Launchpad.net

CVE 2011-4112

The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFF_TX_SKB_SHARING flag, which allows local users to cause a denial of service (panic) by leveraging the CAP_NET_ADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction with a bridge device for a VLAN interface.

Related bugs and status

CVE-2011-4112 (Candidate) is related to these bugs:

Bug #894371: CVE-2011-4112

		In	Importance	Status
894371	CVE-2011-4112	linux (Ubuntu)	Low	Invalid
894371	CVE-2011-4112	linux-fsl-imx51 (Ubuntu)	Low	Invalid
894371	CVE-2011-4112	linux-mvl-dove (Ubuntu)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-maverick (Ubuntu)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-natty (Ubuntu)	Low	Invalid
894371	CVE-2011-4112	linux-ti-omap4 (Ubuntu)	Low	Fix Released
894371	CVE-2011-4112	linux-ec2 (Ubuntu)	Low	Invalid
894371	CVE-2011-4112	linux (Ubuntu Precise)	Low	Invalid
894371	CVE-2011-4112	linux-ec2 (Ubuntu Precise)	Low	Invalid
894371	CVE-2011-4112	linux-fsl-imx51 (Ubuntu Precise)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-maverick (Ubuntu Precise)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-natty (Ubuntu Precise)	Low	Invalid
894371	CVE-2011-4112	linux-mvl-dove (Ubuntu Precise)	Low	Invalid
894371	CVE-2011-4112	linux-ti-omap4 (Ubuntu Precise)	Low	Fix Released
894371	CVE-2011-4112	linux (Ubuntu Oneiric)	Low	Won't Fix
894371	CVE-2011-4112	linux-ec2 (Ubuntu Oneiric)	Low	Invalid
894371	CVE-2011-4112	linux-fsl-imx51 (Ubuntu Oneiric)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-maverick (Ubuntu Oneiric)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-natty (Ubuntu Oneiric)	Low	Invalid
894371	CVE-2011-4112	linux-mvl-dove (Ubuntu Oneiric)	Low	Invalid
894371	CVE-2011-4112	linux-ti-omap4 (Ubuntu Oneiric)	Low	Fix Released
894371	CVE-2011-4112	linux (Ubuntu Natty)	Low	Won't Fix
894371	CVE-2011-4112	linux-ec2 (Ubuntu Natty)	Low	Invalid
894371	CVE-2011-4112	linux-fsl-imx51 (Ubuntu Natty)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-maverick (Ubuntu Natty)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-natty (Ubuntu Natty)	Low	Invalid
894371	CVE-2011-4112	linux-mvl-dove (Ubuntu Natty)	Low	Invalid
894371	CVE-2011-4112	linux-ti-omap4 (Ubuntu Natty)	Low	Won't Fix
894371	CVE-2011-4112	linux (Ubuntu Maverick)	Low	Won't Fix
894371	CVE-2011-4112	linux-ec2 (Ubuntu Maverick)	Low	Invalid
894371	CVE-2011-4112	linux-fsl-imx51 (Ubuntu Maverick)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-maverick (Ubuntu Maverick)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-natty (Ubuntu Maverick)	Low	Invalid
894371	CVE-2011-4112	linux-mvl-dove (Ubuntu Maverick)	Low	Won't Fix
894371	CVE-2011-4112	linux-ti-omap4 (Ubuntu Maverick)	Low	Won't Fix
894371	CVE-2011-4112	linux (Ubuntu Lucid)	Low	Invalid
894371	CVE-2011-4112	linux-ec2 (Ubuntu Lucid)	Low	Invalid
894371	CVE-2011-4112	linux-fsl-imx51 (Ubuntu Lucid)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-maverick (Ubuntu Lucid)	Low	Won't Fix
894371	CVE-2011-4112	linux-lts-backport-natty (Ubuntu Lucid)	Low	Won't Fix
894371	CVE-2011-4112	linux-mvl-dove (Ubuntu Lucid)	Low	Invalid
894371	CVE-2011-4112	linux-ti-omap4 (Ubuntu Lucid)	Low	Invalid
894371	CVE-2011-4112	linux (Ubuntu Hardy)	Low	Won't Fix
894371	CVE-2011-4112	linux-ec2 (Ubuntu Hardy)	Low	Invalid
894371	CVE-2011-4112	linux-fsl-imx51 (Ubuntu Hardy)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-maverick (Ubuntu Hardy)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-natty (Ubuntu Hardy)	Low	Invalid
894371	CVE-2011-4112	linux-mvl-dove (Ubuntu Hardy)	Low	Invalid
894371	CVE-2011-4112	linux-ti-omap4 (Ubuntu Hardy)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-oneiric (Ubuntu)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-oneiric (Ubuntu Hardy)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-oneiric (Ubuntu Lucid)	Low	Won't Fix
894371	CVE-2011-4112	linux-lts-backport-oneiric (Ubuntu Maverick)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-oneiric (Ubuntu Natty)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-oneiric (Ubuntu Oneiric)	Low	Invalid
894371	CVE-2011-4112	linux-lts-backport-oneiric (Ubuntu Precise)	Low	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-4112

Related bugs and status

Related bugs

References