VYPR
Unrated severityNVD Advisory· Published Mar 22, 2011· Updated Jun 16, 2026

CVE-2011-1022

CVE-2011-1022

Description

The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages originated in the kernel, which allows local users to bypass intended resource restrictions via a crafted message.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

18
  • cpe:2.3:a:balbir_singh:libcgroup:*:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:a:balbir_singh:libcgroup:*:*:*:*:*:*:*:*range: <=0.37
    • cpe:2.3:a:balbir_singh:libcgroup:0.1b:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.1c:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.31:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.32:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.32.1:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.32.2:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.33:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.34:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.35:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.35.1:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.36:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.36.1:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.36.2:*:*:*:*:*:*:*
    • cpe:2.3:a:balbir_singh:libcgroup:0.37:rc1:*:*:*:*:*:*
  • Range: <0.37.1

Patches

Vulnerability mechanics

References

23

News mentions

0

No linked articles in our index yet.