UBUNTU-CVE-2011-2213

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2011-2213
Published: 29 Aug 2011, 00:00
Last modified:04 Feb 2026, 04:00

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

29 Aug 2011, 00:00
Published
Vulnerability first disclosed
04 Feb 2026, 04:00
Last Modified
Vulnerability information updated

Description

The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880.

Affected Systems

  • ubuntulinux

    < 3.11.0-12.19

  • ubuntulinux-flo

    < 3.4.0-1.3

  • ubuntulinux-goldfish

    < 3.4.0-1.7

  • ubuntulinux-grouper

    < 3.1.10-8.28

  • ubuntulinux-maguro

    < 3.0.0-3.18

  • ubuntulinux-mako

    < 3.4.0-3.21

  • ubuntulinux-manta

    < 3.4.0-4.19

References (14)