CVE-2009-4226
Severity CVSS v4.0:
Pending analysis
Type:
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Publication date:
08/12/2009
Last modified:
09/04/2025
Description
Race condition in the IP module in the kernel in Sun OpenSolaris snv_106 through snv_124 allows remote attackers to cause a denial of service (NULL pointer dereference and panic) via unspecified vectors related to the (1) tcp_do_getsockname or (2) tcp_do_getpeername function.
Impact
Base Score 2.0
7.10
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:sun:opensolaris:snv_106:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_106:*:x86:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_107:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_107:*:x86:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_108:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_108:*:x86:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_109:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_109:*:x86:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_110:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_110:*:x86:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_111:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_111:*:x86:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_112:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_112:*:x86:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_113:*:sparc:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://opensolaris.org/jive/thread.jspa?messageID=415069&tstart=0
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-268189-1
- http://www.vupen.com/english/advisories/2009/3413
- https://exchange.xforce.ibmcloud.com/vulnerabilities/54574
- http://opensolaris.org/jive/thread.jspa?messageID=415069&tstart=0
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-268189-1
- http://www.vupen.com/english/advisories/2009/3413
- https://exchange.xforce.ibmcloud.com/vulnerabilities/54574