Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2011-2699

Опубликовано: 20 июл. 2011
Источник: redhat
CVSS2: 7.1
EPSS Низкий

Описание

The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service (disrupted networking) by predicting these values and sending crafted packets.

Отчет

This issue did not affect the Linux kernel as shipped with Red Hat Enterprise MRG as it has backported the fix that addresses this issue. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-1386.html and https://rhn.redhat.com/errata/RHSA-2011-1465.html.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 4kernelWill not fix
Red Hat Enterprise MRG 2realtime-kernelAffected
Red Hat Enterprise Linux 5kernelFixedRHSA-2011:138620.10.2011
Red Hat Enterprise Linux 5.6 EUS - Server OnlykernelFixedRHSA-2012:035806.03.2012
Red Hat Enterprise Linux 6kernelFixedRHSA-2011:146522.11.2011

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
https://bugzilla.redhat.com/show_bug.cgi?id=723429kernel: ipv6: make fragment identifications less predictable

EPSS

Процентиль: 72%
0.00752
Низкий

7.1 High

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2011-2699

CVSS3: 7.5
ubuntu
около 13 лет назад

The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service (disrupted networking) by predicting these values and sending crafted packets.

nvd логотип

CVE-2011-2699

CVSS3: 7.5
nvd
около 13 лет назад

The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service (disrupted networking) by predicting these values and sending crafted packets.

debian логотип

CVE-2011-2699

CVSS3: 7.5
debian
около 13 лет назад

The IPv6 implementation in the Linux kernel before 3.1 does not genera ...

github логотип

GHSA-69g3-qvqf-82hh

CVSS3: 7.5
github
около 3 лет назад

The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service (disrupted networking) by predicting these values and sending crafted packets.

fstec логотип

BDU:2015-04359

fstec
почти 14 лет назад

Уязвимости операционной системы SUSE Linux Enterprise, позволяющие злоумышленнику нарушить доступность защищаемой информации

EPSS

Процентиль: 72%
0.00752
Низкий

7.1 High

CVSS2