Lucene search

Veracode Vulnerability DatabaseVERACODE:23730

HistoryApr 10, 2020 - 12:34 a.m.

Integer Overflow

2020-04-1000:34:59

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.102 Low

EPSS

Percentile

95.0%

JSON

The kernel-rt is vulnerable to Integer Overflow. A flaw was found in the Intel PRO/1000 network driver in the Linux kernel. Frames with sizes near the MTU of an interface may be split across multiple hardware receive descriptors. Receipt of such a frame could leak through a validation check, leading to a corruption of the length check. A remote attacker could use this flaw to send a specially-crafted packet that would cause a denial of service or code execution.

CPENameOperatorVersion
kernel-rteq2.6.24.7__117.el5rt
kernel-rteq2.6.24.7__101.el5rt
kernel-rteq2.6.24.7__108.el5rt
kernel-rteq2.6.24.7__93.el5rt
kernel-rteq2.6.24.7__111.el5rt
kernel-rteq2.6.24.7__81.el5rt
kernel-rteq2.6.24.7__74.el5rt
kerneleq2.6.18__128.el5
kerneleq2.6.18__128.2.1.el5
kerneleq2.6.18__92.1.18.el5

Name	Operator	Version
kernel-rt	eq	2.6.24.7__117.el5rt
kernel-rt	eq	2.6.24.7__101.el5rt
kernel-rt	eq	2.6.24.7__108.el5rt
kernel-rt	eq	2.6.24.7__93.el5rt
kernel-rt	eq	2.6.24.7__111.el5rt
kernel-rt	eq	2.6.24.7__81.el5rt
kernel-rt	eq	2.6.24.7__74.el5rt
kernel	eq	2.6.18__128.el5
kernel	eq	2.6.18__128.2.1.el5
kernel	eq	2.6.18__92.1.18.el5

Rows per page:

1-10 of 861

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ea30e11970a96cfe5e32c03a29332554573b4a10

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ea30e11970a96cfe5e32c03a29332554573b4a10

lists.opensuse.org/opensuse-security-announce/2009-07/msg00004.html

osvdb.org/54892

secunia.com/advisories/35265

secunia.com/advisories/35566

secunia.com/advisories/35623

secunia.com/advisories/35656

secunia.com/advisories/35847

secunia.com/advisories/36051

secunia.com/advisories/36131

secunia.com/advisories/36327

secunia.com/advisories/37471

sourceforge.net/project/shownotes.php?release_id=504022&group_id=42302

wiki.rpath.com/Advisories:rPSA-2009-0111

www.debian.org/security/2009/dsa-1844

www.debian.org/security/2009/dsa-1865

www.intel.com/support/network/sb/CS-030543.htm

www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.30-rc8

www.mandriva.com/security/advisories?name=MDVSA-2009:135

www.mandriva.com/security/advisories?name=MDVSA-2009:148

www.openwall.com/lists/oss-security/2009/06/03/2

www.redhat.com/security/updates/classification/#important

www.redhat.com/support/errata/RHSA-2009-1157.html

www.redhat.com/support/errata/RHSA-2009-1193.html

www.securityfocus.com/archive/1/505254/100/0/threaded

www.securityfocus.com/archive/1/507985/100/0/threaded

www.securityfocus.com/archive/1/512019/100/0/threaded

www.securityfocus.com/bid/35185

www.ubuntu.com/usn/usn-793-1

www.vmware.com/security/advisories/VMSA-2009-0016.html

www.vupen.com/english/advisories/2009/3316

access.redhat.com/errata/RHSA-2009:1132

access.redhat.com/errata/RHSA-2009:1157

access.redhat.com/errata/RHSA-2009:1193

access.redhat.com/errata/RHSA-2009:1550

access.redhat.com/errata/RHSA-2010:0079

access.redhat.com/security/cve/CVE-2009-1385

bugzilla.redhat.com/show_bug.cgi?id=502981

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11598

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11681

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8340

rhn.redhat.com/errata/RHSA-2009-1550.html

www.redhat.com/archives/fedora-package-announce/2009-June/msg01048.html

www.redhat.com/archives/fedora-package-announce/2009-June/msg01094.html

www.redhat.com/archives/fedora-package-announce/2009-June/msg01193.html

0.102 Low

EPSS

Percentile

95.0%

JSON

Related for VERACODE:23730