4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
41.4%
The udp_queue_rcv_skb function in net/ipv4/udp.c in a certain Red Hat build
of the Linux kernel 2.6.18 in Red Hat Enterprise Linux (RHEL) 5 allows
attackers to cause a denial of service (deadlock and system hang) by
sending UDP traffic to a socket that has a crafted socket filter, a related
issue to CVE-2010-4158.
Author | Note |
---|---|
mdeslaur | RH bug says introduced in commit 93821778 and fixed in commit fda9ef5d. |
jdstrand | introduced in 57fe93b374a6b8711995c2d466c502af9f3a08bb from 2010/11/10 |