CVE-2012-2373

Linux kernel < 3.4.5 - Denial of Service via PMD Race Condition

Title source: llm

Description

The Linux kernel before 3.4.5 on the x86 platform, when Physical Address Extension (PAE) is enabled, does not properly use the Page Middle Directory (PMD), which allows local users to cause a denial of service (panic) via a crafted application that triggers a race condition.

References (8)

Core 8

Core References

Patch x_refsource_confirm

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=26c191788f18129af0eb32a358cdaea0c7479626

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2012-0743.html

Vendor Advisory x_refsource_confirm

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5

Issue Tracking x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=822821

Patch x_refsource_confirm

https://github.com/torvalds/linux/commit/26c191788f18129af0eb32a358cdaea0c7479626

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2012/05/18/11

Various Sources vendor-advisory x_refsource_ubuntu

http://ubuntu.com/usn/usn-1529-1

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=139447903326211&w=2

Scores

EPSS 0.0026

EPSS Percentile 16.9%

Details

CWE

CWE-362

Status published

Products (5)

linux/linux_kernel 3.4 (8 CPE variants)

linux/linux_kernel 3.4.1

linux/linux_kernel 3.4.2

linux/linux_kernel 3.4.3

linux/linux_kernel < 3.4.4

Published Aug 09, 2012

Tracked Since Feb 18, 2026