Linux NULL pointer dereference due to incorrect proto_ops initializations (CVE-2009-2692) vulnerability

Edward alerted us to a new Linux vulnerability coming from how Linux deals with unavailable operations for some protocols.

All Linux 2.4 / 2.6 versions since May of 2001 are believed to be vulnerable.

More details are available here

Christopher Carboni - Handler On Duty


140 Posts
Aug 14th 2009

Sign Up for Free or Log In to start participating in the conversation!