CVE-2012-4565

The tcp_illinois_info function in net/ipv4/tcp_illinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcp_congestion_control illinois setting is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) by reading TCP stats.

Published: Dec 21, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-4565
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.7
AV:L/AC:M/Au:N/C:N/I:N/A:C

CWEs:

CWE-189

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	3.4.4	3.4.4.x
linux / linux_kernel	3.4.11	3.4.11.x
linux / linux_kernel	3.4.13	3.4.13.x
linux / linux_kernel	3.4.6	3.4.6.x
linux / linux_kernel	3.4.12	3.4.12.x
linux / linux_kernel	3.4.5	3.4.5.x
linux / linux_kernel	3.4.14	3.4.14.x
linux / linux_kernel	3.4.9	3.4.9.x
linux / linux_kernel	3.4.15	3.4.15.x
linux / linux_kernel	3.4.3	3.4.3.x
linux / linux_kernel	3.4.10	3.4.10.x
linux / linux_kernel	3.4.8	3.4.8.x
linux / linux_kernel	3.4.2	3.4.2.x
linux / linux_kernel	3.4.1	3.4.1.x
linux / linux_kernel	-	3.4.18.x
linux / linux_kernel	3.4.16	3.4.16.x
linux / linux_kernel	3.4.17	3.4.17.x
linux / linux_kernel	3.4.7	3.4.7.x

Vulnerability Database

290,206

CVE-2012-4565