Oval Definition:oval:org.opensuse.security:def:20101188
Revision Date:2015-11-16Version:1
Title:CVE-2010-1188
Description:
Use-after-free vulnerability in net/ipv4/tcp_input.c in the Linux kernel 2.6 before 2.6.20, when IPV6_RECVPKTINFO is set on a listening socket, allows remote attackers to cause a denial of service (kernel panic) via a SYN packet while the socket is in a listening (TCP_LISTEN) state, which is not properly handled and causes the skb structure to be freed.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2010-1188
Platform(s):Open Enterprise Server
SUSE CORE 9 for AMD64 and Intel EM64T
SUSE CORE 9 for IBM POWER
SUSE CORE 9 for IBM S/390 31bit
SUSE CORE 9 for IBM zSeries 64bit
SUSE CORE 9 for Itanium Processor Family
SUSE CORE 9 for x86
Product(s):
Definition Synopsis
  • sles9-oes is installed
  • AND Package Information
  • kernel-bigsmp less than 2.6.5-7.323
  • OR kernel-debug less than 2.6.5-7.323
  • OR kernel-default less than 2.6.5-7.323
  • OR kernel-smp less than 2.6.5-7.323
  • OR kernel-source less than 2.6.5-7.323
  • OR kernel-syms less than 2.6.5-7.323
  • OR kernel-um less than 2.6.5-7.323
  • OR kernel-xen less than 2.6.5-7.323
  • OR kernel-xenpae less than 2.6.5-7.323
  • OR um-host-install-initrd less than 1.0-48.36
  • OR um-host-kernel less than 2.6.5-7.323
  • OR xen-kmp less than 3.0.4_2.6.5_7.323-0.2
    • BACK