CVE-2011-1768

Linux Kernel < 2.6.34 - Denial of Service via Tunnel Module Packet Handling

Title source: llm

Description

The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading.

References (5)

Core 5

Core References

Patch x_refsource_confirm

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978

Various Sources x_refsource_confirm

http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34

Issue Tracking x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=702303

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2011/05/05/6

Exploit, Patch x_refsource_confirm

https://github.com/torvalds/linux/commit/d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978

Scores

EPSS 0.0215

EPSS Percentile 79.8%

Details

CWE

CWE-362

Status published

Products (21)

linux/linux_kernel 2.6.33

linux/linux_kernel 2.6.33.1

linux/linux_kernel 2.6.33.2

linux/linux_kernel 2.6.33.3

linux/linux_kernel 2.6.33.4

linux/linux_kernel 2.6.33.5

linux/linux_kernel 2.6.33.6

linux/linux_kernel 2.6.33.7

linux/linux_kernel 2.6.33.8

linux/linux_kernel 2.6.33.9

... and 11 more

Published Jun 13, 2012

Tracked Since Feb 18, 2026