Launchpad CVE tracker

CVE 2009-2698

The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving the MSG_MORE flag and a UDP socket.

Related bugs and status

CVE-2009-2698 (Candidate) is related to these bugs:

Bug #395973: Please update kernel to version 2.6.24-26.34 to fix several security vulnerabilities

Summary				In	Importance	Status
	395973	Please update kernel to version 2.6.24-26.34 to fix several security vulnerabilities		The Dell Mini Project	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://git.kernel.org/...
CONFIRM: http://www.kernel.org/...
CONFIRM: https://bugzilla.redha...
REDHAT: RHSA-2009:1222
REDHAT: RHSA-2009:1223
SECUNIA: 23073
SECUNIA: 36430
MLIST: [oss-security] 2009082...
SUSE: SUSE-SA:2009:046
SECTRACK: 1022761
SECUNIA: 36510
BID: 36108
REDHAT: RHSA-2009:1233
CONFIRM: http://support.avaya.c...
CONFIRM: http://www.vmware.com/...
SECUNIA: 37298
SECUNIA: 37471
VUPEN: ADV-2009-3316
MANDRIVA: MDVSA-2011:051
UBUNTU: USN-852-1
SECUNIA: 37105
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20091120 VMSA-2009-001...
BUGTRAQ: 20100625 VMSA-2010-001...

Launchpad.net

CVE 2009-2698

Related bugs and status

Related bugs

References