Vulnerabilities

CVE-2010-4249

by Fred · 29/11/2010

The wait_for_unix_gc function in net/unix/garbage.c in the Linux kernel before 2.6.37-rc3-next-20101125 does not properly select times for garbage collection of inflight sockets, which allows local users to cause a denial of service (system hang) via crafted use of the socketpair and sendmsg system calls for SOCK_SEQPACKET sockets.

Date published : 2010-11-29

http://www.securityfocus.com/bid/45037

http://www.securityfocus.com/archive/1/520102/100/0/threaded

Similar

Tags: Cybersecurity Alert