CVE-2007-6282

Priority
Low
Description
The IPsec implementation in Linux kernel before 2.6.25 allows remote
routers to cause a denial of service (crash) via a fragmented ESP packet in
which the first fragment does not contain the entire ESP header and IV.
Ubuntu-Description
Dirk Nehring discovered that the IPsec protocol stack did not correctly
handle fragmented ESP packets. A remote attacker could exploit this
to crash the system, leading to a denial of service.
References
Assigned-to
kees
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.25)
Ubuntu 8.04 LTS (Hardy Heron):released (2.6.24-19.36)
Patches:
Upstream:920fc941a9617f95ccb283037fe6f8a38d95bb69 (esp_input)
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:18:24 UTC (commit 5347)