CVE-2012-5517
Public on 2012-12-21
Modified on 2014-09-14
Description
The online_pages function in mm/memory_hotplug.c in the Linux kernel before 3.6 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact in opportunistic circumstances by using memory that was hot-added by an administrator.
Severity
Medium
CVSS v3 Base Score
See breakdown
Affected Packages
| Platform | Package | Release Date | Advisory | Status |
|---|---|---|---|---|
| Amazon Linux 1 | kernel | 2013-01-14 | ALAS-2013-148 | Fixed |
| Amazon Linux 1 | nvidia | 2013-01-14 | ALAS-2013-148 | Fixed |
CVSS Scores
| Score Type | Score | Vector | |
|---|---|---|---|
| Amazon Linux | CVSSv2 | 4.0 | AV:L/AC:H/Au:N/C:N/I:N/A:C |
| NVD | CVSSv2 | 4.0 | AV:L/AC:H/Au:N/C:N/I:N/A:C |