CVE-2012-2390

Published Jun 13, 2012

Last updated 2 years ago

CVSS info 4.9

Overview

Description: Memory leak in mm/hugetlb.c in the Linux kernel before 3.4.2 allows local users to cause a denial of service (memory consumption or system crash) via invalid MAP_HUGETLB mmap operations.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.9
Impact score: 6.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F590FA6-B147-4E44-96E4-A647629DBCF4",
            "versionEndIncluding": "3.4.1"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F960FA6-F904-4A4E-B483-44C70090E9A1"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "261C1B41-C9E0-414F-8368-51C0C0B8AD38"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CCA261D-2B97-492F-89A0-5F209A804350"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B1C0C68-9194-473F-BE5E-EC7F184899FA"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D7A6AC9E-BEA6-44B0-B3B3-F0F94E32424A"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16038328-9399-4B85-B777-BA4757D02C9B"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16CA2757-FA8D-43D9-96E8-D3C0EB6E1DEF"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E8CB5481-5EAE-401E-BD7E-D3095CCA9E94"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References