Published: 31/08/2011 Updated: 13/02/2023

CVSS v2 Base Score: 5.7 | Impact Score: 6.9 | Exploitability Score: 5.5

VMScore: 507

Vector: AV:A/AC:M/Au:N/C:N/I:N/A:C

The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as used in Red Hat Enterprise Virtualization (RHEV) Hypervisor and other products, allows remote malicious users to cause a denial of service via crafted VLAN packets that are processed by the napi_reuse_skb function, leading to (1) a memory leak or (2) memory corruption, a different vulnerability than CVE-2011-1478.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux_kernel 2.6.18
redhat enterprise_linux 5
redhat enterprise linux 6.0
redhat enterprise virtualization hypervisor

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-1020 Kees Cook discovered an issue in the /proc filesystem that allows local users to gain access to sensitive process in ...

Several security issues were fixed in the kernel ...

Multiple kernel flaws have been fixed ...

Several security issues were fixed in the kernel ...

Multiple kernel flaws have been fixed ...

Several security issues were fixed in the kernel ...

Multiple kernel flaws have been fixed ...

Several security issues were fixed in the kernel ...

CWE-119 http://www.securitytracker.com/id?1025853 http://www.redhat.com/support/errata/RHSA-2011-1090.html http://www.redhat.com/support/errata/RHSA-2011-1106.html https://bugzilla.redhat.com/show_bug.cgi?id=695173 http://www.securityfocus.com/bid/48907 http://rhn.redhat.com/errata/RHSA-2011-0927.html https://www.debian.org/security/./dsa-2303 https://nvd.nist.gov https://usn.ubuntu.com/1240-1/

CVE-2011-1576

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect