The net subsystem in the Linux kernel prior to 3.1 does not properly restrict use of the IFF_TX_SKB_SHARING flag, which allows local users to cause a denial of service (panic) by leveraging the CAP_NET_ADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction with a bridge device for a VLAN interface.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
avaya 9608 firmware |
||
avaya 9608g firmware |
||
avaya 9611g firmware |
||
avaya 9621g firmware |
||
avaya 9641g firmware |
||
avaya 9641gs firmware |