CVE-2009-3519

Published: Oct 1, 2009Modified: Apr 23, 2026

4.9

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 3.9 / Impact: 6.9

Source: NVD

Description

Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial of service (memory consumption) via vectors related to (1) M_DATA, (2) M_PROTO, (3) M_PCPROTO, and (4) M_SIG STREAMS messages.

Affected (4)

Products: Oracle: Opensolaris, Solaris

2 products

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Oracle Opensolaris	Before snv_109
Oracle Solaris	Version 10
Oracle Solaris	Version 8
Oracle Solaris	Version 9

Related CWEs

Missing Release of Resource after Effective Lifetime

The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

References (6)

http://sunsolve.sun.com/search/document.do?assetkey=1-21-122300-44-1

Source: cve@mitre.org

Broken LinkPatchVendor Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-66-263388-1

Source: cve@mitre.org

Broken LinkPatchVendor Advisory

http://www.securityfocus.com/bid/36562

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://sunsolve.sun.com/search/document.do?assetkey=1-21-122300-44-1

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkPatchVendor Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-66-263388-1

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkPatchVendor Advisory

http://www.securityfocus.com/bid/36562

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.