CVE-2011-3601

Priority
Medium
Description
Buffer overflow in the process_ra function in the router advertisement
daemon (radvd) before 1.8.2 allows remote attackers to execute arbitrary
code or cause a denial of service (crash) via a negative value in a
label_len value.
References
Notes
mdeslaur> maverick and older don't support ND_OPT_DNSSL_INFORMATION
Assigned-to
mdeslaur
Package
Source: radvd (LP Ubuntu Debian)
Upstream:released (1.8.2)
Ubuntu 10.04 LTS (Lucid Lynx):not-affected (1:1.3-1.1)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (1:1.8-1.2)
Patches:
Upstream:https://github.com/reubenhwk/radvd/commit/9dfaaaf740ce784541e76e68de4ae04dce2c0921
More Information

Valid XHTML 1.0 Strict

Updated: 2014-02-26 16:14:43 UTC (commit 7784)