CVE-2007-6282 - Secunia Advisories - Vulnerability Intelligence

Secunia Advisories

CVE Reference: CVE-2007-6282
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-6282

Description: The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/42276 UBUNTU http://www.ubuntu.com/usn/usn-625-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.html http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html SAID Secunia Advisory: SA31628 Secunia Advisory: SA31107 Secunia Advisory: SA30962 Secunia Advisory: SA30818 Secunia Advisory: SA30890 Secunia Advisory: SA30294 Secunia Advisory: SA31551 Secunia Advisory: SA30112 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0585.html http://www.redhat.com/support/errata/RHSA-2008-0275.html http://www.redhat.com/support/errata/RHSA-2008-0237.html MLIST http://marc.info/?l=linux-netdev&m=120372380411259&w=2 MISC DEBIAN http://www.debian.org/security/2008/dsa-1630 BID 29081

Return to the previous page.