blob: 1b12051c167eb6cda48e0f4f8512eb54191698c9 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
|
Description: Mishandled interactions among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets resulting in a denial of service
References:
https://bugzilla.redhat.com/show_bug.cgi?id=1637504
https://www.openwall.com/lists/oss-security/2018/10/05/5
Notes:
carnil> Complex to fix at protocol level and will require significant
carnil> work to fix. To exploit the issue an user would need
carnil> CAP_NET_ADMIN or similar.
Bugs:
upstream: needed
6.1-upstream-stable: needed
5.10-upstream-stable: needed
4.19-upstream-stable: needed
4.9-upstream-stable:
3.16-upstream-stable: ignored "EOL"
sid: needed
6.1-bookworm-security: needed
5.10-bullseye-security: needed
4.19-buster-security: needed
4.9-stretch-security:
3.16-jessie-security: ignored "EOL"
|