CVE-2011-3593

MEDIUM

Description

A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.

References

http://www.openwall.com/lists/oss-security/2012/03/05/3

https://bugzilla.redhat.com/show_bug.cgi?id=742846

https://oss.oracle.com/git/?p=redpatch.git;a=commit;h=0e48f8daac293335e16e007663b9f4d248f89f0c

https://oss.oracle.com/git/?p=redpatch.git;a=commit;h=fadca7bdc43b02f518585d9547019966415cadfd

Details

Source: MITRE

Published: 2013-06-08

Updated: 2019-04-22

Type: CWE-399

Risk Information

CVSS v2.0

Base Score: 5.7

Vector: AV:A/AC:M/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 5.5

Severity: MEDIUM