The net subsystem in the Linux kernel prior to 3.1 does not properly restrict use of the IFF_TX_SKB_SHARING flag, which allows local users to cause a denial of service (panic) by leveraging the CAP_NET_ADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction with a bridge device for a VLAN interface.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
avaya 9608_firmware |
||
avaya 9608g_firmware |
||
avaya 9611g_firmware |
||
avaya 9621g_firmware |
||
avaya 9641g_firmware |
||
avaya 9641gs_firmware |