CVE-2009-2698 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2009-2698?

CVE-2009-2698 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2009-2698?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Canonical Ubuntu Linux, Suse Linux Enterprise Desktop, Suse Linux Enterprise Server, Fedoraproject Fedora.

Vulnerability Description

The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving the MSG_MORE flag and a UDP socket.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	< 2.6.19
Canonical	Ubuntu Linux	6.06
Suse	Linux Enterprise Desktop	10
Suse	Linux Enterprise Server	9
Fedoraproject	Fedora	10
Redhat	Enterprise Linux Desktop	4.0
Redhat	Enterprise Linux Eus	4.8
Redhat	Enterprise Linux Server	4.0
Redhat	Enterprise Linux Server Aus	5.3
Redhat	Enterprise Linux Workstation	4.0
Vmware	Vcenter Server	4.0
Vmware	Esxi	4.0

Related Weaknesses (CWE)

CWE-476

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=Broken Link
http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00008.htmlMailing ListThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2009-1222.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2009-1223.htmlThird Party Advisory
http://secunia.com/advisories/23073Broken LinkVendor Advisory
http://secunia.com/advisories/36430Broken LinkVendor Advisory
http://secunia.com/advisories/36510Broken LinkVendor Advisory
http://secunia.com/advisories/37105Broken LinkVendor Advisory
http://secunia.com/advisories/37298Broken LinkVendor Advisory
http://secunia.com/advisories/37471Broken LinkVendor Advisory
http://support.avaya.com/css/P8/documents/100067254Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.19Broken LinkVendor Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2011:051Broken LinkThird Party Advisory
http://www.openwall.com/lists/oss-security/2009/08/25/1Mailing List
http://www.redhat.com/support/errata/RHSA-2009-1233.htmlBroken LinkThird Party Advisory

FAQ

What is CVE-2009-2698?

CVE-2009-2698 is a vulnerability with a CVSS score of 7.8 (HIGH). The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service (NU...

How severe is CVE-2009-2698?

CVE-2009-2698 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-2698?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Canonical Ubuntu Linux, Suse Linux Enterprise Desktop, Suse Linux Enterprise Server, Fedoraproject Fedora.