Oval Definition:oval:org.mitre.oval:def:21521
Revision Date:2014-02-24Version:56
Title:RHSA-2010:0178: Red Hat Enterprise Linux 5.5 kernel security and bug fix update (Important)
Description:Use-after-free vulnerability in net/ipv4/tcp_input.c in the Linux kernel 2.6 before 2.6.20, when IPV6_RECVPKTINFO is set on a listening socket, allows remote attackers to cause a denial of service (kernel panic) via a SYN packet while the socket is in a listening (TCP_LISTEN) state, which is not properly handled and causes the skb structure to be freed.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-4027
CVE-2009-4307
CVE-2010-0727
CVE-2010-1188
RHSA-2010:0178-04
Platform(s):Red Hat Enterprise Linux 5
Product(s):kernel
Definition Synopsis
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • AND Packages section
  • kernel-headers is earlier than 0:2.6.18-194.el5
  • OR kernel is earlier than 0:2.6.18-194.el5
  • OR kernel-doc is earlier than 0:2.6.18-194.el5
  • OR kernel-PAE-devel is earlier than 0:2.6.18-194.el5
  • OR kernel-devel is earlier than 0:2.6.18-194.el5
  • OR kernel-debug is earlier than 0:2.6.18-194.el5
  • OR kernel-kdump is earlier than 0:2.6.18-194.el5
  • OR kernel-xen-devel is earlier than 0:2.6.18-194.el5
  • OR kernel-debug-devel is earlier than 0:2.6.18-194.el5
  • OR kernel-PAE is earlier than 0:2.6.18-194.el5
  • OR kernel-kdump-devel is earlier than 0:2.6.18-194.el5
  • OR kernel-xen is earlier than 0:2.6.18-194.el5
    • BACK