NFS Implementation in Linux Kernel Prior to 2.6.31-rc6 Denial of Service Vulnerability

NFS Implementation in Linux Kernel Prior to 2.6.31-rc6 Denial of Service Vulnerability

CVE-2011-4325 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

The NFS implementation in Linux kernel before 2.6.31-rc6 calls certain functions without properly initializing certain data, which allows local users to cause a denial of service (NULL pointer dereference and O_DIRECT oops), as demonstrated using diotest4 from LTP.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.