CVE-2011-1576

Priority
Low
Description
The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18
on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as
used in Red Hat Enterprise Virtualization (RHEV) Hypervisor and other
products, allows remote attackers to cause a denial of service via crafted
VLAN packets that are processed by the napi_reuse_skb function, leading to
(1) a memory leak or (2) memory corruption, a different vulnerability than
CVE-2011-1478.
Ubuntu-Description
Ryan Sweat discovered that the kernel incorrectly handled certain VLAN
packets. On some systems, a remote attacker could send specially crafted
traffic to crash the system, leading to a denial of service.
References
Bugs
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.37~rc1)
Patches:
Introduced by 5d0d9be8ef456afc6c3fb5f8aad06ef19b704b05Fixed by 3701e51382a026cba10c60b03efabe534fba4ca4
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
More Information

Updated: 2018-06-26 04:40:41 UTC (commit 7799c934cca373482531a7b00e4dfe82302ceae5)