Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2011-2189

Опубликовано: 16 фев. 2011
Источник: redhat
CVSS2: 4.6
EPSS Низкий

Описание

net/core/net_namespace.c in the Linux kernel 2.6.32 and earlier does not properly handle a high rate of creation and cleanup of network namespaces, which makes it easier for remote attackers to cause a denial of service (memory consumption) via requests to a daemon that requires a separate namespace per connection, as demonstrated by vsftpd.

Отчет

This did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not include support for Network Namespaces. A future kernel update in Red Hat Enterprise MRG may address this issue. The risks associated with fixing this flaw outweigh the benefits of the fix, therefore Red Hat does not plan to fix this flaw in Red Hat Enterprise Linux 6.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 4kernelNot affected
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelAffected
Red Hat Enterprise MRG 2realtime-kernelAffected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=711245kernel: net_ns: oom killer fires because of slow net_ns cleanup

EPSS

Процентиль: 91%
0.07252
Низкий

4.6 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2011-2189

CVSS3: 7.5
ubuntu
около 14 лет назад

net/core/net_namespace.c in the Linux kernel 2.6.32 and earlier does not properly handle a high rate of creation and cleanup of network namespaces, which makes it easier for remote attackers to cause a denial of service (memory consumption) via requests to a daemon that requires a separate namespace per connection, as demonstrated by vsftpd.

nvd логотип

CVE-2011-2189

CVSS3: 7.5
nvd
около 14 лет назад

net/core/net_namespace.c in the Linux kernel 2.6.32 and earlier does not properly handle a high rate of creation and cleanup of network namespaces, which makes it easier for remote attackers to cause a denial of service (memory consumption) via requests to a daemon that requires a separate namespace per connection, as demonstrated by vsftpd.

debian логотип

CVE-2011-2189

CVSS3: 7.5
debian
около 14 лет назад

net/core/net_namespace.c in the Linux kernel 2.6.32 and earlier does n ...

github логотип

GHSA-cwc9-v946-jvqj

CVSS3: 7.5
github
больше 3 лет назад

net/core/net_namespace.c in the Linux kernel 2.6.32 and earlier does not properly handle a high rate of creation and cleanup of network namespaces, which makes it easier for remote attackers to cause a denial of service (memory consumption) via requests to a daemon that requires a separate namespace per connection, as demonstrated by vsftpd.

fstec логотип

BDU:2015-02948

fstec
почти 15 лет назад

Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить доступность защищаемой информации

EPSS

Процентиль: 91%
0.07252
Низкий

4.6 Medium

CVSS2