Описание
The ip_expire function in net/ipv4/ip_fragment.c in the Linux kernel before 2.6.39 does not properly construct ICMP_TIME_EXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service (invalid pointer dereference) via crafted fragmented packets.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.1.0-1.0 |
| hardy | not-affected | |
| lucid | not-affected | |
| maverick | released | 2.6.35-32.66 |
| natty | released | 2.6.38-10.44 |
| oneiric | released | 2.6.39-3.9 |
| upstream | released | 2.6.39 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | not-affected | |
| maverick | ignored | end of life |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | not-affected | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.35-32.66~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.38-10.44~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 3.0.0-5.6~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | not-affected | |
| maverick | not-affected | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 2.6.39 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.0.0-1401.2 |
| hardy | DNE | |
| lucid | DNE | |
| maverick | released | 2.6.35-903.31 |
| natty | released | 2.6.38-1209.22 |
| oneiric | released | 3.0.0-1200.1 |
| upstream | released | 2.6.39 |
Показывать по
Ссылки на источники
5 Medium
CVSS2
Связанные уязвимости
The ip_expire function in net/ipv4/ip_fragment.c in the Linux kernel before 2.6.39 does not properly construct ICMP_TIME_EXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service (invalid pointer dereference) via crafted fragmented packets.
The ip_expire function in net/ipv4/ip_fragment.c in the Linux kernel b ...
The ip_expire function in net/ipv4/ip_fragment.c in the Linux kernel before 2.6.39 does not properly construct ICMP_TIME_EXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service (invalid pointer dereference) via crafted fragmented packets.
5 Medium
CVSS2