National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

CVE-2009-0778 Detail

Current Description

The icmp_send function in net/ipv4/icmp.c in the Linux kernel before 2.6.25, when configured as a router with a REJECT route, does not properly manage the Protocol Independent Destination Cache (aka DST) in some situations involving transmission of an ICMP Host Unreachable message, which allows remote attackers to cause a denial of service (connectivity outage) by sending a large series of packets to many destination IP addresses within this REJECT route, related to an "rt_cache leak."

Source:  MITRE
View Analysis Description

Severity



CVSS 3.x Severity and Metrics:

NIST CVSS score
NIST: NVD
Base Score: N/A
NVD score not yet provided.

Vendor Statements (disclaimer)

Official Statement from Red Hat (05/19/2009)

This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 2.1, 3, 4, and Red Hat Enterprise MRG. It was addressed in Red Hat Enterprise Linux 5 via: https://rhn.redhat.com/errata/RHSA-2009-0326.html .

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink Resource
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=7c0ecc4c4f8fd90988aab8a95297b9c0038b6160
http://openwall.com/lists/oss-security/2009/03/11/2
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25
http://www.redhat.com/support/errata/RHSA-2009-0326.html
http://www.securityfocus.com/archive/1/507985/100/0/threaded
http://www.securityfocus.com/bid/34084
http://www.securitytracker.com/id?1021958
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
http://www.vupen.com/english/advisories/2009/3316
https://bugzilla.redhat.com/show_bug.cgi?id=485163 Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/49199
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10215
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7867

Weakness Enumeration

CWE-ID CWE Name Source
NVD-CWE-Other Other NIST  

Known Affected Software Configurations Switch to CPE 2.3

Configuration 1 ( hide )
 cpe:/o:linux:linux_kernel:2.6.0
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test10
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test11
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test5
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test6
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test7
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test8
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.0:test9
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.1:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.1:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.1:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.2:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.2:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.2:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.3:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.3:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.3:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.3:rc4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.4:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.4:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.4:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.5
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.5:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.5:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.5:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.6
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.6:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.6:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.6:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.7
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.7:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.7:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.7:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.8
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.8:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.8:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.8:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.8:rc4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.8.1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.9
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.9:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.9:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.9:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.9:rc4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.10
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.10:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.10:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.10:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11:rc4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11:rc5
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.5
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.6
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.7
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.8
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.9
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.10
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.11
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.11.12
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12:rc4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12:rc5
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12:rc6
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12.1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12.2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12.3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12.4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12.5
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.12.6
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13:rc1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13:rc2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13:rc3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13:rc4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13:rc5
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13:rc6
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13:rc7
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13.1
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13.2
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13.3
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13.4
     Show Matching CPE(s)
 cpe:/o:linux:linux_kernel:2.6.13.5
     Show Matching CPE(s)
Showing 100 of 347 CPE Match Criteria, view all CPEs here


Change History

4 change records found - show changes

Quick Info

CVE Dictionary Entry:
CVE-2009-0778
NVD Published Date:
03/12/2009
NVD Last Modified:
10/10/2018