Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel hypervkvpd拒绝服务漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 分布在Linux kernel 3.4.5之前版本中的hypervkvpd中的tools/hv/hv_kvp_daemon.c中的主函数中存在漏洞,该漏洞源于没有验证网络链路消息的来源。通过特制的连接器消息,本地攻击者利用该漏洞欺骗网络连接通信。
CVSS Information
N/A
Vulnerability Type
N/A