Linux kernel - propusti

Linux kernel - propusti

  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12279
  • Gde živiš: Höganäs, SE


The qdisc_notify function in net/sched/sch_api.c in the Linux kernel before 2.6.35 does not prevent tc_fill_qdisc function calls referencing builtin (aka CQ_F_BUILTIN) Qdisc structures, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a crafted call.


net/sctp/sm_make_chunk.c in the Linux kernel before 2.6.34, when addip_enable and auth_enable are used, does not consider the amount of zero padding during calculation of chunk lengths for (1) INIT and (2) INIT ACK chunks, which allows remote attackers to cause a denial of service (OOPS) via crafted packet data.


The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping.

Source: NVD

Registruj se da bi učestvovao u diskusiji. Registrovanim korisnicima se NE prikazuju reklame unutar poruka.
Ko je trenutno na forumu

Ukupno su 659 korisnika na forumu :: 40 registrovanih, 7 sakrivenih i 612 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 1567 - dana 15 Jul 2016 20:18

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: amaterSRB, Bane_RS, blackbeast, BlekMen, brana959, coa93, cole77, d.arsenal321, danijell, Danko SVIK VRS, deks, dexter300, Dorcolac, drejk, dule_pacov, Futurama, ILGromovnik, Koca Popovic, kvcali, ljuba, Luka Vujcic, Marko Marković, MB120mm, mean_machine, mislimdaimamnesto, mushroom, Niko Bitan2, nikoli_ca, ostoja2, ray ban11, respekt, S-lash, Siniša Guša, Srki94, stalker, suton2, Trpe Grozni, Vlada1389, W123, Zgb