CVE-2011-4112
17.05.2012, 11:00
The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFF_TX_SKB_SHARING flag, which allows local users to cause a denial of service (panic) by leveraging the CAP_NET_ADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction with a bridge device for a VLAN interface.Enginsight
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 𝑥 < 3.1 |
| avaya | 9608_firmware | 6.0 ≤ 𝑥 ≤ 6.6.0 |
| avaya | 9608g_firmware | 6.0 ≤ 𝑥 ≤ 6.6.0 |
| avaya | 9611g_firmware | 6.0 ≤ 𝑥 ≤ 6.6.0 |
| avaya | 9621g_firmware | 6.0 ≤ 𝑥 ≤ 6.6.0 |
| avaya | 9641g_firmware | 6.0 ≤ 𝑥 ≤ 6.6.0 |
| avaya | 9641gs_firmware | 6.0 ≤ 𝑥 ≤ 6.6.0 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| linux |
| ||||||||||
| linux-ec2 |
| ||||||||||
| linux-fsl-imx51 |
| ||||||||||
| linux-lts-backport-maverick |
| ||||||||||
| linux-lts-backport-natty |
| ||||||||||
| linux-lts-backport-oneiric |
| ||||||||||
| linux-mvl-dove |
| ||||||||||
| linux-ti-omap4 |
|
References