Vulnerability CVE-2009-1243 - CERT Civis.Net

Vulnerability Name:

CVE-2009-1243 (CCN-49595)

Assigned:

2009-04-01

Published:

2009-04-01

Updated:

2020-08-25

Summary:

net/ipv4/udp.c in the Linux kernel before 2.6.29.1 performs an unlocking step in certain incorrect circumstances, which allows local users to cause a denial of service (panic) by reading zero bytes from the /proc/net/udp file and unspecified other files, related to the "udp seq_file infrastructure."

CVSS v3 Severity:

4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)
1.6 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)
1.6 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2009-1243

Source: CONFIRM
Type: Patch, Vendor Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=30842f2989aacfaba3ccb39829b3417be9313dbe

Source: CCN
Type: The Linux Kernel Archives Web site
The Linux Kernel Archives

Source: MLIST
Type: Mailing List, Patch, Third Party Advisory
[oss-security] 20090401 CVE request: kernel: udp: Wrong locking code in udp seq_file infrastructure

Source: CCN
Type: SA34478
Linux Kernel "udp_get_next()" and "vms_set_msr()" Denial of Service

Source: SECUNIA
Type: Third Party Advisory
34478

Source: MISC
Type: Third Party Advisory
http://vigilance.fr/vulnerability/Linux-kernel-denial-of-service-via-proc-net-udp-8586

Source: CONFIRM
Type: Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.29.1

Source: CCN
Type: oss-security Mailing List, Wed, 01 Apr 2009 12:12:24 +0800
CVE request: kernel: udp: Wrong locking code in udp seq_file infrastructure

Source: CCN
Type: OSVDB ID: 55229
Linux Kernel net/ipv4/udp.c udp_get_next() Function Local DoS

Source: BID
Type: Patch, Third Party Advisory, VDB Entry
34329

Source: CCN
Type: BID-34329
Linux Kernel '/proc/net/udp' Local Denial of Service Vulnerability

Source: VUPEN
Type: Third Party Advisory
ADV-2009-0924

Source: XF
Type: Third Party Advisory, VDB Entry
linux-kernel-procnetudp-dos(49595)

Source: XF
Type: UNKNOWN
linux-kernel-procnetudp-dos(49595)

Vulnerable Configuration:

Configuration 1:

cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version < 2.6.29.1)

Configuration CCN 1:

cpe:/o:linux:linux_kernel:2.6.28:rc5:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28:rc7:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28:-:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28:git7:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.29:rc2:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.28.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.29:rc1:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:2.6.29:git1:*:*:*:*:*:*

Denotes that component is vulnerable