952 B
952 B
CVE-2010-3880
Description
net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message that contains multiple attribute elements, as demonstrated by INET_DIAG_BC_JMP instructions.
POC
Reference
- http://www.redhat.com/support/errata/RHSA-2011-0004.html
- http://www.redhat.com/support/errata/RHSA-2011-0007.html
- http://www.vmware.com/security/advisories/VMSA-2011-0012.html
Github
No PoCs found on GitHub currently.