CVE-2011-4604
Linux Kernel < 3.3 - Memory Corruption via Crafted batman-adv ICMP Packet
Title source: llmDescription
The bat_socket_read function in net/batman-adv/icmp_socket.c in the Linux kernel before 3.3 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted batman-adv ICMP packet.
References (7)
Core 7
Core References
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/12/12/1
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=767495
Various Sources mailing-list
x_refsource_mlist
https://lists.open-mesh.org/pipermail/b.a.t.m.a.n/2011-December/005904.html
Patch x_refsource_confirm
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b5a1eeef04cc7859f34dec9b72ea1b28e4aba07c
Patch x_refsource_confirm
http://www.kernel.org/pub/linux/kernel/v3.x/patch-3.3.bz2
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html
Exploit, Patch x_refsource_confirm
https://github.com/torvalds/linux/commit/b5a1eeef04cc7859f34dec9b72ea1b28e4aba07c
Scores
EPSS
0.0299
EPSS Percentile
85.7%
Details
CWE
CWE-119
Status
published
Products (42)
linux/linux_kernel
3.2 (8 CPE variants)
linux/linux_kernel
3.2.1 (2 CPE variants)
linux/linux_kernel
3.2.2
linux/linux_kernel
3.2.3
linux/linux_kernel
3.2.4
linux/linux_kernel
3.2.5
linux/linux_kernel
3.2.6
linux/linux_kernel
3.2.7
linux/linux_kernel
3.2.8
linux/linux_kernel
3.2.9
... and 32 more
Published
Jun 07, 2013
Tracked Since
Feb 18, 2026