The qdisc_notify function in net/sched/sch_api.c in the Linux kernel before 2.6.35 does not prevent tc_fill_qdisc function calls referencing builtin (aka CQ_F_BUILTIN) Qdisc structures, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a crafted call.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2012-02-02T02:00:00

Updated: 2024-08-06T23:00:34.271Z

Reserved: 2011-06-15T00:00:00

Link: CVE-2011-2525

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2012-02-02T04:09:47.737

Modified: 2024-11-21T01:28:27.797

Link: CVE-2011-2525

cve-icon Redhat

Severity : Moderate

Publid Date: 2010-05-21T00:00:00Z

Links: CVE-2011-2525 - Bugzilla