PublicDate: 2007-03-16 22:19:00 UTC
Candidate: CVE-2007-1497
References:
 https://ubuntu.com/security/notices/USN-464-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1497
Description:
 nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set
 nfctinfo during reassembly of fragmented packets, which leaves the default
 value as IP_CT_ESTABLISHED and might allow remote attackers to bypass
 certain rulesets using IPv6 fragments.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_linux-source-2.6.20: DNE
edgy_linux-source-2.6.20: DNE
feisty_linux-source-2.6.20: not-affected
devel_linux-source-2.6.20: DNE
dapper_linux-source-2.6.15: released (2.6.15-29.58)
edgy_linux-source-2.6.15: DNE
feisty_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE
dapper_linux-source-2.6.17: DNE
edgy_linux-source-2.6.17: released (2.6.17.1-12.40)
feisty_linux-source-2.6.17: DNE
devel_linux-source-2.6.17: DNE
upstream_linux-source-2.6.15: needs-triage
upstream_linux-source-2.6.17: needs-triage
upstream_linux-source-2.6.20: needs-triage