Lucene search
F5F5:K10772HistoryJul 05, 2013 - 12:00 a.m.
K10772 : Linux NULL pointer dereference vulnerability - CVE-2009-2692
2013-07-0500:00:00
my.f5.com
32
7.4 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
19.4%
Security Advisory Description
Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5 security vulnerability response policy.F5 products and versions that have been evaluated for this Security Advisory
| Product | Affected | Not Affected |
|---|---|---|
| BIG-IP LTM | None | 9.x |
| 10.x | ||
| 11.x | ||
| BIG-IP GTM | None | 9.x |
| 10.x | ||
| 11.x | ||
| BIG-IP ASM | None | 9.x |
| 10.x | ||
| 11.x | ||
| BIG-IP Link Controller | None | 9.x |
| 10.x | ||
| 11.x | ||
| BIG-IP WebAccelerator | None | 9.x |
| 10.x | ||
| 11.x | ||
| BIG-IP PSM | None | 9.x |
| 10.x | ||
| 11.x | ||
| BIG-IP WAN Optimization | None | 10.x |
| 11.x | ||
| BIG-IP APM | None | 10.x |
| 11.x | ||
| BIG-IP Edge Gateway | None | 10.x |
| 11.x | ||
| BIG-IP Analytics | None | 11.x |
| BIG-IP AFM | None | 11.x |
| BIG-IP PEM | None | 11.x |
| BIG-IP AAM | None | 11.x |
| FirePass | None | 5.x |
| 6.x | ||
| 7.x | ||
| Enterprise Manager | None | 1.x |
| 2.x | ||
| 3.x | ||
| ARX | None | 2.x |
| 3.x | ||
| 4.x | ||
| 5.x | ||
| 6.x | ||
| The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, do not initialize all function pointers for socket operations in proto_ops structures. As a result, local users may be allowed to trigger a NULL pointer dereference. | ||
| Information about this advisory is available at the following location: | ||
| <https://vulners.com/cve/CVE-2009-2692> | ||
| Note: As a result of a typo, this advisory was also referred to as CVE-2009-2962. Be advised that CVE-2009-2962 was removed as a duplicate of CVE-2009-2692. For information, refer to https://vulners.com/cve/CVE-2009-2962. This link takes you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge. |
Related
cve
cve
CVE-2009-2962
2009-08-21 11:02:00
CVE-2009-2692
2009-08-14 15:16:00
f5
f5
SOL10772 - Linux NULL pointer dereference vulnerability - CVE-2009-2692
2009-11-15 00:00:00
seebug
seebug
Linux Kernel 2.4/2.6 sock_sendpage() ring0 Root Exploit (simple ver)
2009-08-25 00:00:00
Linux Kernel 2.x - sock_sendpage() Local Root Exploit (Android Edition)
2014-07-01 00:00:00
Linux Kernel 2.4/2.6 - sock_sendpage() ring0 Root Exploit (Simple Version)
2014-07-01 00:00:00
nessus
nessus
Debian DSA-1862-1 : linux-2.6 - privilege escalation
2010-02-24 00:00:00
Mandriva Linux Security Advisory : kernel (MDVSA-2009:233)
2009-09-15 00:00:00
Fedora 11 : kernel-2.6.29.6-217.2.7.fc11 (2009-8649)
2009-08-18 00:00:00
securityvulns
securityvulns
openvas
openvas
Debian Security Advisory DSA 1862-1 (linux-2.6)
2009-09-02 00:00:00
Debian Security Advisory DSA 1864-1 (linux-2.6.24)
2009-09-02 00:00:00
Debian Security Advisory DSA 1862-1 (linux-2.6)
2009-09-02 00:00:00
slackware
slackware
kernel
2009-08-18 20:47:47
osv
osv
linux-2.6.24 - privilege escalation
2009-08-16 00:00:00
linux-2.6 - privilege escalation
2009-08-14 00:00:00
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2009-08-16 00:00:00
packetstorm
packetstorm
Linux Kernel Sendpage Local Privilege Escalation
2012-07-19 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:36:00
prion
prion
Null pointer dereference
2009-08-14 15:16:00
debian
debian
[SECURITY] [DSA 1864-1] New Linux 2.6.24 packages fix privilege escalation
2009-08-16 16:42:51
[SECURITY] [DSA 1862-1] New Linux 2.6.26 packages fix privilege escalation
2009-08-14 19:31:10
ubuntucve
ubuntucve
CVE-2009-2692
2009-08-13 00:00:00
ubuntu
ubuntu
Linux kernel vulnerability
2009-08-19 00:00:00
exploitpack
exploitpack
altlinux
altlinux
checkpoint_security
checkpoint_security
android
android
sock_sendpage
2009-08-13 00:00:00
exploitdb
exploitdb
oraclelinux
oraclelinux
kernel security and bug fix update
2009-08-24 00:00:00
kernel security update
2009-08-27 00:00:00
kernel security update
2009-08-24 00:00:00
redhat
redhat
(RHSA-2009:1233) Important: kernel security update
2009-08-27 00:00:00
(RHSA-2009:1223) Important: kernel security update
2009-08-24 00:00:00
(RHSA-2009:1222) Important: kernel security and bug fix update
2009-08-24 00:00:00
canvas
canvas
Immunity Canvas: PROTO_OPS_NULL
2009-08-27 17:30:00
centos
centos
kernel security update
2009-08-24 19:35:59
kernel security update
2009-08-28 22:30:59
kernel security update
2009-08-24 15:30:11
fedora
fedora
[SECURITY] Fedora 11 Update: kernel-2.6.29.6-217.2.7.fc11
2009-08-15 21:45:53
[SECURITY] Fedora 11 Update: kernel-2.6.29.6-217.2.8.fc11
2009-08-17 22:00:48
[SECURITY] Fedora 10 Update: kernel-2.6.27.29-170.2.79.fc10
2009-08-15 21:45:33
vmware
vmware
suse
suse
local privilege escalation in kernel
2009-08-20 16:02:11
kitploit
kitploit
7.4 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
19.4%
Related for F5:K10772