Vulnerability Description
The Fibre Channel driver for QLogic adapters in IBM AIX 6.1 and 7.1 does not properly handle DMA resource limitations, which allows local users to cause a denial of service (system hang) via vectors that generate a large amount of DMA I/O, related to a deadlock in timer processing across CPUs.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Aix | 6.1 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ94222
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ94383
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ94593
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ94675
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ96761
- http://www.vupen.com/english/advisories/2011/0275Vendor Advisory
- http://www.vupen.com/english/advisories/2011/0691Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67292
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ94222
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ94383
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ94593
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ94675
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ96761
- http://www.vupen.com/english/advisories/2011/0275Vendor Advisory
- http://www.vupen.com/english/advisories/2011/0691Vendor Advisory
FAQ
What is CVE-2011-3982?
CVE-2011-3982 is a vulnerability with a CVSS score of 2.1 (LOW). The Fibre Channel driver for QLogic adapters in IBM AIX 6.1 and 7.1 does not properly handle DMA resource limitations, which allows local users to cause a denial of service (system hang) via vectors t...
How severe is CVE-2011-3982?
CVE-2011-3982 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-3982?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Aix.