The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).

Threat-Mapped Scoring

Score: 1.5

Priority: P4 - Informational (Low)

• S10 – Denial of Service

EPSS

Score: 0.35021
Percentile: 0.96847

CVSS Scoring

Mapped CWE(s)

• CWE-416 : Use After Free

Affected Products

• cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
• cpe:2.3:o:canonical:ubuntu_linux:5.10:*:*:*:*:*:*:*
• cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
• cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
• cpe:2.3:o:redhat:enterprise_linux:2.1:*:*:*:*:*:*:*
• cpe:2.3:o:redhat:enterprise_linux:3:*:*:*:*:*:*:*
• cpe:2.3:o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

← Back to Home