Vulnerability Details : CVE-2011-2723
The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.
Vulnerability category: Input validationDenial of service
Threat overview for CVE-2011-2723
Top countries where our scanners detected CVE-2011-2723
Top open port discovered on systems with this issue
49152
IPs affected by CVE-2011-2723 1,803
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2011-2723!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2011-2723
Probability of exploitation activity in the next 30 days: 0.77%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 79 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2011-2723
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.7
|
MEDIUM | AV:A/AC:M/Au:N/C:N/I:N/A:C |
5.5
|
6.9
|
NIST |
CWE ids for CVE-2011-2723
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-2723
-
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4
404: File not foundBroken Link
-
http://openwall.com/lists/oss-security/2011/07/29/1
oss-security - Re: CVE request: kernel: gro: Only reset frag0 when skb can be pulledMailing List;Patch;Third Party Advisory
-
http://openwall.com/lists/oss-security/2011/07/28/13
oss-security - CVE request: kernel: gro: Only reset frag0 when skb can be pulledMailing List;Patch;Third Party Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=726552
726552 – (CVE-2011-2723) CVE-2011-2723 kernel: gro: only reset frag0 when skb can be pulledIssue Tracking;Patch;Third Party Advisory
-
http://securitytracker.com/id?1025876
Linux Kernel skb_gro_header_slow() Bug Lets Remote Users Deny Service - SecurityTrackerThird Party Advisory;VDB Entry
-
http://www.redhat.com/support/errata/RHSA-2011-1321.html
SupportThird Party Advisory
-
http://marc.info/?l=bugtraq&m=139447903326211&w=2
'[security bulletin] HPSBGN02970 rev.1 - HP Rapid Deployment Pack (RDP) or HP Insight Control Server ' - MARCThird Party Advisory
-
http://www.securityfocus.com/bid/48929
Linux Kernel Generic Receive Offload (GRO) CVE-2011-2723 Denial of Service VulnerabilityThird Party Advisory;VDB Entry
-
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=17dd759c67f21e34f2156abcf415e1f60605a188
Products affected by CVE-2011-2723
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*