Oval Definition:	oval:org.mitre.oval:tst:38920
Comment: kernel-largesmp-devel is earlier than 0:2.6.9-89.0.9.EL Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14209 State: oval:org.mitre.oval:ste:11333 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:9142 V The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving the MSG_MORE flag and a UDP socket. 2013-04-29 oval:org.mitre.oval:def:11591 V The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, does not initialize all function pointers for socket operations in proto_ops structures, which allows local users to trigger a NULL pointer dereference and gain privileges by using mmap to map page zero, placing arbitrary code on this page, and then invoking an unavailable operation, as demonstrated by the sendpage operation (sock_sendpage function) on a PF_PPPOX socket. 2013-04-29
BACK