github - ghsa-xpmh-v8j6-g4hx

ghsa-xpmh-v8j6-g4hx

Vulnerability from github

Published

2022-05-13 01:24

Modified

2022-05-13 01:24

Details

The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service (NULL pointer dereference) via a malformed VLAN frame.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2011-1478"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-476"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2011-10-23T10:55:00Z",
    "severity": "MODERATE"
  },
  "details": "The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service (NULL pointer dereference) via a malformed VLAN frame.",
  "id": "GHSA-xpmh-v8j6-g4hx",
  "modified": "2022-05-13T01:24:44Z",
  "published": "2022-05-13T01:24:44Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1478"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=691270"
    },
    {
      "type": "WEB",
      "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=66c46d741e2e60f0e8b625b80edb0ab820c46d7a"
    },
    {
      "type": "WEB",
      "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6d152e23ad1a7a5b40fef1f42e017d66e6115159"
    },
    {
      "type": "WEB",
      "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=66c46d741e2e60f0e8b625b80edb0ab820c46d7a"
    },
    {
      "type": "WEB",
      "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=6d152e23ad1a7a5b40fef1f42e017d66e6115159"
    },
    {
      "type": "WEB",
      "url": "http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.38"
    },
    {
      "type": "WEB",
      "url": "http://openwall.com/lists/oss-security/2011/03/28/1"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/46397"
    },
    {
      "type": "WEB",
      "url": "http://securityreason.com/securityalert/8480"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/520102/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

cve-2011-1478

Vulnerability from cvelistv5

Published

2011-10-23 10:00

Modified

2024-08-06 22:28

Severity

Summary

References

URL	Tags
http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.38	x_refsource_CONFIRM
http://www.securityfocus.com/archive/1/520102/100/0/threaded	mailing-list, x_refsource_BUGTRAQ
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6d152e23ad1a7a5b40fef1f42e017d66e6115159	x_refsource_CONFIRM
http://securityreason.com/securityalert/8480	third-party-advisory, x_refsource_SREASON
http://secunia.com/advisories/46397	third-party-advisory, x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=691270	x_refsource_CONFIRM
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=66c46d741e2e60f0e8b625b80edb0ab820c46d7a	x_refsource_CONFIRM
http://openwall.com/lists/oss-security/2011/03/28/1	mailing-list, x_refsource_MLIST
http://www.vmware.com/security/advisories/VMSA-2011-0012.html	x_refsource_CONFIRM

Impacted products

Vendor	Product
n/a	n/a

Show details on NVD website