Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2011-1478

Опубликовано: 02 фев. 2011
Источник: redhat
CVSS2: 5.7

Описание

The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service (NULL pointer dereference) via a malformed VLAN frame.

Отчет

This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not support Generic Receive Offload (GRO). It has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0421.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise MRG 1realtime-kernelAffected
Red Hat Enterprise Linux 5kernelFixedRHSA-2011:042912.04.2011
Red Hat Enterprise Linux 6kernelFixedRHSA-2011:042108.04.2011
Red Hat Enterprise MRG 2kernel-rtFixedRHSA-2011:125312.09.2011

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=691270kernel: gro: reset dev and skb_iff on skb reuse

5.7 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2011-1478

ubuntu
больше 13 лет назад

The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service (NULL pointer dereference) via a malformed VLAN frame.

nvd логотип

CVE-2011-1478

nvd
больше 13 лет назад

The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service (NULL pointer dereference) via a malformed VLAN frame.

debian логотип

CVE-2011-1478

debian
больше 13 лет назад

The napi_reuse_skb function in net/core/dev.c in the Generic Receive O ...

github логотип

GHSA-xpmh-v8j6-g4hx

github
около 3 лет назад

The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service (NULL pointer dereference) via a malformed VLAN frame.

oracle-oval логотип

ELSA-2011-0429

oracle-oval
около 14 лет назад

ELSA-2011-0429: kernel security and bug fix update (IMPORTANT)

5.7 Medium

CVSS2