Unrated severityNVD Advisory· Published Jun 21, 2012· Updated Apr 29, 2026
CVE-2012-2127
CVE-2012-2127
Description
fs/proc/root.c in the procfs implementation in the Linux kernel before 3.2 does not properly interact with CLONE_NEWPID clone system calls, which allows remote attackers to cause a denial of service (reference leak and memory consumption) by making many connections to a daemon that uses PID namespaces to isolate clients, as demonstrated by vsftpd.
Affected products
10cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=3.1.10
- cpe:2.3:o:linux:linux_kernel:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.7:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.8:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.9:*:*:*:*:*:*:*
Patches
1905ad269c55fhttps://github.com/torvalds/linuxvia nvd-ref
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
11- www.kernel.org/pub/linux/kernel/v3.x/patch-3.2.bz2nvdPatch
- www.openwall.com/lists/oss-security/2012/04/20/25nvdExploit
- bugzilla.novell.com/show_bug.cginvdExploit
- bugzilla.redhat.com/show_bug.cginvdExploit
- github.com/torvalds/linux/commit/905ad269c55fc62bee3da29f7b1d1efeba8aa1e1nvdExploitPatch
- git.kernel.orgnvd
- ubuntu.com/usn/usn-1607-1nvd
- www.kernel.org/pub/linux/kernel/v3.x/nvd
- www.openwall.com/lists/oss-security/2012/04/22/1nvd
- www.securityfocus.com/bid/55774nvd
- www.ubuntu.com/usn/USN-1594-1nvd
News mentions
0No linked articles in our index yet.