Unrated severityNVD Advisory· Published Jun 21, 2012· Updated Jun 16, 2026
CVE-2011-1493
CVE-2011-1493
Description
Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this data to a ROSE socket.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
18cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=2.6.38.8
- cpe:2.3:o:linux:linux_kernel:2.6.38:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38.7:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38:rc6:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38:rc7:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.38:rc8:*:*:*:*:*:*
- Range: <2.6.39
Patches
Vulnerability mechanics
References
6- github.com/torvalds/linux/commit/be20250c13f88375345ad99950190685eda51eb8nvdExploitPatch
- ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39nvd
- git.kernel.orgnvd
- lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.htmlnvd
- www.openwall.com/lists/oss-security/2011/04/05/19nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.