SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (Linux)  >   Linux Kernel Vendors:   kernel.org
Linux Kernel IPv6 Netfilter Connection Tracking Flaw Lets Remote Users Deny Service
SecurityTracker Alert ID:  1027235
SecurityTracker URL:  http://securitytracker.com/id/1027235
CVE Reference:   CVE-2012-2744   (Links to External Site)
Date:  Jul 10 2012
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2.6.x
Description:   A vulnerability was reported in the Linux Kernel. A remote user can cause denial of service conditions.

A remote user can send specially crafted packets to trigger a null pointer dereference in nf_ct_frag6_reasm() and cause the target system to crash.

Systems using IPv6 and also having the nf_conntrack_ipv6 kernel module loaded are affected.

An anonymous contributor reported this vulnerability via Beyond Security's SecuriTeam Secure Disclosure program.

Impact:   A remote user can cause the target system to crash.
Solution:   The vendor has issued a source code fix, available at:

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=9e2dcf72023d1447f09c47d77c99b0c49659e5ce

Vendor URL:  www.kernel.org/ (Links to External Site)
Cause:   Access control error, State error

Message History:   This archive entry has one or more follow-up message(s) listed below.
Jul 10 2012 (Red Hat Issues Fix) Linux Kernel IPv6 Netfilter Connection Tracking Flaw Lets Remote Users Deny Service
Red Hat has issued a fix for Red Hat Enterprise Linux 6.
Jul 24 2012 (Red Hat Issues Fix) Linux Kernel IPv6 Netfilter Connection Tracking Flaw Lets Remote Users Deny Service
Red Hat has issued a fix Red Hat Enterprise Linux 6.0 Extended Update Support.
Jul 31 2012 (Red Hat Issues Fix) Linux Kernel IPv6 Netfilter Connection Tracking Flaw Lets Remote Users Deny Service
Red Hat has issued a fix for Red Hat Enterprise Linux 6.2.
Aug 8 2012 (Red Hat Issues Fix) Linux Kernel IPv6 Netfilter Connection Tracking Flaw Lets Remote Users Deny Service
Red Hat has issued a fix for Red Hat Enterprise Linux 6.1.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC