CVE-2011-0709

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.35-rc5

Description The issue is related to the br mdb ip get function in the Linux kernel, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via an IGMP packet. This is due to a lack of a multicast table.

Recommendations For Linux kernel versions prior to 2.6.35-rc5, update to version 2.6.35-rc5 or later to resolve the issue. As a temporary workaround, consider restricting access to the br multicast.c module to minimize the risk of exploitation.