CVE-2011-1022 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2011-1022 Interim 1 25 2023-12-09T01:50:45Z current 2021-05-30T12:56:38Z 2023-12-09T01:50:45Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2011-1022 The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages originated in the kernel, which allows local users to bypass intended resource restrictions via a crafted message. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MRJCRTNKYOCZRTJU7NWI4JJU22523JSM/#MRJCRTNKYOCZRTJU7NWI4JJU22523JSM E-Mail link for SUSE-SR:2011:007 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 openSUSE Tumbleweed libcgroup-devel-0.41-2.8 libcgroup-devel-0.41.rc1-1.30 libcgroup-devel-0.41.rc1-2.34 libcgroup-devel-0.41.rc1-4.1 libcgroup-devel-0.41.rc1-9.1 libcgroup-tools-0.41-2.8 libcgroup-tools-0.41.rc1-1.30 libcgroup-tools-0.41.rc1-4.1 libcgroup-tools-0.41.rc1-9.1 libcgroup1-0.34-2.5.1 libcgroup1-0.37.1-5.16.1 libcgroup1-0.41-2.8 libcgroup1-0.41.rc1-1.30 libcgroup1-0.41.rc1-2.34 libcgroup1-0.41.rc1-4.1 libcgroup1-0.41.rc1-9.1 libcgroup1-32bit-0.41-2.8 libcgroup1-0.41.rc1-1.30 as a component of SUSE Linux Enterprise Desktop 12 libcgroup1-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libcgroup1-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libcgroup1-0.41.rc1-9.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libcgroup1-0.34-2.5.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA libcgroup1-0.34-2.5.1 as a component of SUSE Linux Enterprise Server 11 SP2 libcgroup1-0.37.1-5.16.1 as a component of SUSE Linux Enterprise Server 11 SP3 libcgroup1-0.41.rc1-2.34 as a component of SUSE Linux Enterprise Server 11 SP4 libcgroup-tools-0.41.rc1-1.30 as a component of SUSE Linux Enterprise Server 12 libcgroup1-0.41.rc1-1.30 as a component of SUSE Linux Enterprise Server 12 libcgroup-tools-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Server 12 SP1 libcgroup1-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Server 12 SP1 libcgroup-tools-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Server 12 SP2 libcgroup1-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Server 12 SP2 libcgroup-tools-0.41.rc1-9.1 as a component of SUSE Linux Enterprise Server 12 SP3 libcgroup1-0.41.rc1-9.1 as a component of SUSE Linux Enterprise Server 12 SP3 libcgroup-tools-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libcgroup1-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libcgroup-devel-0.41.rc1-2.34 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libcgroup1-0.41.rc1-2.34 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libcgroup-devel-0.41.rc1-1.30 as a component of SUSE Linux Enterprise Software Development Kit 12 libcgroup-devel-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libcgroup-devel-0.41.rc1-4.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libcgroup-devel-0.41.rc1-9.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 libcgroup-devel-0.41-2.8 as a component of openSUSE Tumbleweed libcgroup-tools-0.41-2.8 as a component of openSUSE Tumbleweed libcgroup1-0.41-2.8 as a component of openSUSE Tumbleweed libcgroup1-32bit-0.41-2.8 as a component of openSUSE Tumbleweed The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages originated in the kernel, which allows local users to bypass intended resource restrictions via a crafted message. CVE-2011-1022 SUSE Linux Enterprise Desktop 12:libcgroup1-0.41.rc1-1.30 SUSE Linux Enterprise Desktop 12 SP1:libcgroup1-0.41.rc1-4.1 SUSE Linux Enterprise Desktop 12 SP2:libcgroup1-0.41.rc1-4.1 SUSE Linux Enterprise Desktop 12 SP3:libcgroup1-0.41.rc1-9.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:libcgroup1-0.34-2.5.1 SUSE Linux Enterprise Server 11 SP2:libcgroup1-0.34-2.5.1 SUSE Linux Enterprise Server 11 SP3:libcgroup1-0.37.1-5.16.1 SUSE Linux Enterprise Server 11 SP4:libcgroup1-0.41.rc1-2.34 SUSE Linux Enterprise Server 12:libcgroup-tools-0.41.rc1-1.30 SUSE Linux Enterprise Server 12:libcgroup1-0.41.rc1-1.30 SUSE Linux Enterprise Server 12 SP1:libcgroup-tools-0.41.rc1-4.1 SUSE Linux Enterprise Server 12 SP1:libcgroup1-0.41.rc1-4.1 SUSE Linux Enterprise Server 12 SP2:libcgroup-tools-0.41.rc1-4.1 SUSE Linux Enterprise Server 12 SP2:libcgroup1-0.41.rc1-4.1 SUSE Linux Enterprise Server 12 SP3:libcgroup-tools-0.41.rc1-9.1 SUSE Linux Enterprise Server 12 SP3:libcgroup1-0.41.rc1-9.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libcgroup-tools-0.41.rc1-4.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libcgroup1-0.41.rc1-4.1 SUSE Linux Enterprise Software Development Kit 11 SP4:libcgroup-devel-0.41.rc1-2.34 SUSE Linux Enterprise Software Development Kit 11 SP4:libcgroup1-0.41.rc1-2.34 SUSE Linux Enterprise Software Development Kit 12:libcgroup-devel-0.41.rc1-1.30 SUSE Linux Enterprise Software Development Kit 12 SP1:libcgroup-devel-0.41.rc1-4.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libcgroup-devel-0.41.rc1-4.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libcgroup-devel-0.41.rc1-9.1 openSUSE Tumbleweed:libcgroup-devel-0.41-2.8 openSUSE Tumbleweed:libcgroup-tools-0.41-2.8 openSUSE Tumbleweed:libcgroup1-0.41-2.8 openSUSE Tumbleweed:libcgroup1-32bit-0.41-2.8 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:P/A:N