Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1768

Overview

Vulnerability Score 5.4 5.4
CVE Id CVE-2011-1768
Last Modified 15 Jun 2012 12:00:00
Published 13 Jun 2012 06:24:54
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2011-1768

Summary

The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.33

  • Linux Kernel 2.6.33.1

  • Linux Kernel 2.6.33.10

  • Linux Kernel 2.6.33.11

  • Linux Kernel 2.6.33.12

  • Linux Kernel 2.6.33.13

  • Linux Kernel 2.6.33.14

  • Linux Kernel 2.6.33.15

  • Linux Kernel 2.6.33.16

  • Linux Kernel 2.6.33.17

  • Linux Kernel 2.6.33.18

  • Linux Kernel 2.6.33.19

  • Linux Kernel 2.6.33.2

  • Linux Kernel 2.6.33.20

  • Linux Kernel 2.6.33.3

  • Linux Kernel 2.6.33.4

  • Linux Kernel 2.6.33.5

  • Linux Kernel 2.6.33.6

  • Linux Kernel 2.6.33.7

  • Linux Kernel 2.6.33.8

  • Linux Kernel 2.6.33.9


References

CONFIRM - https://github.com/torvalds/linux/commit/d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978

CONFIRM - http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=702303

MLIST - [oss-security] 20110505 Re: CVE requests - kernel network vulns

CONFIRM - http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34


Last Updated: 27 May 2016 10:49:38