K16011 : Linux kernel vulnerability CVE-2012-6657

2015-01-2200:00:00

my.f5.com

6.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.0%

JSON

Security Advisory Description

The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5.7 does not ensure that a keepalive action is associated with a stream socket, which allows local users to cause a denial of service (system crash) by leveraging the ability to create a raw socket. (CVE-2012-6657)

Impact

A local attacker may be able to cause a denial-of-service (DoS) by crashing the system.

CPENameOperatorVersion
big-ip afmeq11.3.0
big-ip afmeq11.4.0
big-ip afmeq11.4.1
big-ip afmeq11.5.0
big-ip afmeq11.5.1
big-ip afmeq11.5.4
big-ip afmeq11.6.0
big-ip afmeq12.0.0
big-ip analyticseq11.0.0
big-ip analyticseq11.1.0

Name	Operator	Version
big-ip afm	eq	11.3.0
big-ip afm	eq	11.4.0
big-ip afm	eq	11.4.1
big-ip afm	eq	11.5.0
big-ip afm	eq	11.5.1
big-ip afm	eq	11.5.4
big-ip afm	eq	11.6.0
big-ip afm	eq	12.0.0
big-ip analytics	eq	11.0.0
big-ip analytics	eq	11.1.0