// For flags

CVE-2009-3621

Linux Kernel 2.6.31.4 - 'unix_stream_connect()' Local Denial of Service

Severity Score

5.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

5
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system hang) by creating an abstract-namespace AF_UNIX listening socket, performing a shutdown operation on this socket, and then performing a series of connect operations to this socket.

net/unix/af_unix.c en el kernel de Linux v2.6.31.4 y anteriores permite a usuarios locales causar una denegación de servicio (el servidor se bloquea) creando un socket abstract-namespace AF_UNIX y realizando una operación de apagado en ese socket, para luego luego realizar una serie de operaciones de conexión en dicho socket.

Kernel packages have been updated. It was discovered that the AX.25 network subsystem did not correctly check integer signedness in certain setsockopt calls. Jan Beulich discovered that the kernel could leak register contents to 32-bit processes that were switched to 64-bit mode. Dave Jones discovered that the gdth SCSI driver did not correctly validate array indexes in certain ioctl calls. Eric Dumazet and Jiri Pirko discovered that the TC and CLS subsystems would leak kernel memory via uninitialized structure members. Earl Chew discovered race conditions in pipe handling. There are about a dozen other issues also addressed.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2009-10-09 CVE Reserved
  • 2009-10-22 CVE Published
  • 2009-11-10 First Exploit
  • 2024-08-07 CVE Updated
  • 2025-05-15 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-400: Uncontrolled Resource Consumption
CAPEC
References (28)
URL Tag Source
http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=77238f2b942b38ab4e7f3aced44084493e4a8675 X_refsource_confirm
http://lists.vmware.com/pipermail/security-announce/2010/000082.html Mailing List
http://lkml.org/lkml/2009/10/19/50 Mailing List
http://secunia.com/advisories/37086 Broken Link
http://secunia.com/advisories/37909 Broken Link
http://secunia.com/advisories/38017 Broken Link
http://secunia.com/advisories/38794 Broken Link
http://secunia.com/advisories/38834 Broken Link
http://www.vupen.com/english/advisories/2010/0528 Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6895 Signature
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9921 Signature
URL Date SRC
https://www.exploit-db.com/exploits/10022 2009-11-10
http://patchwork.kernel.org/patch/54678 2024-08-07
http://www.openwall.com/lists/oss-security/2009/10/19/2 2024-08-07
http://www.openwall.com/lists/oss-security/2009/10/19/4 2024-08-07
https://bugzilla.redhat.com/show_bug.cgi?id=529626 2024-08-07
URL Date SRC
URL Date SRC
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00002.html 2023-02-13
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html 2023-02-13
http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00000.html 2023-02-13
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html 2023-02-13
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html 2023-02-13
http://www.mandriva.com/security/advisories?name=MDVSA-2009:329 2023-02-13
http://www.redhat.com/support/errata/RHSA-2009-1670.html 2023-02-13
http://www.redhat.com/support/errata/RHSA-2009-1671.html 2023-02-13
http://www.ubuntu.com/usn/usn-864-1 2023-02-13
https://rhn.redhat.com/errata/RHSA-2009-1540.html 2023-02-13
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00190.html 2023-02-13
https://access.redhat.com/security/cve/CVE-2009-3621 2009-12-15
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Linux
Search vendor "Linux"
 Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
 <= 2.6.31.4
Search vendor "Linux" for product "Linux Kernel" and version " <= 2.6.31.4"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 6.06
Search vendor "Canonical" for product "Ubuntu Linux" and version "6.06"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 8.04
Search vendor "Canonical" for product "Ubuntu Linux" and version "8.04"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 8.10
Search vendor "Canonical" for product "Ubuntu Linux" and version "8.10"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 9.04
Search vendor "Canonical" for product "Ubuntu Linux" and version "9.04"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 9.10
Search vendor "Canonical" for product "Ubuntu Linux" and version "9.10"
-
Affected
Fedoraproject
Search vendor "Fedoraproject"
 Fedora
Search vendor "Fedoraproject" for product "Fedora"
 10
Search vendor "Fedoraproject" for product "Fedora" and version "10"
-
Affected
Opensuse
Search vendor "Opensuse"
 Opensuse
Search vendor "Opensuse" for product "Opensuse"
 11.0
Search vendor "Opensuse" for product "Opensuse" and version "11.0"
-
Affected
Opensuse
Search vendor "Opensuse"
 Opensuse
Search vendor "Opensuse" for product "Opensuse"
 11.2
Search vendor "Opensuse" for product "Opensuse" and version "11.2"
-
Affected
Suse
Search vendor "Suse"
 Suse Linux Enterprise Desktop
Search vendor "Suse" for product "Suse Linux Enterprise Desktop"
 10
Search vendor "Suse" for product "Suse Linux Enterprise Desktop" and version "10"
sp2
Affected
Suse
Search vendor "Suse"
 Suse Linux Enterprise Desktop
Search vendor "Suse" for product "Suse Linux Enterprise Desktop"
 10
Search vendor "Suse" for product "Suse Linux Enterprise Desktop" and version "10"
sp3
Affected
Suse
Search vendor "Suse"
 Suse Linux Enterprise Server
Search vendor "Suse" for product "Suse Linux Enterprise Server"
 10
Search vendor "Suse" for product "Suse Linux Enterprise Server" and version "10"
sp2
Affected
Suse
Search vendor "Suse"
 Suse Linux Enterprise Server
Search vendor "Suse" for product "Suse Linux Enterprise Server"
 10
Search vendor "Suse" for product "Suse Linux Enterprise Server" and version "10"
sp3
Affected
Vmware
Search vendor "Vmware"
 Vma
Search vendor "Vmware" for product "Vma"
 4.0
Search vendor "Vmware" for product "Vma" and version "4.0"
-
Affected
Vmware
Search vendor "Vmware"
 Esx
Search vendor "Vmware" for product "Esx"
 4.0
Search vendor "Vmware" for product "Esx" and version "4.0"
-
Affected