Info

Disclosure

Nov 12, 2010

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Nov 16, 2010

Description

Linux Kernel contains a flaw that may allow a local denial of service. The issue is triggered when a user program passes a malformed TCP_MAXSEG value to tcp_select_initial_window, causing a divide-by-zero, resulting in loss of availability for the system.

Classification

Location: Local Access Required
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Solution: Upgrade
Exploit: Exploit Unknown
Disclosure: Uncoordinated Disclosure

Solution

Upgrade to version 2.6.37-rc2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Linux Kernel Organization, Inc.

Kernel

2.6.36

References

CVE ID: 2010-4165 (see also: NVD)
Secunia Advisory ID: 42172 42778 42801 42932 43110 43303 43454 43456 43477 43541 43668 43732 43835 44267 45507 53815
Bugtraq ID: 44830
VUPEN Advisory: ADV-2011-0012 ADV-2011-0124 ADV-2011-0298
Vendor Specific News/Changelog Entry: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=7a1abd08d52fdeddb3e9a5a33f2f15cc6a5674d2
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053901.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055238.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html
http://lists.opensuse.org/opensuse-updates/2013-06/msg00061.html
http://lists.opensuse.org/opensuse-updates/2013-06/msg00064.html
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc2
https://bugzilla.redhat.com/show_bug.cgi?id=652508
https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-April/001313.html
https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-February/001239.html
https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-February/001257.html
https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-February/001262.html
https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-March/001269.html
https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-March/001285.html
Vendor Specific Advisory URL: http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html
https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-August/001390.html
Other Advisory URL: http://permalink.gmane.org/gmane.linux.network/177550
http://securityreason.com/securityalert/8111
http://securityreason.com/securityalert/8123
http://www.mandriva.com/security/advisories?name=MDVSA-2011:029
http://www.mandriva.com/security/advisories?name=MDVSA-2011:051
http://www.openwall.com/lists/oss-security/2010/11/12/1
http://www.openwall.com/lists/oss-security/2010/11/12/4
http://www.spinics.net/lists/netdev/msg146405.html
http://www.spinics.net/lists/netdev/msg146495.html
Vendor URL: http://www.kernel.org/
RedHat RHSA: https://rhn.redhat.com/errata/RHSA-2011-0283.html
https://rhn.redhat.com/errata/RHSA-2011-0330.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/69241