CVE-2009-3623
Linux Kernel < 2.6.31.2 - Denial of Service via NFSv4 AUTH_NULL Credentials Cache Access
Title source: llmDescription
The lookup_cb_cred function in fs/nfsd/nfs4callback.c in the nfsd4 subsystem in the Linux kernel before 2.6.31.2 attempts to access a credentials cache even when a client specifies the AUTH_NULL authentication flavor, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via an NFSv4 mount request.
References (8)
Core 8
Core References
Patch x_refsource_confirm
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=886e3b7fe6054230c89ae078a09565ed183ecc73
Patch x_refsource_confirm
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=80fc015bdfe1f5b870c1e1ee02d78e709523fee7
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-864-1
Mailing List mailing-list
x_refsource_mlist
http://marc.info/?l=oss-security&m=125618753029631&w=2
Mailing List mailing-list
x_refsource_mlist
http://marc.info/?l=oss-security&m=125624036516377&w=2
Vendor Advisory x_refsource_confirm
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc1
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=530269
Vendor Advisory x_refsource_confirm
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.31.2
Scores
EPSS
0.0347
EPSS Percentile
87.6%
Details
CWE
CWE-287
Status
published
Products (50)
linux/linux_kernel
2.6.0
linux/linux_kernel
2.6.1
linux/linux_kernel
2.6.2
linux/linux_kernel
2.6.3
linux/linux_kernel
2.6.4
linux/linux_kernel
2.6.5
linux/linux_kernel
2.6.6
linux/linux_kernel
2.6.7
linux/linux_kernel
2.6.8
linux/linux_kernel
2.6.8.1
... and 40 more
Published
Oct 30, 2009
Tracked Since
Feb 18, 2026