blob: 16adb8df9be773c13888129ebeddf9e921f47d42 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
Candidate: CVE-2006-2934
References:
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=dd7271feba61d5dc0fab1cb5365db9926d35ea3a
Description:
SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux kernel
2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to
cause a denial of service (crash) via a packet without any chunks, which
causes a variable to contain an invalid value that is later used to
dereference a pointer.
Ubuntu-Description:
A Denial of service vulnerability was reported in iptables' SCTP
conntrack module. On computers which use this iptables module, a
remote attacker could expoit this to trigger a kernel crash.
Notes:
netfilter/sctp didn't exist in 2.6.8/2.4.27
Bugs:
upstream: released (2.6.16.23, 2.6.17.3)
linux-2.6: released (2.6.17-3)
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.6.10-hoary-security: released (2.6.10-34.23)
2.6.12-breezy-security: released (2.6.12-10.37)
2.6.15-dapper-security: released (2.6.15-26.46)
2.6.17-edgy: released
|