CVE-2009-1298

Priority
High
Description
The ip_frag_reasm function in net/ipv4/ip_fragment.c in the Linux kernel
2.6.32-rc8, and 2.6.29 and later versions before 2.6.32, calls
IP_INC_STATS_BH with an incorrect argument, which allows remote attackers
to cause a denial of service (NULL pointer dereference and hang) via long
IP packets, possibly related to the ip_defrag function.
References
Package
Upstream:not-affected
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.32)
Ubuntu 8.04 LTS (Hardy Heron):not-affected
Ubuntu 10.04 LTS (Lucid Lynx):not-affected
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:19:47 UTC (commit 5347)