CVE-2011-0709

Published: 18 February 2011

The br_mdb_ip_get function in net/bridge/br_multicast.c in the Linux kernel before 2.6.35-rc5 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via an IGMP packet, related to lack of a multicast table.

From the Ubuntu security team

Frank Arnold discovered that the IGMP protocol did not correctly parse certain packets. A remote attacker could send specially crafted traffic to crash the system, leading to a denial of service.

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.35~rc5)
Patches:
Upstream: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=7f285fa78d4b81b8458f05e77fb6b46245121b4e
linux-ec2
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.35~rc5)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.35~rc5)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.35~rc5)
linux-lts-backport-natty
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.35~rc5)
linux-mvl-dove
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.35~rc5)
linux-source-2.6.15
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.35~rc5)
linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.35~rc5)

Notes

AuthorNote
sbeattie occurred between 2.6.35-rc1 and 2.6.35-rc5, see http://openwall.com/lists/oss-security/2011/02/16/1

References