CVE-2011-1770

Опубликовано: 06 мая 2011

Источник: redhat

CVSS2: 7.8

Описание

Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel before 2.6.33.14 allows remote attackers to cause a denial of service via a Datagram Congestion Control Protocol (DCCP) packet with an invalid feature options length, which triggers a buffer over-read.

Отчет

This issue does not affect Red Hat Enterprise Linux 4 and 5: Red Hat Enterprise Linux 4 does not provide support for the Datagram Congestion Control Protocol (DCCP), and Red Hat Enterprise Linux 5, which does support DCCP, did not backport the upstream commit that introduced this issue, e77b8363b. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0836.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 4	kernel	Not affected
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise MRG 1	kernel-rt	Affected
Red Hat Enterprise Linux 6	kernel	Fixed	RHSA-2011:0836	01.06.2011
Red Hat Enterprise MRG 2	kernel-rt	Fixed	RHSA-2011:1253	12.09.2011

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-190->CWE-119

https://bugzilla.redhat.com/show_bug.cgi?id=703011kernel: dccp: handle invalid feature options length

7.8 High

CVSS2

Связанные уязвимости

CVE-2011-1770

CVSS3: 7.5

ubuntu

около 14 лет назад

CVE-2011-1770

CVSS3: 7.5

nvd

около 14 лет назад

CVE-2011-1770

CVSS3: 7.5

debian

около 14 лет назад

Integer underflow in the dccp_parse_options function (net/dccp/options ...

GHSA-qfgj-vxwq-r49v

CVSS3: 7.5

github

больше 3 лет назад

ELSA-2011-2019

oracle-oval

около 14 лет назад

ELSA-2011-2019: Oracle Linux 6 Unbreakable Enterprise kernel security fix update (IMPORTANT)

7.8 High

CVSS2