Candidate: CVE-2006-1525
References: 
 CONFIRM:http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.8
 CONFIRM:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189346
 URL:http://www.securityfocus.com/bid/17593
 URL:http://xforce.iss.net/xforce/xfdb/25872 
Description: 
 ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to
 cause a denial of service (panic) via a request for a route for a multicast
 IP address, which triggers a null dereference.
Notes: 
 dannf> Submitted to Marcelo for 2.4
Bugs: 
upstream: released (2.6.16.8)
linux-2.6: released (2.6.16-9)
2.6.8-sarge-security: released (2.6.8-16sarge3)
2.4.27-sarge-security: released (2.4.27-10sarge3)
2.4.19-woody-security: 
2.4.18-woody-security: 
2.4.17-woody-security: 
2.4.16-woody-security: 
2.4.17-woody-security-hppa: 
2.4.17-woody-security-ia64: