Vulnerability Name:

CVE-2010-1187 (CCN-57986)

Assigned:2010-02-19
Published:2010-02-19
Updated:2020-08-13
Summary:The Transparent Inter-Process Communication (TIPC) functionality in Linux kernel 2.6.16-rc1 through 2.6.33, and possibly other versions, allows local users to cause a denial of service (kernel OOPS) by sending datagrams through AF_TIPC before entering network mode, which triggers a NULL pointer dereference.
CVSS v3 Severity:6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
3.7 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
6.1 Medium (REDHAT CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C)
4.5 Medium (REDHAT Temporal CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-476
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2010-1187

Source: CONFIRM
Type: Broken Link, Patch
http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commitdiff;h=d0021b252eaf65ca07ed14f0d66425dd9ccab9a6;hp=6d55cb91a0020ac0d78edcad61efd6c8cf5785a3

Source: CCN
Type: RHSA-2010-0504
Important: kernel security and bug fix update

Source: SECUNIA
Type: Third Party Advisory
39830

Source: CCN
Type: SA43315
VMware ESX Server Multiple Kernel Vulnerabilities

Source: SECUNIA
Type: Third Party Advisory
43315

Source: DEBIAN
Type: Third Party Advisory
DSA-2053

Source: DEBIAN
Type: DSA-2053
linux-2.6 -- privilege escalation/denial of service/information leak

Source: CCN
Type: The Linux Kernel Archives Web site
The Linux Kernel Archives

Source: MANDRIVA
Type: Third Party Advisory
MDVSA-2010:198

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20100330 CVE request: kernel: tipc: Fix oops on send prior to entering networked mode

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20100331 Re: CVE request: kernel: tipc: Fix oops on send prior to entering networked mode

Source: CCN
Type: OSVDB ID: 63452
Linux Kernel Transparent Inter-Process Communication (TIPC) AF_TIPC Datagram Local DoS

Source: BUGTRAQ
Type: Third Party Advisory, VDB Entry
20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX

Source: BID
Type: Third Party Advisory, VDB Entry
39120

Source: CCN
Type: BID-39120
Linux Kernel 'tipc' Module Local Denial of Service Vulnerability

Source: CONFIRM
Type: Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2011-0003.html

Source: CCN
Type: Red Hat Bugzilla Bug 578057
CVE-2010-1187 kernel: tipc: Fix oops on send prior to entering networked mode

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=578057

Source: XF
Type: UNKNOWN
kernel-tipc-dos(57986)

Source: OVAL
Type: Third Party Advisory
oval:org.mitre.oval:def:9832

Vulnerable Configuration:Configuration 1:
  • cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version > 2.6.16 and <= 2.6.33)
  • OR cpe:/o:linux:linux_kernel:2.6.16:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc4:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.16:rc7:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

    • Configuration 3:
  • cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:linux:linux_kernel:2.6.33:-:*:*:*:*:*:*
  • AND
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.0:-:x86_64:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:13167
    P
    		USN-947-2 -- linux regression
    2014-06-30
    oval:org.mitre.oval:def:12434
    P
    		USN-947-1 -- linux, linux-source-2.6.15 vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:13587
    P
    		DSA-2053-1 linux-2.6 -- privilege escalation/denial of service/information leak
    2014-06-23
    oval:org.mitre.oval:def:22795
    P
    		ELSA-2010:0504: kernel security and bug fix update (Important)
    2014-05-26
    oval:org.mitre.oval:def:21967
    P
    		RHSA-2010:0504: kernel security and bug fix update (Important)
    2014-02-24
    oval:org.mitre.oval:def:20277
    V
    		Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
    2014-01-20
    oval:org.mitre.oval:def:9832
    V
    		The Transparent Inter-Process Communication (TIPC) functionality in Linux kernel 2.6.16-rc1 through 2.6.33, and possibly other versions, allows local users to cause a denial of service (kernel OOPS) by sending datagrams through AF_TIPC before entering network mode, which triggers a NULL pointer dereference.
    2013-04-29
    oval:com.redhat.rhsa:def:20100504
    P
    		RHSA-2010:0504: kernel security and bug fix update (Important)
    2010-07-01
    oval:org.debian:def:2053
    V
    		privilege escalation/denial of service/information leak
    2010-05-25
    BACK
    linux linux kernel *
    linux linux kernel 2.6.16 -
    linux linux kernel 2.6.16 rc1
    linux linux kernel 2.6.16 rc2
    linux linux kernel 2.6.16 rc3
    linux linux kernel 2.6.16 rc4
    linux linux kernel 2.6.16 rc5
    linux linux kernel 2.6.16 rc6
    linux linux kernel 2.6.16 rc7
    canonical ubuntu linux 12.04
    debian debian linux 5.0
    linux linux kernel 2.6.33
    redhat enterprise linux 5
    redhat enterprise linux 5
    mandriva linux 2009.0
    mandriva linux 2009.0 -
    debian debian linux 5.0