CVE-2011-3149

NONE EPSS 41.0%
Published Jul 22, 201213y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jul 22, 2012 13y ago
Last Modified Jun 16, 2026 2w ago

Description

The _expand_arg function in the pam_env module (modules/pam_env/pam_env.c) in Linux-PAM (aka pam) before 1.1.5 does not properly handle when environment variable expansion can overflow, which allows local users to cause a denial of service (CPU consumption).

Threat Intelligence

EPSS Exploit Probability
41.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 26

VendorProductVersionRange
linux-pamlinux-pam* ≤1.1.4
linux-pamlinux-pam0.99.1.0any
linux-pamlinux-pam0.99.2.0any
linux-pamlinux-pam0.99.2.1any
linux-pamlinux-pam0.99.3.0any
linux-pamlinux-pam0.99.4.0any
linux-pamlinux-pam0.99.5.0any
linux-pamlinux-pam0.99.6.0any
linux-pamlinux-pam0.99.6.1any
linux-pamlinux-pam0.99.6.2any
linux-pamlinux-pam0.99.6.3any
linux-pamlinux-pam0.99.7.0any
linux-pamlinux-pam0.99.7.1any
linux-pamlinux-pam0.99.8.0any
linux-pamlinux-pam0.99.8.1any
linux-pamlinux-pam0.99.9.0any
linux-pamlinux-pam0.99.10.0any
linux-pamlinux-pam1.0.0any
linux-pamlinux-pam1.0.1any
linux-pamlinux-pam1.0.2any
linux-pamlinux-pam1.0.3any
linux-pamlinux-pam1.0.4any
linux-pamlinux-pam1.1.0any
linux-pamlinux-pam1.1.1any
linux-pamlinux-pam1.1.2any
linux-pamlinux-pam1.1.3any

References 6

  • git.fedorahosted.org http://git.fedorahosted.org/git/?p=linux-pam.git%3Ba=commitdiff%3Bh=109823cb621c900c07c4b6cdc99070d354d19444
  • secunia.com http://secunia.com/advisories/46583
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/49711
    Vendor Advisory
  • security.gentoo.org http://security.gentoo.org/glsa/glsa-201206-31.xml
  • ubuntu.com http://www.ubuntu.com/usn/USN-1237-1
  • bugs.launchpad.net https://bugs.launchpad.net/ubuntu/+source/pam/+bug/874565

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.