Bug 136020 - VUL-0: local dos in ip_conntrack_proto_icmp.c
Summary: VUL-0: local dos in ip_conntrack_proto_icmp.c
Status: RESOLVED INVALID
Alias: None
Product: SUSE LINUX 10.0
Classification: openSUSE
Component: Kernel (show other bugs)
Version: Final
Hardware: Other Other
: P5 - None : Normal
Target Milestone: ---
Assignee: E-mail List
QA Contact: E-mail List
URL:
Whiteboard: CVE-2005-3810: CVSS v2 Base Score: 7....
Keywords:
Depends on:
Blocks:
 
Reported: 2005-11-30 10:10 UTC by Marcus Meissner
Modified: 2009-10-13 20:40 UTC (History)
1 user (show)

See Also:
Found By: Other
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2005-11-30 10:10:57 UTC 
is public

CVE-2005-3810

"ip_conntrack_proto_icmp.c in ctnetlink in Linux kernel 2.6.14 up to 2.6.14.3 allows attackers to cause a denial of service (kernel oops) via a message without ICMP ID (ICMP_ID) information, which leads to a null dereference."

http://marc.theaimsgroup.com/?l=linux-kernel&m=113269476307795&w=2

http://kernel.org/git/?p=linux/kernel/git/chrisw/linux-2.6.14.y.git;a=commit;h=ae77af5fdb07f075c3b833cc378f92dcf361627e



can a user send these messages? or just root?
Comment 1 Marcus Meissner 2005-11-30 10:14:26 UTC 
10.0 is 2.6.13 as olaf said
Comment 2 Thomas Biege 2009-10-13 20:40:33 UTC 
CVE-2005-3810: CVSS v2 Base Score: 7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)