PT-2013-5031 · Linux+4 · Linux Kernel+4

Hannes Frederic Sowa

·

Published

2013-11-04

·

Updated

2023-02-13

·

CVE-2013-4470

CVSS v2.0

6.9

Medium

VectorAV:L/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.12
Description The issue allows local users to cause a denial of service, resulting in memory corruption and system crash, or possibly gain privileges. This is achieved through a crafted application that uses the UDP CORK option in a setsockopt system call and sends both short and long packets. The problem is related to the ip ufo append data function in net/ipv4/ip output.c and the ip6 ufo append data function in net/ipv6/ip6 output.c.
Recommendations For Linux kernel versions prior to 3.12, update to version 3.12 or later to resolve the issue. As a temporary workaround, consider disabling UDP Fragmentation Offload (UFO) until a patch is available.

Exploit

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

ALT-PU-2013-1133
ALT-PU-2013-1290
ALT-PU-2014-1010
ALT-PU-2014-1422
CESA-2013_1801
CVE-2013-4470
DLA-0015-1
MGASA-2013-0342
MGASA-2013-0343
MGASA-2013-0344
MGASA-2013-0345
MGASA-2013-0346
MGASA-2013-0371
MGASA-2013-0372
MGASA-2013-0373
MGASA-2013-0374
MGASA-2013-0375
RHSA-2013:1801
RHSA-2013_1801
RHSA-2014:0100
RHSA-2014:0284
SUSE-RU-2015:0621-1
SUSE-SU-2014_0459-1
SUSE-SU-2014_0531-1
SUSE-SU-2014_0696-1
SUSE-SU-2015:0481-1
SUSE-SU-2015:0581-1
SUSE-SU-2015:0652-1
SUSE-SU-2015:0736-1
SUSE-SU-2015:1174-1
SUSE-SU-2015:1376-1
USN-2040-1
USN-2042-1
USN-2043-1
USN-2044-1
USN-2046-1
USN-2049-1
USN-2050-1
USN-2066-1
USN-2067-1
USN-2069-1
USN-2073-1
USN-2233-1
USN-2234-1

Affected Products

Alt Linux
Centos
Linux Kernel
Red Hat
Suse