Your submission was sent successfully! Close

CVE-2013-2017

Published: 03 May 2013

The veth (aka virtual Ethernet) driver in the Linux kernel before 2.6.34 does not properly manage skbs during congestion, which allows remote attackers to cause a denial of service (system crash) by leveraging lack of skb consumption in conjunction with a double-free error.

Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
Patches:
Introduced by 445409602c09219767c06497c0dc2285eac244ed
Fixed by 6ec82562ffc6f297d0de36d65776cff8e5704867
linux-2.6
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-armadaxp
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
This package is not directly supported by the Ubuntu Security Team
linux-ec2
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-linaro-omap
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-linaro-shared
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-linaro-vexpress
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-lts-backport-oneiric
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-lts-quantal
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-lts-raring
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-mvl-dove
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-qcm-msm
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)
linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.34)