Linux Kernel Null Pointer Dereference in icmp_send() Lets Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1025538 |
|
SecurityTracker URL: http://securitytracker.com/id/1025538
|
|
CVE Reference:
CVE-2011-1927
(Links to External Site)
|
Updated: May 19 2011
|
Original Entry Date: May 16 2011
|
Impact:
Denial of service via network
|
Fix Available: Yes Vendor Confirmed: Yes Exploit Included: Yes
|
Version(s): 2.6.38.6 and prior versions
|
Description:
A vulnerability was reported in the Linux Kernel. A remote user on the local network can cause denial of service conditions.
The dev_net() function in icmp_send() in 'net/ipv4/icmp.c' does not properly validate a parameter. A remote user on the local network can send a flood of fragmented IPv4 packets to trigger a null pointer dereference and cause the target system to crash.
The vendor was notified on May 10, 2011.
Aristide Fattori, Universita degli Studi di Milano, and Roberto Paleari, Emaze Networks S.p.A reported this vulnerability.
|
Impact:
A remote user on the local network can cause the target system to crash.
|
Solution:
The vendor has issued a fix, available at:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=64f3b9e2
|
Vendor URL: www.kernel.org/ (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
