CVE-2012-2373

The Linux kernel before 3.4.5 on the x86 platform, when Physical Address Extension (PAE) is enabled, does not properly use the Page Middle Directory (PMD), which allows local users to cause a denial of service (panic) via a crafted application that triggers a race condition.

CVSS v2.0 4.0 MEDIUM

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:H/Au:N/C:N/I:N/A:C

Exploitability : 1.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=26c191788f18129af0eb32a358cdaea0c7479626
http://marc.info/?l=bugtraq&m=139447903326211&w=2
http://rhn.redhat.com/errata/RHSA-2012-0743.html
http://ubuntu.com/usn/usn-1529-1
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5
http://www.openwall.com/lists/oss-security/2012/05/18/11
https://bugzilla.redhat.com/show_bug.cgi?id=822821
https://github.com/torvalds/linux/commit/26c191788f18129af0eb32a358cdaea0c7479626	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel:::::::x86:*
	cpe:2.3:o:linux:linux_kernel:3.4::::::x86:
	cpe:2.3:o:linux:linux_kernel:3.4:rc1:::::x86:*
	cpe:2.3:o:linux:linux_kernel:3.4:rc2:::::x86:*
	cpe:2.3:o:linux:linux_kernel:3.4:rc3:::::x86:*
	cpe:2.3:o:linux:linux_kernel:3.4:rc4:::::x86:*
	cpe:2.3:o:linux:linux_kernel:3.4:rc5:::::x86:*
	cpe:2.3:o:linux:linux_kernel:3.4:rc6:::::x86:*
	cpe:2.3:o:linux:linux_kernel:3.4:rc7:::::x86:*
	cpe:2.3:o:linux:linux_kernel:3.4.1::::::x86:
	cpe:2.3:o:linux:linux_kernel:3.4.2::::::x86:
	cpe:2.3:o:linux:linux_kernel:3.4.3::::::x86:

History

No history.

Information

Published : 2012-08-09 10:29

Updated : 2024-02-28 12:00

NVD link : CVE-2012-2373

Mitre link : CVE-2012-2373

CVE.ORG link : CVE-2012-2373

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

{"id": "CVE-2012-2373", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-08-09T10:29:46.917", "references": [{"url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=26c191788f18129af0eb32a358cdaea0c7479626", "source": "secalert@redhat.com"}, {"url": "http://marc.info/?l=bugtraq&m=139447903326211&w=2", "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2012-0743.html", "source": "secalert@redhat.com"}, {"url": "http://ubuntu.com/usn/usn-1529-1", "source": "secalert@redhat.com"}, {"url": "http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2012/05/18/11", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=822821", "source": "secalert@redhat.com"}, {"url": "https://github.com/torvalds/linux/commit/26c191788f18129af0eb32a358cdaea0c7479626", "tags": ["Patch"], "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-362"}]}], "descriptions": [{"lang": "en", "value": "The Linux kernel before 3.4.5 on the x86 platform, when Physical Address Extension (PAE) is enabled, does not properly use the Page Middle Directory (PMD), which allows local users to cause a denial of service (panic) via a crafted application that triggers a race condition."}, {"lang": "es", "value": "El kernel de Linux anterior a v3.4.5 en la plataforma x86, cuando Physical Address Extension (PAE) est\u00e1 activada, no utiliza correctamente Page Middle Directory (PMD), permitiendo a usuarios locales causar una denegaci\u00f3n de servicio a trav\u00e9s de una aplicaci\u00f3n especialmente dise\u00f1ada que lanza una condici\u00f3n de carrera"}], "lastModified": "2023-02-13T00:24:52.950", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "41A75DAA-62E7-4616-B987-B7FB45E56709", "versionEndIncluding": "3.4.4"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "8C3D9C66-933A-469E-9073-75015A8AD17D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc1:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "C92F29A0-DEFF-49E4-AE86-5DBDAD51C677"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc2:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "5690A703-390D-4D8A-9258-2F47116DAB4F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc3:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "AB1EDDA7-15AF-4B45-A931-DFCBB1EEB701"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc4:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "952FE0DC-B2ED-4080-BF29-A2C265E83FEF"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc5:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "1CE7ABDB-6572-40E8-B952-CBE52C999858"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc6:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "0F417186-D1ED-4A31-92B2-83DEDA1AF272"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4:rc7:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "3D4FCFAE-918C-4886-9A17-08A5B94D35F4"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4.1:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "830D2914-C9FE-406F-AFCE-7A04BB9E2896"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4.2:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "F4B791B5-2EB5-403A-90CC-B219F6277D1F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.4.3:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "2BA5F34D-7490-4B2B-A7E6-8450F9C1FC31"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}