CVE-2011-2213
CVSS v2.0
4.9 (Medium)
EPSS
0.04 % (11th)
Affected Products
6
Advisories
18
The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880.
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2011-08-29 18:55:01
(13 years ago) - Updated Date
-
2023-02-13 01:19:45
(19 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...