CVE-2012-3412

Severity

78%

Complexity

99%

Confidentiality

115%

The sfc (aka Solarflare Solarstorm) driver in the Linux kernel before 3.2.30 allows remote attackers to cause a denial of service (DMA descriptor consumption and network-controller outage) via crafted TCP packets that trigger a small MSS value.

The sfc (aka Solarflare Solarstorm) driver in the Linux kernel before 3.2.30 allows remote attackers to cause a denial of service (DMA descriptor consumption and network-controller outage) via crafted TCP packets that trigger a small MSS value.

CVSS 2.0 Base Score 7.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:C).

Overview

First reported 12 years ago

2012-10-03 11:02:00

Last updated 11 years ago

2013-08-17 06:46:00

Affected Software

Linux Kernel 3.2

3.2

Linux Kernel 3.2.1

3.2.1

Linux Kernel 3.2.3

3.2.3

Linux Kernel 3.2.4

3.2.4

Linux Kernel 3.2.5

3.2.5

Linux Kernel 3.2.6

3.2.6

Linux Kernel 3.2.7

3.2.7

Linux Kernel 3.2.8

3.2.8

Linux Kernel 3.2.9

3.2.9

Linux Kernel 3.2.10

3.2.10

Linux Kernel 3.2.11

3.2.11

Linux Kernel 3.2.12

3.2.12

Linux Kernel 3.2.13

3.2.13

Linux Kernel 3.2.14

3.2.14

Linux Kernel 3.2.15

3.2.15

Linux Kernel 3.2.16

3.2.16

Linux Kernel 3.2.17

3.2.17

Linux Kernel 3.2.18

3.2.18

Linux Kernel 3.2.19

3.2.19

Linux Kernel 3.2.20

3.2.20

Linux Kernel 3.2.21

3.2.21

Linux Kernel 3.2.22

3.2.22

Linux Kernel 3.2.23

3.2.23

Linux Kernel 3.2.24

3.2.24

Linux Kernel 3.2.25

3.2.25

Linux Kernel 3.2.26

3.2.26

Linux Kernel 3.2.27

3.2.27

Linux Kernel 3.2.28

3.2.28

Linux Kernel

References

openSUSE-SU-2012:1330

RHSA-2012:1323

RHSA-2012:1324

RHSA-2012:1347

RHSA-2012:1375

RHSA-2012:1401

RHSA-2012:1430

50633

50732

50811

51193

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.30

[oss-security] 20120803 Remote DoS in Linux sfc driver through TCP MSS option (CVE-2012-3412)

USN-1567-1

USN-1568-1

USN-1572-1

USN-1575-1

USN-1577-1

USN-1578-1

USN-1579-1

USN-1580-1

https://bugzilla.redhat.com/show_bug.cgi?id=844714

https://github.com/torvalds/linux/commit/68cb695ccecf949d48949e72f8ce591fdaaa325c

Exploit

SUSE-SU-2012:1679

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.