Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3412

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2012-3412
Last Modified 17 Aug 2013 02:46:41
Published 03 Oct 2012 07:02:56
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-3412

Summary

The sfc (aka Solarflare Solarstorm) driver in the Linux kernel before 3.2.30 allows remote attackers to cause a denial of service (DMA descriptor consumption and network-controller outage) via crafted TCP packets that trigger a small MSS value.

Vulnerable Systems

Operating System

  • Linux Kernel 3.2

  • Linux Kernel 3.2.1

  • Linux Kernel 3.2.10

  • Linux Kernel 3.2.11

  • Linux Kernel 3.2.12

  • Linux Kernel 3.2.13

  • Linux Kernel 3.2.14

  • Linux Kernel 3.2.15

  • Linux Kernel 3.2.16

  • Linux Kernel 3.2.17

  • Linux Kernel 3.2.18

  • Linux Kernel 3.2.19

  • Linux Kernel 3.2.20

  • Linux Kernel 3.2.21

  • Linux Kernel 3.2.22

  • Linux Kernel 3.2.23

  • Linux Kernel 3.2.24

  • Linux Kernel 3.2.25

  • Linux Kernel 3.2.26

  • Linux Kernel 3.2.27

  • Linux Kernel 3.2.28

  • Linux Kernel 3.2.29

  • Linux Kernel 3.2.3

  • Linux Kernel 3.2.4

  • Linux Kernel 3.2.5

  • Linux Kernel 3.2.6

  • Linux Kernel 3.2.7

  • Linux Kernel 3.2.8

  • Linux Kernel 3.2.9


References

CONFIRM - https://github.com/torvalds/linux/commit/68cb695ccecf949d48949e72f8ce591fdaaa325c

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=844714

MLIST - [oss-security] 20120803 Remote DoS in Linux sfc driver through TCP MSS option (CVE-2012-3412)

CONFIRM - http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.30

UBUNTU - USN-1580-1

UBUNTU - USN-1579-1

UBUNTU - USN-1572-1

UBUNTU - USN-1568-1

UBUNTU - USN-1567-1

REDHAT - RHSA-2012:1375

SUSE - openSUSE-SU-2012:1330

REDHAT - RHSA-2012:1430

SUSE - SUSE-SU-2012:1679

UBUNTU - USN-1578-1

UBUNTU - USN-1577-1

UBUNTU - USN-1575-1

REDHAT - RHSA-2012:1401

REDHAT - RHSA-2012:1347

REDHAT - RHSA-2012:1324

REDHAT - RHSA-2012:1323

SECUNIA - 50811

SECUNIA - 50732

SECUNIA - 50633

SECUNIA - 51193

Related Patches

Red Hat 2012:1323-01 RHSA Important: kernel security and bug fix update for RHEL 5 x86

Novell SUSE 2012:7123 kernel security update for SLE 11 SP2 i586

Novell SUSE 2012:7127 kernel security update for SLE 11 SP2 x86_64


Last Updated: 27 May 2016 11:00:50