CVE-2010-0006

Published: 26 January 2010

The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.32.4, when network namespaces are enabled, allows remote attackers to cause a denial of service (NULL pointer dereference) via an invalid IPv6 jumbogram, a related issue to CVE-2007-4567.

Priority

Status

Package	Release	Status
linux Launchpad, Ubuntu, Debian	dapper	Does not exist
	hardy	Not vulnerable
	intrepid	Not vulnerable
	jaunty	Released (2.6.28-18.59)
	karmic	Released (2.6.31-19.56)
	upstream	Released (2.6.33~rc5)
	Patches: upstream: http://git.kernel.org/linus/2570a4f5428bcdb1077622342181755741e7fa60
linux-source-2.6.15 Launchpad, Ubuntu, Debian	dapper	Not vulnerable
	hardy	Does not exist
	intrepid	Does not exist
	jaunty	Does not exist
	karmic	Does not exist
	upstream	Released (2.6.33~rc5)

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE-2010-0006

Priority

Status

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading