Unrated severityNVD Advisory· Published Aug 29, 2011· Updated Jun 16, 2026
CVE-2011-2928
CVE-2011-2928
Description
The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) by accessing a long symlink on a malformed Be filesystem.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5Patches
Vulnerability mechanics
References
9- securityreason.com/securityalert/8360nvdExploitThird Party Advisory
- www.openwall.com/lists/oss-security/2011/08/19/1nvdExploitMailing ListPatchThird Party Advisory
- www.openwall.com/lists/oss-security/2011/08/19/5nvdExploitMailing ListPatchThird Party Advisory
- www.pre-cert.de/advisories/PRE-SA-2011-06.txtnvdExploitThird Party Advisory
- www.securityfocus.com/archive/1/519387/100/0/threadednvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/49256nvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/69343nvdThird Party AdvisoryVDB Entry
- www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.1-rc3nvdBroken Link
- git.kernel.orgnvd
News mentions
0No linked articles in our index yet.