Skip to content

CVE-2016-10229: Remote UDP Exploit or why did your Nexus want a new kernel this morning?

CVE-2016-10229: Almost perfect score.

CVSS v3 Base Score 9.8 (Critical)

»udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.«

Affects your Linux, and hence all the unupdateable Android you own. Or “why did your Nexus need a reboot this morning?”

Published inHackerterrorcybercyber

3 Comments

  1. Jakob

    Never used MSG_PEEK and don’t know why one should, except of some badly designed application doing something like “look into the packet and dispatch accordingly”. Or is there any commonly used software I missed? My DNS hopefully, maybe ntpd (with its bad sec history)

  2. Anton

    What about OpenVPN (1194/udp) or IPsec (500/Udp, not GRE)?

Leave a Reply

Your email address will not be published. Required fields are marked *