Oval Definition:	oval:com.ubuntu.precise:def:20111082000
Revision Date: 2011-04-04 Version: 1 Title: CVE-2011-1082 on Ubuntu 12.04 LTS (precise) - low. Description: fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for (1) closed loops or (2) deep chains, which allows local users to cause a denial of service (deadlock or stack memory consumption) via a crafted application that makes epoll_create and epoll_ctl system calls. Nelson Elhage discovered that the epoll subsystem did not correctly handle certain structures. A local attacker could create malicious requests that would hang the system, leading to a denial of service. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-1082 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'linux' package in precise is not affected (note: '3.1.0-1.1'). OR NOT While related to the CVE in some way, the 'linux-armadaxp' package in precise is not affected (note: '3.2.0-1600.1'). OR NOT While related to the CVE in some way, the 'linux-lts-quantal' package in precise is not affected. OR NOT While related to the CVE in some way, the 'linux-lts-raring' package in precise is not affected. OR NOT While related to the CVE in some way, the 'linux-ti-omap4' package in precise is not affected (note: '3.0.0-1401.2').
BACK