Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2023-1206

Опубликовано: 07 июн. 2023
Источник: redhat
CVSS3: 5.7
EPSS Низкий

Описание

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95%.

Меры по смягчению последствий

https://access.redhat.com/solutions/30453

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6kernelOut of support scope
Red Hat Enterprise Linux 7kernelOut of support scope
Red Hat Enterprise Linux 7kernel-rtOut of support scope
Red Hat Enterprise Linux 9kernel-rtAffected
Red Hat Enterprise Linux 8kernel-rtFixedRHSA-2023:690114.11.2023
Red Hat Enterprise Linux 8kernelFixedRHSA-2023:707714.11.2023
Red Hat Enterprise Linux 8.6 Extended Update SupportkernelFixedRHSA-2023:562710.10.2023
Red Hat Enterprise Linux 9kernelFixedRHSA-2023:658307.11.2023
Red Hat Enterprise Linux 9kernelFixedRHSA-2023:658307.11.2023
Red Hat Enterprise Linux 9.0 Extended Update SupportkernelFixedRHSA-2023:560410.10.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-327
https://bugzilla.redhat.com/show_bug.cgi?id=2175903kernel: hash collisions in the IPv6 connection lookup table

EPSS

Процентиль: 4%
0.0002
Низкий

5.7 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2023-1206

CVSS3: 5.7
ubuntu
почти 2 года назад

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95%.

nvd логотип

CVE-2023-1206

CVSS3: 5.7
nvd
почти 2 года назад

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95%.

debian логотип

CVE-2023-1206

CVSS3: 5.7
debian
почти 2 года назад

A hash collision flaw was found in the IPv6 connection lookup table in ...

github логотип

GHSA-36wf-hpjh-x3fr

CVSS3: 5.7
github
почти 2 года назад

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95%.

fstec логотип

BDU:2023-03642

CVSS3: 5.7
fstec
больше 2 лет назад

Уязвимость реализации протокола IPv6 ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 4%
0.0002
Низкий

5.7 Medium

CVSS3

Уязвимость CVE-2023-1206