CERT-MU Vulnerability Note VN-2009-33

Linux Kernel ‘ip_frag_reasm() ‘ Null Pointer Deference Remote Denial of Service Vulnerability

Original Issue Date: December 17, 2009

Severity Rating: High

Affected Softwares

• Linux Kernel versions prior to 2.6.31.6

Overview

A vulnerability has been reported in Linux kernel, which could be exploited by remote attackers to cause Denial of Service (DoS) conditions.

Description

This vulnerability is caused due to an error in the " ip_defrag() " function in net/ipv4/ip_fragment.c file in Linux kernel . A remote attacker could exploit this vulnerability by sending overly large size packets to trigger a NULL pointer dereference error. Successful exploitation of this vulnerability could allow a remote attacker to cause Denial of Service (DoS) conditions.

Solution

Upgrade to Linux Kernel version 2.6.31.6
http://www.kernel.org/.

Vendor Information

kernel.org
http://www.kernel.org/

References

kernel.org
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.30.6

GIT
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=bbf31bf18d34caa87dd01f08bf713635593697f2

Bugzilla
https://bugzilla.redhat.com/show_bug.cgi?id=544144

Secunia
http://secunia.com/advisories/37624

SecurityFocus
http://www.securityfocus.com/bid/37231

CVE Name
CVE-2009-1298

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.