CVE - CVE-2009-3621

CVE-ID
CVE-2009-3621	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system hang) by creating an abstract-namespace AF_UNIX listening socket, performing a shutdown operation on this socket, and then performing a series of connect operations to this socket.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:37086 URL:http://secunia.com/advisories/37086 MISC:37909 URL:http://secunia.com/advisories/37909 MISC:38017 URL:http://secunia.com/advisories/38017 MISC:38794 URL:http://secunia.com/advisories/38794 MISC:38834 URL:http://secunia.com/advisories/38834 MISC:ADV-2010-0528 URL:~~http://www.vupen.com/english/advisories/2010/0528~~ (Obsolete source) MISC:FEDORA-2009-11038 URL:https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00190.html MISC:MDVSA-2009:329 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:329~~ (Obsolete source) MISC:RHSA-2009:1540 URL:https://rhn.redhat.com/errata/RHSA-2009-1540.html MISC:RHSA-2009:1670 URL:http://www.redhat.com/support/errata/RHSA-2009-1670.html MISC:RHSA-2009:1671 URL:http://www.redhat.com/support/errata/RHSA-2009-1671.html MISC:SUSE-SA:2009:061 URL:http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00002.html MISC:SUSE-SA:2009:064 URL:http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html MISC:SUSE-SA:2010:001 URL:http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00000.html MISC:SUSE-SA:2010:012 URL:http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html MISC:SUSE-SA:2010:013 URL:http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html MISC:USN-864-1 URL:http://www.ubuntu.com/usn/usn-864-1 MISC:[linux-kernel] 20091019 Re: [PATCH] AF_UNIX: Fix deadlock on connecting to shutdown socket URL:http://lkml.org/lkml/2009/10/19/50 MISC:[oss-security] 20091019 CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket URL:http://www.openwall.com/lists/oss-security/2009/10/19/2 MISC:[oss-security] 20091019 Re: CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket URL:http://www.openwall.com/lists/oss-security/2009/10/19/4 MISC:[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates URL:http://lists.vmware.com/pipermail/security-announce/2010/000082.html MISC:http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=77238f2b942b38ab4e7f3aced44084493e4a8675 URL:http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=77238f2b942b38ab4e7f3aced44084493e4a8675 MISC:http://patchwork.kernel.org/patch/54678/ URL:http://patchwork.kernel.org/patch/54678/ MISC:https://bugzilla.redhat.com/show_bug.cgi?id=529626 URL:https://bugzilla.redhat.com/show_bug.cgi?id=529626 MISC:oval:org.mitre.oval:def:6895 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6895 MISC:oval:org.mitre.oval:def:9921 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9921
Assigning CNA
Red Hat, Inc.
Date Record Created
20091009	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20091009)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)