Описание
Security update for conntrack-tools
Fix a possible crash if conntrackd sees DCCP, SCTP and ICMPv6 traffic and the corresponding kernel modules that track this traffic are not available. (bsc#942149, CVE-2015-6496)
Список пакетов
SUSE Linux Enterprise High Availability Extension 11 SP3
conntrack-tools-1.0.0-0.9.1
SUSE Linux Enterprise High Availability Extension 11 SP4
conntrack-tools-1.0.0-0.9.1
Ссылки
- Link for SUSE-SU-2015:1683-1
- E-Mail link for SUSE-SU-2015:1683-1
- SUSE Security Ratings
- SUSE Bug 942149
- SUSE CVE CVE-2015-6496 page
Описание
conntrackd in conntrack-tools 1.4.2 and earlier does not ensure that the optional kernel modules are loaded before using them, which allows remote attackers to cause a denial of service (crash) via a (1) DCCP, (2) SCTP, or (3) ICMPv6 packet.
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 11 SP3:conntrack-tools-1.0.0-0.9.1
SUSE Linux Enterprise High Availability Extension 11 SP4:conntrack-tools-1.0.0-0.9.1
Ссылки
- CVE-2015-6496
- SUSE Bug 942149