PT-2012-2399 · Linux+2 · Linux Kernel+2

Simon Mcvittie

Publicado

2012-01-13

Atualizado

2023-01-17

CVE-2012-0207

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.2.1

Description The issue allows remote attackers to cause a denial of service, resulting in a divide-by-zero error and a kernel panic, through IGMP packets. This is due to the igmp heard query function in net/ipv4/igmp.c.

Recommendations For Linux kernel versions prior to 3.2.1, update to version 3.2.1 or later to resolve the issue. As a temporary workaround, consider restricting access to IGMP packets to minimize the risk of exploitation.

Exploit

Correção

DoS

Divide By Zero

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-369

Identificadores relacionados

CESA-2012_0350

CVE-2012-0207

RHSA-2012:0107

RHSA-2012:0333

RHSA-2012:0350

RHSA-2012:0422

RHSA-2012_0107

RHSA-2012_0350

USN-1356-1

USN-1363-1

USN-1364-1

USN-1380-1

USN-1384-1

USN-1386-1

Produtos afetados

Centos

Linux Kernel

Red Hat

PT-2012-2399 · Linux+2 · Linux Kernel+2

CVE-2012-0207

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 21