CVE-2009-3519

CWE-7723 documents3 sources

Severity

4.9MEDIUM

EPSS

0.2%

top 58.45%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Opensolaris Oracle Solaris

Timeline

PublishedOct 1

Latest updateMay 2

Description

Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial of service (memory consumption) via vectors related to (1) M_DATA, (2) M_PROTO, (3) M_PCPROTO, and (4) M_SIG STREAMS messages.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages2 packages

▶NVDoracle/opensolaris< snv_109

▶NVDoracle/solaris10, 8, 9+2

Patches

Patch: sunsolve.sun.com ↗Patch: sunsolve.sun.com ↗Patch: sunsolve.sun.com ↗

🔴Vulnerability Details

GHSA

GHSA-jq5g-93fw-pqwp: Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial↗2022-05-02

▶

CVEList

CVE-2009-3519: Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial↗2009-10-01

▶