CVE-2010-4251 — Uncontrolled Resource Consumption in Kernel

CWE-400 — Uncontrolled Resource Consumption11 documents6 sources

Severity

7.5HIGHNVD

EPSS

2.1%

top 15.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Redhat Enterprise Linux Vmware ESX

Timeline

PublishedMay 26

Latest updateMay 13

Description

The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service (memory consumption) by sending a large amount of network traffic, as demonstrated by netperf UDP tests.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDlinux/linux_kernel< 2.6.34

▶NVDvmware/esx4.0, 4.1+1

Also affects: Enterprise Linux 4.0

Patches

Patch: www.vmware.com ↗Patch: bugzilla.redhat.com ↗Patch: www.vmware.com ↗

🔴Vulnerability Details

GHSA

GHSA-mr9q-8286-4fv4: The socket implementation in net/core/sock↗2022-05-13

▶

CVEList

CVE-2010-4251: The socket implementation in net/core/sock↗2011-05-26

▶

📋Vendor Advisories

Ubuntu

Linux kernel vulnerabilities↗2011-09-29

▶

Ubuntu

Linux kernel (EC2) vulnerabilities↗2011-09-26

▶

Ubuntu

Linux kernel (Marvel DOVE) vulnerabilities↗2011-09-14

▶

Ubuntu

Linux kernel (i.MX51) vulnerabilities↗2011-09-13

▶

Ubuntu

Linux kernel (Marvel DOVE) vulnerabilities↗2011-09-13

▶

💬Community

Bugzilla

CVE-2010-4251 CVE-2010-4805 kernel: unlimited socket backlog DoS↗2010-11-25

▶