Lucene search

K

Veracode Vulnerability DatabaseVERACODE:23916

HistoryApr 10, 2020 - 12:40 a.m.

Denial Of Service (DoS)

2020-04-1000:40:03

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

10

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

The kernel-rt package is vulnerable to Denial Of Service (DoS).Missing initialization flaws were found in getname() implementations in numerous network protocol implementations in the Linux kernel. Certain data structures in these getname() implementations were not initialized properly before being copied to user-space. These flaws could lead to an information leak.

CPENameOperatorVersion
kernel-rteq2.6.24.7__111.el5rt
kernel-rteq2.6.24.7__81.el5rt
kernel-rteq2.6.24.7__117.el5rt
kernel-rteq2.6.24.7__132.el5rt
kernel-rteq2.6.24.7__101.el5rt
kernel-rteq2.6.24.7__108.el5rt
kernel-rteq2.6.24.7__93.el5rt
kernel-rteq2.6.24.7__126.el5rt
kernel-rteq2.6.24.7__74.el5rt
kernel-rteq2.6.24.7__111.el5rt

Rows per page:

1-10 of 181

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=09384dfc76e526c3993c09c42e016372dc9dd22c

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=17ac2e9c58b69a1e25460a568eae1b0dc0188c25

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3d392475c873c10c10d6d96b94d092a34ebd4791

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=80922bbb12a105f858a8f0abb879cb4302d0ecaa

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=e84b90ae5eb3c112d1f208964df1d8156a538289

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f6b97b29513950bfbf621a83d85b6f86b39ec8db

kbase.redhat.com/faq/docs/DOC-17866

kbase.redhat.com/faq/docs/DOC-18042

lists.opensuse.org/opensuse-security-announce/2009-11/msg00005.html

lists.opensuse.org/opensuse-security-announce/2009-11/msg00007.html

lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html

secunia.com/advisories/36438

secunia.com/advisories/37105

secunia.com/advisories/37351

www.exploit-db.com/exploits/9521

www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7

www.openwall.com/lists/oss-security/2009/08/27/1

www.openwall.com/lists/oss-security/2009/08/27/2

www.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/

www.redhat.com/security/updates/classification/#important

www.securityfocus.com/archive/1/512019/100/0/threaded

www.securityfocus.com/bid/36150

www.ubuntu.com/usn/USN-852-1

access.redhat.com/errata/RHSA-2009:1540

bugzilla.redhat.com/show_bug.cgi?id=519305

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11611

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11741

rhn.redhat.com/errata/RHSA-2009-1540.html

rhn.redhat.com/errata/RHSA-2009-1550.html

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

Related for VERACODE:23916

prion1 seebug3 exploitpack1 cve1 ubuntucve1 exploitdb1 openvas28 suse4 nessus22 oraclelinux3 centos1 redhat2 osv3 securityvulns2 debian3 vmware1 fedora1 ubuntu1