← Voltar para CVEs
CVE-2010-3880
N/ADescricao
net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message that contains multiple attribute elements, as demonstrated by INET_DIAG_BC_JMP instructions.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado12/10/2010
Ultima modificacao4/29/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
debian:debian_linuxlinux:linux_kernel
Fraquezas (CWE)
CWE-835
Referencias
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=22e76c849d505d87c5ecf3d3e6742a65f0ff4860(secalert@redhat.com)
http://openwall.com/lists/oss-security/2010/11/04/9(secalert@redhat.com)
http://openwall.com/lists/oss-security/2010/11/05/3(secalert@redhat.com)
http://secunia.com/advisories/42126(secalert@redhat.com)
http://secunia.com/advisories/42789(secalert@redhat.com)
http://secunia.com/advisories/42890(secalert@redhat.com)
http://secunia.com/advisories/46397(secalert@redhat.com)
http://www.debian.org/security/2010/dsa-2126(secalert@redhat.com)
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc2(secalert@redhat.com)
http://www.redhat.com/support/errata/RHSA-2010-0958.html(secalert@redhat.com)
http://www.redhat.com/support/errata/RHSA-2011-0004.html(secalert@redhat.com)
http://www.redhat.com/support/errata/RHSA-2011-0007.html(secalert@redhat.com)
http://www.securityfocus.com/archive/1/520102/100/0/threaded(secalert@redhat.com)
http://www.securityfocus.com/bid/44665(secalert@redhat.com)
http://www.spinics.net/lists/netdev/msg145899.html(secalert@redhat.com)
http://www.vmware.com/security/advisories/VMSA-2011-0012.html(secalert@redhat.com)
http://www.vupen.com/english/advisories/2011/0024(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=651264(secalert@redhat.com)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=22e76c849d505d87c5ecf3d3e6742a65f0ff4860(af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2010/11/04/9(af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2010/11/05/3(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/42126(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/42789(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/42890(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/46397(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2010/dsa-2126(af854a3a-2127-422b-91ae-364da2661108)
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc2(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2010-0958.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2011-0004.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2011-0007.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/520102/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/44665(af854a3a-2127-422b-91ae-364da2661108)
http://www.spinics.net/lists/netdev/msg145899.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.vmware.com/security/advisories/VMSA-2011-0012.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0024(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=651264(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.