Lucene search

K

PRIOn knowledge basePRION:CVE-2007-1592

HistoryMar 22, 2007 - 7:19 p.m.

Double free

2007-03-2219:19:00

PRIOn knowledge base

www.prio-n.com

6

6 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

8.3%

net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6_fl_socklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service (OOPS) or double free by opening a listening IPv6 socket, attaching a flow label, and connecting to that socket.

CPENameOperatorVersion
linux_kerneleq2.6.11 rc3
linux_kerneleq2.6.20.6
linux_kerneleq2.6.4 rc3
linux_kerneleq2.6.17 rc6
linux_kerneleq2.6.20.9
linux_kerneleq2.6.21 rc2
linux_kerneleq2.6.18 rc3
linux_kerneleq2.6.11
linux_kerneleq2.6.16.16
linux_kerneleq2.6.20 rc2

Rows per page:

1-10 of 2381

References

bugzilla.redhat.com/bugzilla/show_bug.cgi?id=233478

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d35690beda1429544d46c8eb34b2e3a8c37ab299

lists.suse.com/archive/suse-security-announce/2007-May/0001.html

rhn.redhat.com/errata/RHBA-2007-0304.html

rhn.redhat.com/errata/RHSA-2007-0436.html

secunia.com/advisories/24618

secunia.com/advisories/24777

secunia.com/advisories/25078

secunia.com/advisories/25099

secunia.com/advisories/25226

secunia.com/advisories/25288

secunia.com/advisories/25392

secunia.com/advisories/25630

secunia.com/advisories/25683

secunia.com/advisories/25714

secunia.com/advisories/25961

secunia.com/advisories/26379

secunia.com/advisories/27528

secunia.com/advisories/29058

support.avaya.com/elmodocs2/security/ASA-2007-404.htm

www.debian.org/security/2007/dsa-1286

www.debian.org/security/2007/dsa-1304

www.debian.org/security/2008/dsa-1503

www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.4

www.mandriva.com/security/advisories?name=MDKSA-2007:078

www.mandriva.com/security/advisories?name=MDVSA-2011:051

www.novell.com/linux/security/advisories/2007_30_kernel.html

www.novell.com/linux/security/advisories/2007_35_kernel.html

www.novell.com/linux/security/advisories/2007_43_kernel.html

www.redhat.com/support/errata/RHSA-2007-0347.html

www.redhat.com/support/errata/RHSA-2007-0672.html

www.redhat.com/support/errata/RHSA-2007-0673.html

www.securityfocus.com/bid/23104

www.ubuntu.com/usn/usn-464-1

www.vupen.com/english/advisories/2007/1084

exchange.xforce.ibmcloud.com/vulnerabilities/33176

marc.info/?l=linux-netdev&m=117406721731891&w=2

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10130

6 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

8.3%

Related for PRION:CVE-2007-1592

veracode1 securityvulns2 ubuntucve1 cve1 nessus15 redhat4 centos3 suse4 osv4 debian4 openvas17 ubuntu1 oraclelinux1