NULL pointer dereference in Linux Linux_kernel
CVE-2011-1093
The dccp_rcv_state_process function in net/dccp/input.c in the Datagram Congestion Control Protocol (DCCP) implementation in the Linux kernel before 2.6.38 does not properly handle packets for a CLOSED endpoint, which allows remote attacke…
EPSS: 0.012 (79.5th percentile) — read the EPSS interpretation.
Affected products
- Linux Linux_kernel
- Redhat Enterprise_linux_aus — versions 5.6
- Redhat Enterprise_linux_desktop — versions 5.0
- Redhat Enterprise_linux_eus — versions 5.6
- Redhat Enterprise_linux_server — versions 5.0
- Redhat Enterprise_linux_workstation — versions 5.0
- N/a — versions n/a
Weakness classification (CWE)
References
- secalert@redhat.com (x_refsource_CONFIRM)
- 46793 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- RHSA-2011:0833 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- secalert@redhat.com (x_refsource_CONFIRM, Patch, Third Party Advisory, Issue Tracking)
- [oss-security] 20110308 CVE request: kernel: dccp: fix oops on Reset after close (mailing-list, x_refsource_MLIST, Patch, Mailing List, Third Party Advisory)
- [oss-security] 20110308 Re: CVE request: kernel: dccp: fix oops on Reset after close (mailing-list, x_refsource_MLIST, Patch, Mailing List, Third Party Advisory)
- secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
- secalert@redhat.com (x_refsource_CONFIRM, Broken Link)