Unrated severityNVD Advisory· Published Apr 4, 2011· Updated Apr 29, 2026

CVE-2011-1082

Description

fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for (1) closed loops or (2) deep chains, which allows local users to cause a denial of service (deadlock or stack memory consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.

Affected products

Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: <2.6.38

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

openwall.com/lists/oss-security/2011/03/02/1nvdMailing ListPatchThird Party Advisory
openwall.com/lists/oss-security/2011/03/02/2nvdMailing ListPatchThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
lkml.org/lkml/2011/2/5/220nvdMailing ListPatchThird Party Advisory
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000