Linux Kernel 'net/can/raw.c'本地拒绝服务漏洞

Bugtraq ID: 47835 CVE ID：CVE-2011-1748 Linux是一款开放源代码的操作系统。 net/can/raw.c代码设计存在安全问题： static int rawreleasestruct socket sock struct sock sk = sock-sk; struct rawsock ro = rawsksk; unregisternetdevicenotifier&ro-notifier; locksocksk; / remove current filters & unregister / if ro-bound ... return 0;...

CVE-2011-1748

CVE-2011-1748 affects the Linux kernel: the raw_release function in net/can/raw.c fails to validate a socket data structure, enabling local users to trigger a NULL pointer dereference (denial of service) or possibly other impact via a crafted release operation. Affected versions are the kernel be...