CVE-2007-1861
published 2007-05-07CVE-2007-1861: The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service (kernel panic) via…
PriorityP419medium4.9CVSS 2.0
AVLACLAuNCNINAC
EXPLOIT
EPSS
1.02%
59.2th percentile
The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service (kernel panic) via NETLINK_FIB_LOOKUP replies, which trigger infinite recursion and a stack overflow.
Affected
151 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | <= 2.6.20.8 | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
CVSS provenance
nvdv2.04.9MEDIUMAV:L/AC:L/Au:N/C:N/I:N/A:C
vendor_ubuntu7.8HIGH
vendor_redhat4.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-w936-xhfj-xfpm: The nl_fib_lookup function in net/ipv4/fib_frontend
ghsa_unreviewed·2022-05-01
CVE-2007-1861 [MEDIUM] GHSA-w936-xhfj-xfpm: The nl_fib_lookup function in net/ipv4/fib_frontend
The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service (kernel panic) via NETLINK_FIB_LOOKUP replies, which trigger infinite recursion and a stack overflow.
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2007-07-19·CVSS 7.8
CVE-2006-4623 [HIGH] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
A flaw was discovered in dvb ULE decapsulation. A remote attacker could
send a specially crafted message and cause a denial of service.
(CVE-2006-4623)
The compat_sys_mount function allowed local users to cause a denial of
service when mounting a smbfs filesystem in compatibility mode.
(CVE-2006-7203)
The Omnikey CardMan 4040 driver (cm4040_cs) did not limit the size of
buffers passed to read() and write(). A local attacker could exploit
this to execute arbitrary code with kernel privileges. (CVE-2007-0005)
Due to an variable handling flaw in the ipv6_getsockopt_sticky()
function a local attacker could exploit the getsockopt() calls to read
arbitrary kernel memory. This could disclose sensitive data.
(CVE-2007-1
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2007-07-18·CVSS 4.0
CVE-2007-2242 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
The compat_sys_mount function allowed local users to cause a denial of
service when mounting a smbfs filesystem in compatibility mode.
(CVE-2006-7203)
The Omnikey CardMan 4040 driver (cm4040_cs) did not limit the size of
buffers passed to read() and write(). A local attacker could exploit
this to execute arbitrary code with kernel privileges. (CVE-2007-0005)
Due to a variable handling flaw in the ipv6_getsockopt_sticky()
function a local attacker could exploit the getsockopt() calls to
read arbitrary kernel memory. This could disclose sensitive data.
(CVE-2007-1000)
Ilja van Sprundel discovered that Bluetooth setsockopt calls could leak
kernel memory contents via an uninitialized stack buffer. A local
attacker c
Red Hat
infinite recursion in netlink
vendor_redhat·2007-04-25·CVSS 4.9
CVE-2007-1861 [MEDIUM] infinite recursion in netlink
infinite recursion in netlink
The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service (kernel panic) via NETLINK_FIB_LOOKUP replies, which trigger infinite recursion and a stack overflow.
No detection rules found.
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.8http://secunia.com/advisories/25030http://secunia.com/advisories/25083http://secunia.com/advisories/25228http://secunia.com/advisories/25288http://secunia.com/advisories/25691http://secunia.com/advisories/25961http://secunia.com/advisories/26133http://secunia.com/advisories/26139http://secunia.com/advisories/26620http://www.debian.org/security/2007/dsa-1289http://www.mandriva.com/security/advisories?name=MDKSA-2007:171http://www.novell.com/linux/security/advisories/2007_43_kernel.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0347.htmlhttp://www.securityfocus.com/archive/1/467939/30/6690/threadedhttp://www.securityfocus.com/archive/1/471457http://www.securityfocus.com/bid/23677http://www.ubuntu.com/usn/usn-486-1http://www.ubuntu.com/usn/usn-489-1http://www.vupen.com/english/advisories/2007/1595https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=237913https://exchange.xforce.ibmcloud.com/vulnerabilities/34014https://issues.rpath.com/browse/RPL-1309https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11616http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.8http://secunia.com/advisories/25030http://secunia.com/advisories/25083http://secunia.com/advisories/25228http://secunia.com/advisories/25288http://secunia.com/advisories/25691http://secunia.com/advisories/25961http://secunia.com/advisories/26133http://secunia.com/advisories/26139http://secunia.com/advisories/26620http://www.debian.org/security/2007/dsa-1289http://www.mandriva.com/security/advisories?name=MDKSA-2007:171http://www.novell.com/linux/security/advisories/2007_43_kernel.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0347.htmlhttp://www.securityfocus.com/archive/1/467939/30/6690/threadedhttp://www.securityfocus.com/archive/1/471457http://www.securityfocus.com/bid/23677http://www.ubuntu.com/usn/usn-486-1http://www.ubuntu.com/usn/usn-489-1http://www.vupen.com/english/advisories/2007/1595https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=237913https://exchange.xforce.ibmcloud.com/vulnerabilities/34014https://issues.rpath.com/browse/RPL-1309https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11616
2007-05-07
Published