Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5.7 does not ensure that a keepalive action is associated with a stream socket, which allows local users to cause a denial of service (system crash) by leveraging the ability to create a raw socket.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel 安全漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.5.7之前版本的net/core/sock.c脚本中的‘sock_setsockopt’函数中存在安全漏洞,该漏洞源于程序没有将keepalive操作与流套接字相关联。本地攻击者可通过创建原始套接字利用该漏洞造成拒绝服务(系统崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A