4 matches found
CVE-2011-1076
net/dnsresolver/dnskey.c in the Linux kernel before 2.6.38 allows remote DNS servers to cause a denial of service NULL pointer dereference and OOPS by not providing a valid response to a DNS query, as demonstrated by an erroneous grand.centrall.org query, which triggers improper handling of error...
CVE-2011-1076
net/dnsresolver/dnskey.c in the Linux kernel before 2.6.38 allows remote DNS servers to cause a denial of service NULL pointer dereference and OOPS by not providing a valid response to a DNS query, as demonstrated by an erroneous grand.centrall.org query, which triggers improper handling of error...
CVE-2011-1076
CVE-2011-1076 affects the Linux kernel up to 2.6.37 in dns_key.c; remote DNS servers sending invalid responses can trigger a NULL pointer dereference/OOPS, leading to a denial of service. Reports from SUSE/Red Hat/NVD corroborate. Remediation: upgrade to kernel 2.6.38 or newer (vendor patches). E...
Linux Kernel "dns_key.c"空指针引用拒绝服务漏洞
BUGTRAQ ID: 46732 CVE ID: CVE-2011-1076 Linux Kernel是Linux操作系统的内核。 Linux Kernel在dnskey.c的实现上存在空指针引用拒绝服务漏洞,远程攻击者利用此漏洞使内核引用无效内存位置,造成拒绝服务。 在DNS解析程序密钥用错误提示实例化时,尝试读取该密钥可造成崩溃。因为userread以为这里会有一个负载,但事实上没有。 Linux kernel 2.6.x Ubuntu Ubuntu 11.04 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...