CVE-2009-4226

OpenSolaris snv_106-snv_124 - Denial of Service via Race Condition in IP Module

Title source: llm
STIX 2.1

Description

Race condition in the IP module in the kernel in Sun OpenSolaris snv_106 through snv_124 allows remote attackers to cause a denial of service (NULL pointer dereference and panic) via unspecified vectors related to the (1) tcp_do_getsockname or (2) tcp_do_getpeername function.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/54574
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/3413
Patch, Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-268189-1

Scores

EPSS 0.0055
EPSS Percentile 68.1%

Details

CWE
CWE-362
Status published
Products (19)
sun/opensolaris snv_106 (2 CPE variants)
sun/opensolaris snv_107 (2 CPE variants)
sun/opensolaris snv_108 (2 CPE variants)
sun/opensolaris snv_109 (2 CPE variants)
sun/opensolaris snv_110 (2 CPE variants)
sun/opensolaris snv_111 (2 CPE variants)
sun/opensolaris snv_112 (2 CPE variants)
sun/opensolaris snv_113 (2 CPE variants)
sun/opensolaris snv_114 (2 CPE variants)
sun/opensolaris snv_115 (2 CPE variants)
... and 9 more
Published Dec 08, 2009
Tracked Since Feb 18, 2026