The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFF_TX_SKB_SHARING flag, which allows local users to cause a denial of service (panic) by leveraging the CAP_NET_ADMIN capability to access /proc/net/pktgen/pgctrl, and then using the pktgen package in conjunction with a bridge device for a VLAN interface.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | * | 3.1 (excluding) |
Linux | Ubuntu | devel | * |
Linux | Ubuntu | hardy | * |
Linux | Ubuntu | lucid | * |
Linux | Ubuntu | maverick | * |
Linux | Ubuntu | natty | * |
Linux | Ubuntu | oneiric | * |
Linux | Ubuntu | upstream | * |
Linux-ec2 | Ubuntu | lucid | * |
Linux-ec2 | Ubuntu | maverick | * |
Linux-ec2 | Ubuntu | upstream | * |
Linux-fsl-imx51 | Ubuntu | lucid | * |
Linux-fsl-imx51 | Ubuntu | upstream | * |
Linux-lts-backport-maverick | Ubuntu | lucid | * |
Linux-lts-backport-maverick | Ubuntu | upstream | * |
Linux-lts-backport-natty | Ubuntu | lucid | * |
Linux-lts-backport-natty | Ubuntu | upstream | * |
Linux-lts-backport-oneiric | Ubuntu | lucid | * |
Linux-lts-backport-oneiric | Ubuntu | upstream | * |
Linux-mvl-dove | Ubuntu | lucid | * |
Linux-mvl-dove | Ubuntu | maverick | * |
Linux-mvl-dove | Ubuntu | upstream | * |
Linux-ti-omap4 | Ubuntu | devel | * |
Linux-ti-omap4 | Ubuntu | maverick | * |
Linux-ti-omap4 | Ubuntu | natty | * |
Linux-ti-omap4 | Ubuntu | oneiric | * |
Linux-ti-omap4 | Ubuntu | upstream | * |