Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-4165Divide By Zero in Kernel

CWE-369Divide By Zero15 documents7 sources
Severity
4.9MEDIUMNVD
EPSS
0.2%
top 58.17%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
5
Linux KernelOpensuseSuse Linux Enterprise Desktop+2 more
Timeline
PublishedNov 22
Latest updateMay 13

Description

The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCP_MAXSEG (aka MSS) values, which allows local users to cause a denial of service (OOPS) via a setsockopt call that specifies a small value, leading to a divide-by-zero error or incorrect use of a signed integer.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages5 packages

NVDlinux/linux_kernel< 2.6.37+1
NVDopensuse/opensuse11.2, 11.3+1

Patches

Patch: www.openwall.comPatch: www.openwall.comPatch: www.spinics.net

🔴Vulnerability Details

2
GHSA
GHSA-2x85-3pxc-c227: The do_tcp_setsockopt function in net/ipv4/tcp2022-05-13
CVEList
CVE-2010-4165: The do_tcp_setsockopt function in net/ipv4/tcp2010-11-20

💥Exploits & PoCs

2
Exploit-DB
Linux Kernel < 2.6.37-rc2 - 'TCP_MAXSEG' Kernel Panic (Denial of Service) (2)2011-03-10
Exploit-DB
Linux Kernel 2.6.37 - Local Kernel Denial of Service (1)2011-03-02

📋Vendor Advisories

9
Ubuntu
Linux kernel vulnerabilities2011-08-09
Ubuntu
Linux kernel (OMAP4) vulnerabilities2011-04-20
Ubuntu
Linux Kernel vulnerabilities (Marvell Dove)2011-03-25
Ubuntu
Linux kernel vulnerabilities2011-03-03
Ubuntu
Linux kernel vulnerabilities2011-02-28

💬Community

1
Bugzilla
CVE-2010-4165 kernel: possible kernel oops from user MSS2010-11-12
CVE-2010-4165 — Divide By Zero in Linux Kernel | cvebase