Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The udp_v6_push_pending_frames function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service (BUG and system crash) via a crafted application that uses the UDP_CORK option in a setsockopt system call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel ‘udp_v6_push_pending_frames’函数拒绝服务漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux内核3.10.3及之前的版本中的IPv6实现中的net/ipv6/udp.c文件中的udp_v6_push_pending_frames函数中存在漏洞,该漏洞源于程序对挂起数据进行了一个错误的函数调用。本地攻击者可通过在setsockopt系统调用中使用了UDP_CORK选项的特制应用程序,利用该漏洞造成拒绝服务(BUG以及系统崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A