Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2010-1188

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2010-1188
Last Modified 19 Mar 2012 12:00:00
Published 31 Mar 2010 02:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2010-1188

Summary

Use-after-free vulnerability in net/ipv4/tcp_input.c in the Linux kernel 2.6 before 2.6.20, when IPV6_RECVPKTINFO is set on a listening socket, allows remote attackers to cause a denial of service (kernel panic) via a SYN packet while the socket is in a listening (TCP_LISTEN) state, which is not properly handled and causes the skb structure to be freed.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.0

  • Linux Kernel 2.6.1

  • Linux Kernel 2.6.10

  • Linux Kernel 2.6.11

  • Linux Kernel 2.6.11.1

  • Linux Kernel 2.6.11.10

  • Linux Kernel 2.6.11.11

  • Linux Kernel 2.6.11.12

  • Linux Kernel 2.6.11.2

  • Linux Kernel 2.6.11.3

  • Linux Kernel 2.6.11.4

  • Linux Kernel 2.6.11.5

  • Linux Kernel 2.6.11.6

  • Linux Kernel 2.6.11.7

  • Linux Kernel 2.6.11.8

  • Linux Kernel 2.6.11.9

  • Linux Kernel 2.6.12

  • Linux Kernel 2.6.12.1

  • Linux Kernel 2.6.12.2

  • Linux Kernel 2.6.12.3

  • Linux Kernel 2.6.12.4

  • Linux Kernel 2.6.12.5

  • Linux Kernel 2.6.12.6

  • Linux Kernel 2.6.13

  • Linux Kernel 2.6.13.1

  • Linux Kernel 2.6.13.2

  • Linux Kernel 2.6.13.3

  • Linux Kernel 2.6.13.4

  • Linux Kernel 2.6.13.5

  • Linux Kernel 2.6.14

  • Linux Kernel 2.6.14.1

  • Linux Kernel 2.6.14.2

  • Linux Kernel 2.6.14.3

  • Linux Kernel 2.6.14.4

  • Linux Kernel 2.6.14.5

  • Linux Kernel 2.6.14.6

  • Linux Kernel 2.6.14.7

  • Linux Kernel 2.6.15

  • Linux Kernel 2.6.15.1

  • Linux Kernel 2.6.15.2

  • Linux Kernel 2.6.15.3

  • Linux Kernel 2.6.15.4

  • Linux Kernel 2.6.15.5

  • Linux Kernel 2.6.15.6

  • Linux Kernel 2.6.15.7

  • Linux Kernel 2.6.16

  • Linux Kernel 2.6.16.1

  • Linux Kernel 2.6.16.10

  • Linux Kernel 2.6.16.11

  • Linux Kernel 2.6.16.12

  • Linux Kernel 2.6.16.13

  • Linux Kernel 2.6.16.14

  • Linux Kernel 2.6.16.15

  • Linux Kernel 2.6.16.16

  • Linux Kernel 2.6.16.17

  • Linux Kernel 2.6.16.18

  • Linux Kernel 2.6.16.19

  • Linux Kernel 2.6.16.2

  • Linux Kernel 2.6.16.20

  • Linux Kernel 2.6.16.21

  • Linux Kernel 2.6.16.22

  • Linux Kernel 2.6.16.23

  • Linux Kernel 2.6.16.24

  • Linux Kernel 2.6.16.25

  • Linux Kernel 2.6.16.26

  • Linux Kernel 2.6.16.27

  • Linux Kernel 2.6.16.28

  • Linux Kernel 2.6.16.29

  • Linux Kernel 2.6.16.3

  • Linux Kernel 2.6.16.30

  • Linux Kernel 2.6.16.31

  • Linux Kernel 2.6.16.32

  • Linux Kernel 2.6.16.33

  • Linux Kernel 2.6.16.34

  • Linux Kernel 2.6.16.35

  • Linux Kernel 2.6.16.36

  • Linux Kernel 2.6.16.37

  • Linux Kernel 2.6.16.38

  • Linux Kernel 2.6.16.39

  • Linux Kernel 2.6.16.4

  • Linux Kernel 2.6.16.40

  • Linux Kernel 2.6.16.41

  • Linux Kernel 2.6.16.42

  • Linux Kernel 2.6.16.43

  • Linux Kernel 2.6.16.44

  • Linux Kernel 2.6.16.45

  • Linux Kernel 2.6.16.46

  • Linux Kernel 2.6.16.47

  • Linux Kernel 2.6.16.48

  • Linux Kernel 2.6.16.49

  • Linux Kernel 2.6.16.5

  • Linux Kernel 2.6.16.50

  • Linux Kernel 2.6.16.51

  • Linux Kernel 2.6.16.52

  • Linux Kernel 2.6.16.53

  • Linux Kernel 2.6.16.54

  • Linux Kernel 2.6.16.55

  • Linux Kernel 2.6.16.56

  • Linux Kernel 2.6.16.57

  • Linux Kernel 2.6.16.58

  • Linux Kernel 2.6.16.59

  • Linux Kernel 2.6.16.6

  • Linux Kernel 2.6.16.60

  • Linux Kernel 2.6.16.61

  • Linux Kernel 2.6.16.62

  • Linux Kernel 2.6.16.7

  • Linux Kernel 2.6.16.8

  • Linux Kernel 2.6.16.9

  • Linux Kernel 2.6.17

  • Linux Kernel 2.6.17.1

  • Linux Kernel 2.6.17.10

  • Linux Kernel 2.6.17.11

  • Linux Kernel 2.6.17.12

  • Linux Kernel 2.6.17.13

  • Linux Kernel 2.6.17.14

  • Linux Kernel 2.6.17.2

  • Linux Kernel 2.6.17.3

  • Linux Kernel 2.6.17.4

  • Linux Kernel 2.6.17.5

  • Linux Kernel 2.6.17.6

  • Linux Kernel 2.6.17.7

  • Linux Kernel 2.6.17.8

  • Linux Kernel 2.6.17.9

  • Linux Kernel 2.6.18

  • Linux Kernel 2.6.18.1

  • Linux Kernel 2.6.18.2

  • Linux Kernel 2.6.18.3

  • Linux Kernel 2.6.18.4

  • Linux Kernel 2.6.18.5

  • Linux Kernel 2.6.18.6

  • Linux Kernel 2.6.18.7

  • Linux Kernel 2.6.18.8

  • Linux Kernel 2.6.19

  • Linux Kernel 2.6.19.1

  • Linux Kernel 2.6.19.2

  • Linux Kernel 2.6.19.3

  • Linux Kernel 2.6.19.4

  • Linux Kernel 2.6.19.5

  • Linux Kernel 2.6.19.6

  • Linux Kernel 2.6.19.7

  • Linux Kernel 2.6.2


References

CONFIRM - http://git.kernel.org/linus/fb7e2399ec17f1004c0e0ccfd17439f8759ede01

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2011-0009.html

SECTRACK - 1023992

BID - 39016

REDHAT - RHSA-2010:0882

REDHAT - RHSA-2010:0439

REDHAT - RHSA-2010:0424

REDHAT - RHSA-2010:0394

REDHAT - RHSA-2010:0380

MLIST - [oss-security] 20100329 CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS)

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20

CONFIRM - http://support.avaya.com/css/P8/documents/100090459

SECUNIA - 39652


Last Updated: 27 May 2016 10:59:53