Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20550
HistoryMay 13, 2011 - 12:00 a.m.

Linux Kernel 'net/can/raw.c'本地拒绝服务漏洞

2011-05-1300:00:00
Root
www.seebug.org
18

0.0004 Low

EPSS

Percentile

5.1%

JSON

Bugtraq ID: 47835
CVE ID:CVE-2011-1748

Linux是一款开放源代码的操作系统。
net/can/raw.c代码设计存在安全问题:
static int raw_release(struct socket *sock)
{
struct sock *sk = sock->sk;
struct raw_sock ro = raw_sk(sk);
unregister_netdevice_notifier(&ro->notifier);
lock_sock(sk);
/ remove current filters & unregister */
if (ro->bound) {

return 0;
}
‘sock->sk’可以设置为NULL,因此任何‘ro’访问可导致一个空指针应用,造成拒绝服务攻击

Linux Kernel 2.6.x
厂商解决方案
用户可参考如下供应商提供的安全公告获得补丁信息:
http://permalink.gmane.org/gmane.linux.network/192974

Related

cve 1
prion 1
nvd 1
veracode 1
ubuntucve 1
cvelist 1
openvas 29
nessus 18
oraclelinux 2
redhat 2
ubuntu 10
suse 2
fedora 1
securityvulns 2
debian 2
osv 2
packetstorm 1
cve
cve
CVE-2011-1748
2011-05-09 22:55:03
prion
prion
Null pointer dereference
2011-05-09 22:55:00
nvd
nvd
CVE-2011-1748
2011-05-09 22:55:03
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:02:36
ubuntucve
ubuntucve
CVE-2011-1748
2011-05-09 00:00:00
cvelist
cvelist
CVE-2011-1748
2011-05-09 22:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2011-2019)
2015-10-06 00:00:00
RedHat Update for kernel RHSA-2011:0836-01
2012-06-06 00:00:00
RedHat Update for kernel RHSA-2011:0836-01
2012-06-06 00:00:00
nessus
nessus
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2019)
2013-07-12 00:00:00
RHEL 6 : kernel (RHSA-2011:0836)
2011-06-02 00:00:00
Oracle Linux 6 : kernel (ELSA-2011-0836)
2013-07-12 00:00:00
oraclelinux
oraclelinux
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2011-06-02 00:00:00
kernel security and bug fix update
2011-06-02 00:00:00
redhat
redhat
(RHSA-2011:0836) Important: kernel security and bug fix update
2011-06-01 00:00:00
(RHSA-2011:1253) Important: kernel-rt security and bug fix update
2011-09-12 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-07-15 00:00:00
Linux kernel vulnerabilities (EC2)
2011-07-13 00:00:00
Linux kernel vulnerabilities (i.MX51)
2011-07-06 00:00:00
suse
suse
Security update for Linux kernel (important)
2011-07-25 17:08:29
remote denial of service, potential local in kernel
2011-07-25 15:19:26
fedora
fedora
[SECURITY] Fedora 14 Update: kernel-2.6.35.14-95.fc14
2011-08-23 04:37:17
securityvulns
securityvulns
Linux kernel security vulnerabilities
2011-05-26 00:00:00
[SECURITY] [DSA 2240-1] linux-2.6 security update
2011-05-26 00:00:00
debian
debian
[SECURITY] [DSA 2240-1] linux-2.6 security update
2011-05-25 05:22:29
[SECURITY] [DSA 2264-1] linux-2.6 security update
2011-06-19 01:11:37
osv
osv
linux-2.6 - several issues
2011-05-24 00:00:00
linux-2.6 - several issues
2011-06-18 00:00:00
packetstorm
packetstorm
Ubuntu Security Notice USN-1202-1
2011-09-14 00:00:00

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for SSV:20550
cve1prion1nvd1veracode1ubuntucve1cvelist1openvas29nessus18oraclelinux2redhat2ubuntu10suse2fedora1securityvulns2debian2osv2packetstorm1