CVE-2012-3552

Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service (slab corruption and system crash) by sending packets to an application that sets socket options during the handling of network traffic.
Race Condition
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
VendorProductVersion
linuxlinux_kernel
𝑥
< 3.0
redhatenterprise_linux_eus
6.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
trixie
6.11.5-1
fixed
sid
6.11.6-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
trusty
not-affected
saucy
not-affected
quantal
not-affected
precise
not-affected
oneiric
not-affected
natty
not-affected
lucid
not-affected
hardy
not-affected
linux-armadaxp
trusty
dne
saucy
dne
quantal
not-affected
precise
not-affected
oneiric
dne
natty
dne
lucid
dne
hardy
dne
linux-ec2
trusty
dne
saucy
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
lucid
not-affected
hardy
dne
linux-flo
trusty
dne
saucy
dne
quantal
dne
precise
dne
lucid
dne
linux-fsl-imx51
trusty
dne
saucy
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
lucid
ignored
hardy
dne
linux-goldfish
trusty
dne
saucy
ignored
quantal
dne
precise
dne
lucid
dne
linux-grouper
trusty
dne
saucy
ignored
quantal
dne
precise
dne
lucid
dne
linux-linaro-omap
trusty
dne
saucy
dne
quantal
not-affected
precise
ignored
oneiric
ignored
natty
ignored
lucid
dne
hardy
dne
linux-linaro-shared
trusty
dne
saucy
dne
quantal
not-affected
precise
ignored
oneiric
ignored
natty
dne
lucid
dne
hardy
dne
linux-linaro-vexpress
trusty
dne
saucy
dne
quantal
not-affected
precise
ignored
oneiric
ignored
natty
ignored
lucid
dne
hardy
dne
linux-lts-backport-maverick
trusty
dne
saucy
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
lucid
ignored
hardy
dne
linux-lts-backport-natty
trusty
dne
saucy
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
lucid
not-affected
hardy
dne
linux-lts-backport-oneiric
trusty
dne
saucy
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
lucid
not-affected
hardy
dne
linux-maguro
trusty
dne
saucy
ignored
quantal
dne
precise
dne
lucid
dne
linux-mako
trusty
dne
saucy
ignored
quantal
dne
precise
dne
lucid
dne
linux-manta
trusty
dne
saucy
ignored
quantal
dne
precise
dne
lucid
dne
linux-mvl-dove
trusty
dne
saucy
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
lucid
ignored
hardy
dne
linux-qcm-msm
trusty
dne
saucy
dne
quantal
not-affected
precise
ignored
oneiric
ignored
natty
ignored
lucid
ignored
hardy
dne
linux-ti-omap4
trusty
dne
saucy
not-affected
quantal
not-affected
precise
not-affected
oneiric
not-affected
natty
not-affected
lucid
dne
hardy
dne
Common Weakness Enumeration
References
http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f6d8bd051c391c1c0458a30b2a7abcd939329259
http://rhn.redhat.com/errata/RHSA-2012-1540.html
http://www.openwall.com/lists/oss-security/2012/08/31/11
https://bugzilla.redhat.com/show_bug.cgi?id=853465
https://github.com/torvalds/linux/commit/f6d8bd051c391c1c0458a30b2a7abcd939329259
http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f6d8bd051c391c1c0458a30b2a7abcd939329259
http://rhn.redhat.com/errata/RHSA-2012-1540.html
http://www.openwall.com/lists/oss-security/2012/08/31/11
https://bugzilla.redhat.com/show_bug.cgi?id=853465
https://github.com/torvalds/linux/commit/f6d8bd051c391c1c0458a30b2a7abcd939329259