Race condition in cm_work_handler function in InfiniBand driver leads to denial of service vulnerability in Linux kernel 2.6.x

Race condition in cm_work_handler function in InfiniBand driver leads to denial of service vulnerability in Linux kernel 2.6.x

CVE-2011-0695 · MEDIUM Severity

AV:A/AC:M/AU:N/C:N/I:N/A:C

Race condition in the cm_work_handler function in the InfiniBand driver (drivers/infiniband/core/cma.c) in Linux kernel 2.6.x allows remote attackers to cause a denial of service (panic) by sending an InfiniBand request while other request handlers are still running, which triggers an invalid pointer dereference.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.