{
  "threat_severity" : "Moderate",
  "public_date" : "2012-10-31T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: net: divide by zero in tcp algorithm illinois",
    "id" : "871848",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=871848"
  },
  "cvss" : {
    "cvss_base_score" : "4.7",
    "cvss_scoring_vector" : "AV:L/AC:M/Au:N/C:N/I:N/A:C",
    "status" : "verified"
  },
  "details" : [ "The tcp_illinois_info function in net/ipv4/tcp_illinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcp_congestion_control illinois setting is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) by reading TCP stats." ],
  "statement" : "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 5.\nThis issue did affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 6.\nThis issue did affect the version of Linux kernel as shipped with Red Hat Enterprise MRG 2.",
  "acknowledgement" : "This issue was discovered by Rodrigo Freire (Red Hat).",
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2012-12-18T00:00:00Z",
    "advisory" : "RHSA-2012:1580",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "kernel-0:2.6.32-279.19.1.el6"
  }, {
    "product_name" : "Red Hat Enterprise MRG 2",
    "release_date" : "2012-12-04T00:00:00Z",
    "advisory" : "RHSA-2012:1491",
    "cpe" : "cpe:/a:redhat:enterprise_mrg:2:server:el6",
    "package" : "kernel-rt-0:3.2.33-rt50.66.el6rt"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2012-4565\nhttps://nvd.nist.gov/vuln/detail/CVE-2012-4565" ],
  "name" : "CVE-2012-4565",
  "csaw" : false
}