CVE-2011-3347

Опубликовано: 20 окт. 2011

Источник: redhat

CVSS2: 4.6

EPSS Низкий

Описание

A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise Linux (RHEL) 6, when promiscuous mode is enabled, allows remote attackers to cause a denial of service (system crash) via non-member VLAN packets.

Отчет

This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-1386.html. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not include support for ServerEngines' 10Gbps network adapter - BladeEngine. This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1530.html. A future kernel update in Red Hat Enterprise MRG may address this issue.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 4	kernel	Not affected
Red Hat Enterprise MRG 2	realtime-kernel	Affected
Red Hat Enterprise Linux 5	kernel	Fixed	RHSA-2011:1386	20.10.2011
Red Hat Enterprise Linux 6	kernel	Fixed	RHSA-2011:1530	05.12.2011
Red Hat Enterprise Linux 6.1 EUS - Server Only	kernel	Fixed	RHSA-2012:0116	15.02.2012

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=736425kernel: be2net: promiscuous mode and non-member VLAN packets DoS

EPSS

Процентиль: 66%

0.00537

Низкий

4.6 Medium

CVSS2

Связанные уязвимости

CVE-2011-3347

ubuntu

около 12 лет назад

CVE-2011-3347

nvd

около 12 лет назад

CVE-2011-3347

debian

около 12 лет назад

A certain Red Hat patch to the be2net implementation in the kernel pac ...

GHSA-hf88-fvh2-2xgw

github

около 3 лет назад

ELSA-2011-1530

oracle-oval

больше 13 лет назад

ELSA-2011-1530: Oracle Linux 6 kernel security, bug fix and enhancement update (MODERATE)

EPSS

Процентиль: 66%

0.00537

Низкий

4.6 Medium

CVSS2