CVE-2009-2903
Linux Kernel 2.4.0-2.4.37.6 and 2.6.x through 2.6.31 - Denial of Service via IP-DDP Datagram Memory Leak
Title source: llmDescription
Memory leak in the appletalk subsystem in the Linux kernel 2.4.x through 2.4.37.6 and 2.6.x through 2.6.31, when the appletalk and ipddp modules are loaded but the ipddp"N" device is not found, allows remote attackers to cause a denial of service (memory consumption) via IP-DDP datagrams.
References (15)
Core 15
Core References
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/09/17/11
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36379
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00002.html
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-852-1
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36707
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=522331
Third Party Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2009:329
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/09/14/1
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37909
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html
Patch x_refsource_confirm
http://git.kernel.org/?p=linux/kernel/git/davem/net-next-2.6.git%3Ba=commit%3Bh=ffcfb8db540ff879c2a85bf7e404954281443414
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37105
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/09/14/2
Scores
EPSS
0.0377
EPSS Percentile
88.2%
Details
CWE
CWE-772
Status
published
Products (10)
canonical/ubuntu_linux
6.06
canonical/ubuntu_linux
8.04
canonical/ubuntu_linux
8.10
canonical/ubuntu_linux
9.04
linux/linux_kernel
2.4.0 - 2.4.37.6
suse/linux_enterprise_debuginfo
10 sp2 (2 CPE variants)
suse/linux_enterprise_desktop
10 sp2 (2 CPE variants)
suse/linux_enterprise_server
9
suse/linux_enterprise_server
10 sp2 (2 CPE variants)
suse/linux_enterprise_software_development_kit
10 sp2 (2 CPE variants)
Published
Sep 15, 2009
Tracked Since
Feb 18, 2026