CVE-2009-1298
6.3 Medium
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.283 Low
EPSS
Percentile
96.8%
The ip_frag_reasm function in net/ipv4/ip_fragment.c in the Linux kernel 2.6.32-rc8, and 2.6.29 and later versions before 2.6.32, calls IP_INC_STATS_BH with an incorrect argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and hang) via long IP packets, possibly related to the ip_defrag function.
References
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=bbf31bf18d34caa87dd01f08bf713635593697f2
lists.opensuse.org/opensuse-security-announce/2010-01/msg00000.html
secunia.com/advisories/37624
secunia.com/advisories/38017
twitter.com/spendergrsec/statuses/6339560349
wiki.rpath.com/Advisories:rPSA-2009-0161
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32
www.mandriva.com/security/advisories?name=MDVSA-2009:329
www.osvdb.org/60788
www.securityfocus.com/archive/1/508517/100/0/threaded
www.theregister.co.uk/2009/12/11/linux_kernel_bugs_patched/
www.ubuntu.com/usn/USN-869-1
bugzilla.redhat.com/show_bug.cgi?id=544144
www.redhat.com/archives/fedora-package-announce/2009-December/msg00453.html
www.redhat.com/archives/fedora-package-announce/2009-December/msg00496.html
Social References
More
Related
6.3 Medium
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.283 Low
EPSS
Percentile
96.8%