Overview
- Description
- In the Unbreakable Enterprise Kernel (UEK), the RDS module in UEK has two setsockopt(2) options, RDS_CONN_RESET and RDS6_CONN_RESET, that are not re-entrant. A malicious local user with CAP_NET_ADMIN can use this to crash the kernel. CVSS 3.1 Base Score 5.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
- Source
- secalert_us@oracle.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:vm_server:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2D35438D-A463-4FAE-A7EF-3A2AF7D0AA01"
},
{
"criteria": "cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D7B037A8-72A6-4DFF-94B2-D688A5F6F876"
},
{
"criteria": "cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "44B8FEDF-6CB0-46E9-9AD7-4445B001C158"
},
{
"criteria": "cpe:2.3:o:oracle:linux:8:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA9021D6-6027-42E9-A12D-7EA32C5C63F1"
},
{
"criteria": "cpe:2.3:o:oracle:linux:9:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9E6116DA-D643-4C6D-8B90-0A41125F1EF0"
}
],
"operator": "OR"
}
]
}
]