A:C)

Novell/SUSE information

Note from the SUSE Security Team

This issues was fixed in Linux 2.6.29, so it does not SLE11 SP1 or newer products.,This issues was fixed in Linux 2.6.29, so it does not SLE11 SP1 or newer products.

Novell Bugzilla entry: 732613

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit
  • kernel-default >= 2.6.16.60-0.113.1
  • kernel-source >= 2.6.16.60-0.113.1
  • kernel-syms >= 2.6.16.60-0.113.1
Builds
ZYPP Patch Nr: 8755
SLE SDK 10 SP4 for IPF
  • kernel-debug >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8160
SUSE Linux Enterprise Server 10 SP4 for IPF
  • kernel-debug >= 2.6.16.60-0.97.1
  • kernel-default >= 2.6.16.60-0.97.1
  • kernel-source >= 2.6.16.60-0.97.1
  • kernel-syms >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8160
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
  • kernel-default >= 2.6.16.60-0.97.1
  • kernel-smp >= 2.6.16.60-0.97.1
  • kernel-source >= 2.6.16.60-0.97.1
  • kernel-syms >= 2.6.16.60-0.97.1
  • kernel-xen >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8161
SLE SDK 10 SP4 for X86-64
  • kernel-debug >= 2.6.16.60-0.97.1
  • kernel-kdump >= 2.6.16.60-0.97.1
  • kernel-xen >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8161
SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T
  • kernel-debug >= 2.6.16.60-0.97.1
  • kernel-default >= 2.6.16.60-0.97.1
  • kernel-kdump >= 2.6.16.60-0.97.1
  • kernel-smp >= 2.6.16.60-0.97.1
  • kernel-source >= 2.6.16.60-0.97.1
  • kernel-syms >= 2.6.16.60-0.97.1
  • kernel-xen >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8161
SLE SDK 10 SP4 for IBM iSeries and IBM pSeries
  • kernel-kdump >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8163
SUSE Linux Enterprise Server 10 SP4 for IBM POWER
  • kernel-default >= 2.6.16.60-0.97.1
  • kernel-iseries64 >= 2.6.16.60-0.97.1
  • kernel-kdump >= 2.6.16.60-0.97.1
  • kernel-ppc64 >= 2.6.16.60-0.97.1
  • kernel-source >= 2.6.16.60-0.97.1
  • kernel-syms >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8163
SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T
  • kernel-debug >= 2.6.16.60-0.113.1
  • kernel-default >= 2.6.16.60-0.113.1
  • kernel-kdump >= 2.6.16.60-0.113.1
  • kernel-smp >= 2.6.16.60-0.113.1
  • kernel-source >= 2.6.16.60-0.113.1
  • kernel-syms >= 2.6.16.60-0.113.1
  • kernel-xen >= 2.6.16.60-0.113.1
Builds
ZYPP Patch Nr: 8756
SUSE CORE 9 for AMD64 and Intel EM64T
  • kernel-default >= 2.6.5-7.286.TDC.45
  • kernel-smp >= 2.6.5-7.286.TDC.45
  • kernel-source >= 2.6.5-7.286.TDC.45
  • kernel-syms >= 2.6.5-7.286.TDC.45
  • xen-kmp >= 3.0.4_2.6.5_7.286.TDC.45_-0.3
Builds
YOU Patch Nr: 12874
SUSE Linux Enterprise Server 10 SP3 LTSS for x86
  • kernel-bigsmp >= 2.6.16.60-0.113.1
  • kernel-debug >= 2.6.16.60-0.113.1
  • kernel-default >= 2.6.16.60-0.113.1
  • kernel-kdump >= 2.6.16.60-0.113.1
  • kernel-kdumppae >= 2.6.16.60-0.113.1
  • kernel-smp >= 2.6.16.60-0.113.1
  • kernel-source >= 2.6.16.60-0.113.1
  • kernel-syms >= 2.6.16.60-0.113.1
  • kernel-vmi >= 2.6.16.60-0.113.1
  • kernel-vmipae >= 2.6.16.60-0.113.1
  • kernel-xen >= 2.6.16.60-0.113.1
  • kernel-xenpae >= 2.6.16.60-0.113.1
Builds
ZYPP Patch Nr: 8754

List of products where fixes are in QA

SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP3 LTSS for x86

© 2014 Novell