CVE-2010-0437
published 2010-03-24CVE-2010-0437: The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6…
PriorityP343high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
12.43%
95.7th percentile
The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6 TUN network interface and a large number of neighbors, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via unknown vectors.
Affected
263 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | <= 2.6.26.8 | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
CVSS provenance
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
vendor_redhat7.8HIGH
vendor_ubuntu4.7MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VMware
Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
vendor_vmware·2011-02-10·CVSS 5.0
CVE-2008-0085 [MEDIUM] Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
VMSA-2011-0003: Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX VMware Security Advisory VMware Security Advisory Advisory ID: VMware Security Advisory Synopsis: Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX VMware Security Advisory Issue date: VMware Security Advisory Updated on: VMware Security Advisory CVE numbers:
CVEs: CVE-2008-0085, CVE-2008-0086, CVE-2008-0106, CVE-2008-0107, CVE-2008-3825, CVE-2008-5416, CVE-2009-1384, CVE-2009-2693, CVE-2009-2901, CVE-2009-2902, CVE-2009-3548, CVE-2009-3555, CVE-2009-4308, CVE-2010-0003, CVE-2010-0007, CVE-2010-0008, CVE-2010-0082, CVE-2010-0084, CVE-2010-0085,
Ubuntu
Linux kernel regression
vendor_ubuntu·2010-06-04·CVSS 4.7
CVE-2010-0419 [MEDIUM] Linux kernel regression
Title: Linux kernel regression
Summary: KVM regressed under some conditions in the Linux kernel.
USN-947-1 fixed vulnerabilities in the Linux kernel. Fixes for
CVE-2010-0419 caused failures when using KVM in certain situations.
This update reverts that fix until a better solution can be found.
We apologize for the inconvenience.
Original advisory details:
It was discovered that the Linux kernel did not correctly handle memory
protection of the Virtual Dynamic Shared Object page when running
a 32-bit application on a 64-bit kernel. A local attacker could
exploit this to cause a denial of service. (Only affected Ubuntu 6.06
LTS.) (CVE-2009-4271)
It was discovered that the r8169 network driver did not correctly check
the size of Ethernet frames. A remote attacker could send specially
cr
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2010-06-03·CVSS 4.7
CVE-2009-4271 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Multiple flaws in the Linux kernel.
It was discovered that the Linux kernel did not correctly handle memory
protection of the Virtual Dynamic Shared Object page when running
a 32-bit application on a 64-bit kernel. A local attacker could
exploit this to cause a denial of service. (Only affected Ubuntu 6.06
LTS.) (CVE-2009-4271)
It was discovered that the r8169 network driver did not correctly check
the size of Ethernet frames. A remote attacker could send specially
crafted traffic to crash the system, leading to a denial of service.
(CVE-2009-4537)
Wei Yongjun discovered that SCTP did not correctly validate certain
chunks. A remote attacker could send specially crafted traffic to
monopolize CPU resources, leading to a denial of service. (Onl
Red Hat
kernel: ipv6: fix ip6_dst_lookup_tail() NULL pointer dereference
vendor_redhat·2008-09-09·CVSS 7.8
CVE-2010-0437 [HIGH] CWE-476 kernel: ipv6: fix ip6_dst_lookup_tail() NULL pointer dereference
kernel: ipv6: fix ip6_dst_lookup_tail() NULL pointer dereference
The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6 TUN network interface and a large number of neighbors, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via unknown vectors.
Statement: This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4, as they do not include support for Optimistic Duplicate Address Detection (DAD) in IPv6.
VulDB
Linux Kernel 2.6.16.59 ip6_dst_lookup_tail null pointer dereference (Bug 563781 / EDB-33635)
vuldb·2026-05-03·CVSS 7.8
CVE-2010-0437 [HIGH] Linux Kernel 2.6.16.59 ip6_dst_lookup_tail null pointer dereference (Bug 563781 / EDB-33635)
A vulnerability was found in Linux Kernel 2.6.16.59. It has been rated as problematic. This impacts the function ip6_dst_lookup_tail. The manipulation leads to null pointer dereference.
This vulnerability is referenced as CVE-2010-0437. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
GHSA
GHSA-rgwh-xw8h-466p: The ip6_dst_lookup_tail function in net/ipv6/ip6_output
ghsa_unreviewed·2022-05-02
CVE-2010-0437 [HIGH] GHSA-rgwh-xw8h-466p: The ip6_dst_lookup_tail function in net/ipv6/ip6_output
The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6 TUN network interface and a large number of neighbors, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via unknown vectors.
No detection rules found.
http://bugzilla.kernel.org/show_bug.cgi?id=11469http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e550dfb0c2c31b6363aa463a035fc9f8dcaa3c9bhttp://secunia.com/advisories/39033http://secunia.com/advisories/43315http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27http://www.openwall.com/lists/oss-security/2010/02/11/1http://www.openwall.com/lists/oss-security/2010/03/04/4http://www.redhat.com/support/errata/RHSA-2010-0147.htmlhttp://www.redhat.com/support/errata/RHSA-2010-0161.htmlhttp://www.securityfocus.com/archive/1/516397/100/0/threadedhttp://www.vmware.com/security/advisories/VMSA-2011-0003.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=563781https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10061http://bugzilla.kernel.org/show_bug.cgi?id=11469http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e550dfb0c2c31b6363aa463a035fc9f8dcaa3c9bhttp://secunia.com/advisories/39033http://secunia.com/advisories/43315http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27http://www.openwall.com/lists/oss-security/2010/02/11/1http://www.openwall.com/lists/oss-security/2010/03/04/4http://www.redhat.com/support/errata/RHSA-2010-0147.htmlhttp://www.redhat.com/support/errata/RHSA-2010-0161.htmlhttp://www.securityfocus.com/archive/1/516397/100/0/threadedhttp://www.vmware.com/security/advisories/VMSA-2011-0003.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=563781https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10061
2010-03-24
Published