Unrated severityNVD Advisory· Published Jun 13, 2012· Updated Jun 16, 2026
CVE-2012-2375
CVE-2012-2375
Description
The __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the NFSv4 implementation in the Linux kernel before 3.3.2 uses an incorrect length variable during a copy operation, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words in an FATTR4_ACL reply. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-4131.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=3.3.1
- cpe:2.3:o:linux:linux_kernel:3.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.3:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.3:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.3:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.3:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.3:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.3:rc6:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.3:rc7:*:*:*:*:*:*
- Range: <3.3.2
Patches
Vulnerability mechanics
References
7- github.com/torvalds/linux/commit/20e0fa98b751facf9a1101edaefbc19c82616a68nvdExploitPatch
- git.kernel.orgnvd
- marc.infonvd
- rhn.redhat.com/errata/RHSA-2012-1580.htmlnvd
- www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.2nvd
- www.openwall.com/lists/oss-security/2012/05/18/13nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.