CVE-2011-3593

MEDIUM
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of service (system crash) via priority-tagged VLAN frames.

References

http://www.openwall.com/lists/oss-security/2012/03/05/3

https://bugzilla.redhat.com/show_bug.cgi?id=742846

https://oss.oracle.com/git/?p=redpatch.git;a=commit;h=0e48f8daac293335e16e007663b9f4d248f89f0c

https://oss.oracle.com/git/?p=redpatch.git;a=commit;h=fadca7bdc43b02f518585d9547019966415cadfd

Details

Source: MITRE

Published: 2013-06-08

Updated: 2019-04-22

Type: CWE-399

Risk Information

CVSS v2

Base Score: 5.7

Vector: AV:A/AC:M/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 5.5

Severity: MEDIUM

Tenable Plugins

View all (12 total)

IDNameProductFamilySeverity
83611SUSE SLES11 Security Update : kernel (SUSE-SU-2014:0287-1)NessusSuSE Local Security Checks
high
69585Amazon Linux AMI : kernel (ALAS-2011-26)NessusAmazon Linux Local Security Checks
critical
68424Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2033)NessusOracle Linux Local Security Checks
critical
68393Oracle Linux 6 : kernel (ELSA-2011-1465)NessusOracle Linux Local Security Checks
critical
61179Scientific Linux Security Update : kernel on SL6.x i386/x86_64NessusScientific Linux Local Security Checks
critical
56927RHEL 6 : kernel (RHSA-2011:1465)NessusRed Hat Local Security Checks
critical
56747Ubuntu 10.04 LTS : linux vulnerabilities (USN-1253-1)NessusUbuntu Local Security Checks
critical
56644Ubuntu 10.10 : linux-mvl-dove vulnerabilities (USN-1245-1)NessusUbuntu Local Security Checks
critical
56639Ubuntu 10.04 LTS : linux-mvl-dove vulnerabilities (USN-1240-1)NessusUbuntu Local Security Checks
critical
56638Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1239-1)NessusUbuntu Local Security Checks
critical
56466Ubuntu 10.10 : linux vulnerabilities (USN-1227-1)NessusUbuntu Local Security Checks
critical
56344Ubuntu 10.04 LTS : linux-lts-backport-maverick vulnerabilities (USN-1219-1)NessusUbuntu Local Security Checks
critical