CVE-2011-0695
Linux Kernel 2.6.0-2.6.39.3 - Denial of Service via InfiniBand Request Race Condition
Title source: llmDescription
Race condition in the cm_work_handler function in the InfiniBand driver (drivers/infiniband/core/cma.c) in Linux kernel 2.6.x allows remote attackers to cause a denial of service (panic) by sending an InfiniBand request while other request handlers are still running, which triggers an invalid pointer dereference.
References (8)
Core 8
Core References
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-1146-1
Mailing List, Patch, Third Party Advisory mailing-list
x_refsource_mlist
http://www.spinics.net/lists/linux-rdma/msg07448.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/66056
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2011-0927.html
Mailing List, Patch, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/03/11/1
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/43693
Exploit, Mailing List, Patch, Third Party Advisory mailing-list
x_refsource_mlist
http://www.spinics.net/lists/linux-rdma/msg07447.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/46839
Scores
EPSS
0.0119
EPSS Percentile
64.1%
Details
CWE
CWE-362
Status
published
Products (7)
canonical/ubuntu_linux
8.04
linux/linux_kernel
2.6.0 - 2.6.39.4
redhat/enterprise_linux_desktop
5.0
redhat/enterprise_linux_eus
5.6
redhat/enterprise_linux_server
5.0
redhat/enterprise_linux_server_aus
5.6
redhat/enterprise_linux_workstation
5.0
Published
Mar 15, 2011
Tracked Since
Feb 18, 2026