Denial of Service and Buffer Overflow in Linux Kernel ROSE Socket
CVE-2011-4913

Currently unrated

Key Information:

Vendor: Novell
Status: Suse Linux Enterprise Server
Vendor: CVE Published:; 21 June 2012

Summary

The rose_parse_ccitt function in the Linux kernel fails to properly validate certain fields in data sent to a ROSE socket. This oversight creates critical security vulnerabilities where remote attackers can exploit the system. By sending manipulated data, attackers can trigger a denial of service through integer underflow and heap memory corruption. Additionally, by using excessively large length values, attackers may also execute stack-based buffer overflow attacks, risking overall system integrity and stability.

References

https://github.com/torvalds/linux/commit/be20250c13f88375...

x_refsource_CONFIRM

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-...

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=770777

x_refsource_CONFIRM

Timeline

Vulnerability published
Jun 21, 2012
Vulnerability Reserved
Dec 23, 2011