CVE-2012-3552

EUVD-2012-3499
Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service (slab corruption and system crash) by sending packets to an application that sets socket options during the handling of network traffic.
Race Condition
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
𝑥
< 3.0
redhatenterprise_linux_eus
6.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
sid
6.11.6-1
fixed
trixie
6.11.5-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
hardy
not-affected
lucid
not-affected
natty
not-affected
oneiric
not-affected
precise
not-affected
quantal
not-affected
saucy
not-affected
trusty
not-affected
linux-armadaxp
hardy
dne
lucid
dne
natty
dne
oneiric
dne
precise
not-affected
quantal
not-affected
saucy
dne
trusty
dne
linux-ec2
hardy
dne
lucid
not-affected
natty
dne
oneiric
dne
precise
dne
quantal
dne
saucy
dne
trusty
dne
linux-flo
lucid
dne
precise
dne
quantal
dne
saucy
dne
trusty
dne
linux-fsl-imx51
hardy
dne
lucid
ignored
natty
dne
oneiric
dne
precise
dne
quantal
dne
saucy
dne
trusty
dne
linux-goldfish
lucid
dne
precise
dne
quantal
dne
saucy
ignored
trusty
dne
linux-grouper
lucid
dne
precise
dne
quantal
dne
saucy
ignored
trusty
dne
linux-linaro-omap
hardy
dne
lucid
dne
natty
ignored
oneiric
ignored
precise
ignored
quantal
not-affected
saucy
dne
trusty
dne
linux-linaro-shared
hardy
dne
lucid
dne
natty
dne
oneiric
ignored
precise
ignored
quantal
not-affected
saucy
dne
trusty
dne
linux-linaro-vexpress
hardy
dne
lucid
dne
natty
ignored
oneiric
ignored
precise
ignored
quantal
not-affected
saucy
dne
trusty
dne
linux-lts-backport-maverick
hardy
dne
lucid
ignored
natty
dne
oneiric
dne
precise
dne
quantal
dne
saucy
dne
trusty
dne
linux-lts-backport-natty
hardy
dne
lucid
not-affected
natty
dne
oneiric
dne
precise
dne
quantal
dne
saucy
dne
trusty
dne
linux-lts-backport-oneiric
hardy
dne
lucid
not-affected
natty
dne
oneiric
dne
precise
dne
quantal
dne
saucy
dne
trusty
dne
linux-maguro
lucid
dne
precise
dne
quantal
dne
saucy
ignored
trusty
dne
linux-mako
lucid
dne
precise
dne
quantal
dne
saucy
ignored
trusty
dne
linux-manta
lucid
dne
precise
dne
quantal
dne
saucy
ignored
trusty
dne
linux-mvl-dove
hardy
dne
lucid
ignored
natty
dne
oneiric
dne
precise
dne
quantal
dne
saucy
dne
trusty
dne
linux-qcm-msm
hardy
dne
lucid
ignored
natty
ignored
oneiric
ignored
precise
ignored
quantal
not-affected
saucy
dne
trusty
dne
linux-ti-omap4
hardy
dne
lucid
dne
natty
not-affected
oneiric
not-affected
precise
not-affected
quantal
not-affected
saucy
not-affected
trusty
dne
Common Weakness Enumeration
References
http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f6d8bd051c391c1c0458a30b2a7abcd939329259
http://rhn.redhat.com/errata/RHSA-2012-1540.html
http://www.openwall.com/lists/oss-security/2012/08/31/11
https://bugzilla.redhat.com/show_bug.cgi?id=853465
https://github.com/torvalds/linux/commit/f6d8bd051c391c1c0458a30b2a7abcd939329259
http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f6d8bd051c391c1c0458a30b2a7abcd939329259
http://rhn.redhat.com/errata/RHSA-2012-1540.html
http://www.openwall.com/lists/oss-security/2012/08/31/11
https://bugzilla.redhat.com/show_bug.cgi?id=853465
https://github.com/torvalds/linux/commit/f6d8bd051c391c1c0458a30b2a7abcd939329259