Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-4526

Опубликовано: 11 янв. 2011
Источник: nvd
CVSS2: 7.1
EPSS Низкий

Описание

Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service (panic) via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and triggers list corruption, related to the sctp_wait_for_connect function.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 2.6.11.1 (включая) до 2.6.33 (включая)
cpe:2.3:o:linux:linux_kernel:2.6.11:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.11:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.11:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.11:rc5:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:redhat:enterprise_mrg:1.0:*:*:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*
cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*

EPSS

Процентиль: 83%
0.02057
Низкий

7.1 High

CVSS2

Дефекты

CWE-362

Связанные уязвимости

ubuntu логотип

CVE-2010-4526

ubuntu
больше 14 лет назад

Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service (panic) via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and triggers list corruption, related to the sctp_wait_for_connect function.

redhat логотип

CVE-2010-4526

redhat
около 15 лет назад

Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service (panic) via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and triggers list corruption, related to the sctp_wait_for_connect function.

debian логотип

CVE-2010-4526

debian
больше 14 лет назад

Race condition in the sctp_icmp_proto_unreachable function in net/sctp ...

github логотип

GHSA-mrp2-pm5c-pxrh

github
около 3 лет назад

Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service (panic) via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and triggers list corruption, related to the sctp_wait_for_connect function.

oracle-oval логотип

ELSA-2011-0163

oracle-oval
больше 14 лет назад

ELSA-2011-0163: kernel security and bug fix update (IMPORTANT)

EPSS

Процентиль: 83%
0.02057
Низкий

7.1 High

CVSS2

Дефекты

CWE-362