CVE-2011-1082

Linux Kernel < 2.6.38 - Denial of Service via epoll File Descriptor Chaining

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-1082. PoCs published by Nelson Elhage.

AI-analyzed exploit summary This exploit triggers a denial-of-service (DoS) in the Linux Kernel epoll subsystem by creating a large number of nested epoll file descriptors, leading to a kernel hang. The code demonstrates the vulnerability by establishing a circular dependency in epoll event structures.

Description

fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for (1) closed loops or (2) deep chains, which allows local users to cause a denial of service (deadlock or stack memory consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nelson Elhage · cdoslinux

https://www.exploit-db.com/exploits/35404

View Code ZIP pw:eip

This exploit triggers a denial-of-service (DoS) in the Linux Kernel epoll subsystem by creating a large number of nested epoll file descriptors, leading to a kernel hang. The code demonstrates the vulnerability by establishing a circular dependency in epoll event structures.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Linux Kernel (versions affected by CVE-2011-1082)

No auth needed

Prerequisites: Local access to the target system

devstral-2 · analyzed Feb 16, 2026 Full analysis →