search menu icon-carat-right cmu-wordmark

CERT Coordination Center

Linux kernel IP stack incorrectly calculates size of an ICMP citation for ICMP errors

Vulnerability Note VU#471084

Original Release Date: 2003-06-09 | Last Revised: 2003-10-14

Overview

The Linux 2.0 kernel contains a vulnerability in the way it processes ICMP errors. This could lead to portions of memory being leaked to a malicious user.

Description

The Linux 2.0 kernel (versions 2.0 through 2.0.39 inclusive) contains an error in the calculation of the size for an ICMP citation. A citation is created for ICMP error responses. This miscalculation may lead to random data stored in memory being returned in the response.

This vulnerability could be used by an attacker to gain sensitive information about the system, which may aid in an attack.

Impact

Sensitive information may be leaked to an attacker.

Solution

Upgrade or apply a patch as necessary. Please see the vendor Section to determine if your product is vulnerable.

Vendor Information

471084
 

View all 12 vendors View less vendors


CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Thanks to Philippe Biondi of Cartel Security for reporting this vulnerability.

This document was written by Jason A Rafail.

Other Information

CVE IDs: None
Severity Metric: 1.37
Date Public: 2003-06-09
Date First Published: 2003-06-09
Date Last Updated: 2003-10-14 17:40 UTC
Document Revision: 5

Sponsored by CISA.