Lucene search
HistoryJun 13, 2012 - 10:24 a.m.
CVE-2011-1927
cve-2011-1927
linux kernel
denial of service
ip_expire
icmp_time_exceeded
5.6 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
81.6%
The ip_expire function in net/ipv4/ip_fragment.c in the Linux kernel before 2.6.39 does not properly construct ICMP_TIME_EXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service (invalid pointer dereference) via crafted fragmented packets.
References
Social References
More
Related
prion
prion
Null pointer dereference
2012-06-13 10:24:00
redhatcve
redhatcve
CVE-2011-1927
2015-10-30 10:26:33
seebug
seebug
Linux Kernel "ip_expire()"拒绝服务漏洞
2011-05-20 00:00:00
ubuntucve
ubuntucve
CVE-2011-1927
2011-05-18 00:00:00
nessus
nessus
Ubuntu 10.10 : linux vulnerabilities (USN-1379-1)
2012-02-29 00:00:00
USN-1383-1 : linux-ti-omap4 vulnerabilities
2012-03-07 00:00:00
Ubuntu 10.04 LTS : linux-lts-backport-maverick vulnerabilities (USN-1387-1)
2012-03-07 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1379-1)
2012-03-07 00:00:00
Ubuntu Update for linux USN-1379-1
2012-03-07 00:00:00
Ubuntu: Security Advisory (USN-1383-1)
2012-03-07 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2012-02-28 00:00:00
Linux kernel (OMAP4) vulnerabilities
2012-03-06 00:00:00
Linux kernel (Maverick backport) vulnerabilities
2012-03-06 00:00:00
5.6 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
81.6%
Related for CVE-2011-1927