Vulnerability Name:

CVE-2012-3375 (CCN-76745)

Assigned:2012-03-27
Published:2012-03-27
Updated:2023-02-13
Summary:The epoll_ctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLL_CTL_ADD operations, which allows local users to cause a denial of service (file-descriptor consumption and system crash) via a crafted application that attempts to create a circular epoll dependency.
Note: this vulnerability exists because of an incorrect fix for CVE-2011-1083.
CVSS v3 Severity:6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
4.1 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
4.1 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
4.9 Medium (REDHAT CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
4.1 Medium (REDHAT Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2012-3375

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: Linux Kernel GIT Repository
epoll: prevent creating circular epoll structures

Source: CCN
Type: RHSA-2012-1061
Moderate: kernel security and bug fix update

Source: CCN
Type: RHSA-2012-1150
Moderate: kernel-rt security and bug fix update

Source: CCN
Type: SA49737
Linux Kernel epoll Denial of Service Vulnerability

Source: CCN
Type: SA51164
Avaya Aura Session Manager Kernel epoll Denial of Service Vulnerability

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: OSVDB ID: 83554
Linux Kernel Epoll Descriptor Return Value Handling Local DoS

Source: CCN
Type: OSVDB ID: 83687
Linux Kernel fs/eventpoll.c Local DoS

Source: CCN
Type: BID-54283
Linux Kernel 'fs/eventpoll.c' Local Denial of Service Vulnerability

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: Red Hat Bugzilla Bug 837502
CVE-2012-3375 kernel: epoll: can leak file descriptors when returning -ELOOP

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: ASA-2012-344
kernel security and bug fix update (RHSA-2012-1061)

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: XF
Type: UNKNOWN
kernel-epoll-descriptors-dos(76745)

Source: secalert@redhat.com
Type: Exploit
secalert@redhat.com

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [07-05-2012]

Vulnerable Configuration:Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
    • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*
    • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:linux:linux_kernel:3.2.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:3.2:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:3.2.12:*:*:*:*:*:*:*
  • AND
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_mrg:2.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20123375
    V
    		CVE-2012-3375
    2022-05-20
    oval:org.opensuse.security:def:33112
    P
    		Security update for python-numpy (Moderate) (in QA)
    2022-01-17
    oval:org.opensuse.security:def:33063
    P
    		Security update for xorg-x11-server (Important)
    2021-12-14
    oval:org.opensuse.security:def:33006
    P
    		Security update for openssl (Low)
    2021-09-20
    oval:org.opensuse.security:def:33895
    P
    		Security update for sudo (Important)
    2021-04-20
    oval:org.opensuse.security:def:32388
    P
    		Security update for tomcat6 (Important)
    2020-12-01
    oval:org.opensuse.security:def:29125
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:28514
    P
    		Security update for openssl1 (Important)
    2020-12-01
    oval:org.opensuse.security:def:32850
    P
    		e2fsprogs on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28673
    P
    		Security update for MozillaFirefox, mozilla-nspr (Important)
    2020-12-01
    oval:org.opensuse.security:def:27907
    P
    		Security update for Xen
    2020-12-01
    oval:org.opensuse.security:def:33218
    P
    		openssh on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32387
    P
    		Security update for tomcat6 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29108
    P
    		Security update for java-1_6_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:28465
    P
    		Security update for xorg-x11-libXdmcp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32763
    P
    		pam_ldap on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28588
    P
    		Security update for Mozilla NSS
    2020-12-01
    oval:org.opensuse.security:def:29287
    P
    		Security update for Real Time Linux kernel
    2020-12-01
    oval:org.opensuse.security:def:27843
    P
    		Security update for net-snmp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33174
    P
    		libproxy0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29069
    P
    		Security update for clamav (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28412
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32706
    P
    		libcap-progs on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28457
    P
    		Security update for xen (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29251
    P
    		Security update for syslog-ng (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27832
    P
    		Security update for lxc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33151
    P
    		libgcrypt11 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29020
    P
    		Security update for resource-agents (Important)
    2020-12-01
    oval:org.opensuse.security:def:28260
    P
    		Security update for lynx (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32612
    P
    		w3m on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29843
    P
    		Security update for Linux kernel
    2020-12-01
    oval:org.opensuse.security:def:28389
    P
    		Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:28613
    P
    		Security update for xorg-x11-server
    2020-12-01
    oval:org.opensuse.security:def:27831
    P
    		Security update for lxc
    2020-12-01
    oval:org.opensuse.security:def:28966
    P
    		Security update for openssh (Critical)
    2020-12-01
    oval:org.opensuse.security:def:28176
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32477
    P
    		Security update for zlib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29807
    P
    		Security update for jakarta-commons-collections (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28378
    P
    		Security update for quagga (Important)
    2020-12-01
    oval:org.opensuse.security:def:28569
    P
    		Security update for lcms
    2020-12-01
    oval:org.opensuse.security:def:28814
    P
    		Security update for procmail
    2020-12-01
    oval:org.opensuse.security:def:28119
    P
    		Security update for gstreamer-0_10-plugins-base (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32399
    P
    		Security update for unzip (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29169
    P
    		Security update for mailman (Important)
    2020-12-01
    oval:org.opensuse.security:def:28377
    P
    		Security update for quagga (Important)
    2020-12-01
    oval:org.opensuse.security:def:28553
    P
    		Security update for flash-player
    2020-12-01
    oval:org.opensuse.security:def:28730
    P
    		Security update for krb5
    2020-12-01
    oval:org.opensuse.security:def:28035
    P
    		Fixing security issues on OBS toolchain (Important)
    2020-12-01
    oval:org.opensuse.security:def:33856
    P
    		Security update for inst-source-utils
    2020-12-01
    oval:org.mitre.oval:def:24665
    P
    		SUSE-SU-2014:0287-1 -- Security update for Linux kernel
    2015-03-16
    oval:org.mitre.oval:def:27194
    P
    		ELSA-2012-1061-1 -- kernel security and bug fix update (moderate)
    2015-03-16
    oval:org.mitre.oval:def:27735
    P
    		ELSA-2012-2026 -- Unbreakable Enterprise kernel Security update (important)
    2015-03-16
    oval:org.mitre.oval:def:17909
    P
    		USN-1529-1 -- linux vulnerabilities
    2014-07-21
    oval:org.mitre.oval:def:18045
    P
    		USN-1514-1 -- linux-ti-omap4 vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:17617
    P
    		USN-1539-1 -- linux-lts-backport-oneiric vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:18104
    P
    		USN-1533-1 -- linux vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:17893
    P
    		USN-1532-1 -- linux-ti-omap4 vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:23333
    P
    		ELSA-2012:1061: kernel security and bug fix update (Moderate)
    2014-05-26
    oval:org.mitre.oval:def:21242
    P
    		RHSA-2012:1061: kernel security and bug fix update (Moderate)
    2014-02-24
    oval:com.ubuntu.xenial:def:201233750000000
    V
    		CVE-2012-3375 on Ubuntu 16.04 LTS (xenial) - medium.
    2012-10-03
    oval:com.ubuntu.precise:def:20123375000
    V
    		CVE-2012-3375 on Ubuntu 12.04 LTS (precise) - medium.
    2012-10-03
    oval:com.ubuntu.trusty:def:20123375000
    V
    		CVE-2012-3375 on Ubuntu 14.04 LTS (trusty) - medium.
    2012-10-03
    oval:com.ubuntu.xenial:def:20123375000
    V
    		CVE-2012-3375 on Ubuntu 16.04 LTS (xenial) - medium.
    2012-10-03
    oval:com.redhat.rhsa:def:20121061
    P
    		RHSA-2012:1061: kernel security and bug fix update (Moderate)
    2012-07-10
    BACK
    linux linux kernel 3.2.1
    linux linux kernel 3.2
    linux linux kernel 3.2.12
    redhat enterprise linux 5
    redhat enterprise linux 5
    redhat enterprise mrg 2.0