{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2009-12-08T00:00:00.000Z","descriptions":[{"lang":"en","value":"net/core/net_namespace.c in the Linux kernel 2.6.32 and earlier does not properly handle a high rate of creation and cleanup of network namespaces, which makes it easier for remote attackers to cause a denial of service (memory consumption) via requests to a daemon that requires a separate namespace per connection, as demonstrated by vsftpd."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2012-09-18T09:00:00.000Z","orgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","shortName":"redhat"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=711245"},{"tags":["x_refsource_CONFIRM"],"url":"https://bugs.launchpad.net/ubuntu/+source/linux/+bug/720095"},{"tags":["x_refsource_CONFIRM"],"url":"http://neil.brown.name/git?p=linux-2.6%3Ba=patch%3Bh=2b035b39970740722598f7a9d548835f9bdd730f"},{"name":"[oss-security] 20110606 Re: CVE Request -- vsftpd -- Do not create network namespace per connection","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2011/06/06/20"},{"name":"[oss-security] 20110606 Re: CVE Request -- vsftpd -- Do not create network namespace per connection","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2011/06/06/10"},{"tags":["x_refsource_CONFIRM"],"url":"http://ie.archive.ubuntu.com/linux/kernel/v2.6/ChangeLog-2.6.33"},{"name":"DSA-2305","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"http://www.debian.org/security/2011/dsa-2305"},{"tags":["x_refsource_CONFIRM"],"url":"http://patchwork.ozlabs.org/patch/88217/"},{"name":"[git-commits-head] 20091208 net: Automatically allocate per namespace data.","tags":["mailing-list","x_refsource_MLIST"],"url":"http://kerneltrap.org/mailarchive/git-commits-head/2009/12/8/15289"},{"tags":["x_refsource_CONFIRM"],"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629373"},{"name":"USN-1288-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"http://www.ubuntu.com/usn/USN-1288-1"},{"tags":["x_refsource_CONFIRM"],"url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2b035b39970740722598f7a9d548835f9bdd730f"},{"tags":["x_refsource_CONFIRM"],"url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f875bae065334907796da12523f9df85c89f5712"},{"tags":["x_refsource_CONFIRM"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=711134"}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-06T22:53:17.243Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=711245"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://bugs.launchpad.net/ubuntu/+source/linux/+bug/720095"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://neil.brown.name/git?p=linux-2.6%3Ba=patch%3Bh=2b035b39970740722598f7a9d548835f9bdd730f"},{"name":"[oss-security] 20110606 Re: CVE Request -- vsftpd -- Do not create network namespace per connection","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2011/06/06/20"},{"name":"[oss-security] 20110606 Re: CVE Request -- vsftpd -- Do not create network namespace per connection","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2011/06/06/10"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://ie.archive.ubuntu.com/linux/kernel/v2.6/ChangeLog-2.6.33"},{"name":"DSA-2305","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"http://www.debian.org/security/2011/dsa-2305"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://patchwork.ozlabs.org/patch/88217/"},{"name":"[git-commits-head] 20091208 net: Automatically allocate per namespace data.","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://kerneltrap.org/mailarchive/git-commits-head/2009/12/8/15289"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629373"},{"name":"USN-1288-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-1288-1"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2b035b39970740722598f7a9d548835f9bdd730f"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f875bae065334907796da12523f9df85c89f5712"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=711134"}]}]},"cveMetadata":{"assignerOrgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","assignerShortName":"redhat","cveId":"CVE-2011-2189","datePublished":"2011-10-10T10:00:00.000Z","dateReserved":"2011-05-31T00:00:00.000Z","dateUpdated":"2024-08-06T22:53:17.243Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}