PublicDate: 2007-12-21 00:46:00 UTC
Candidate: CVE-2007-4567
References: 
 https://ubuntu.com/security/notices/USN-574-1
 https://ubuntu.com/security/notices/USN-558-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4567
Description:
 The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel
 before 2.6.22 does not properly validate the hop-by-hop IPv6 extended
 header, which allows remote attackers to cause a denial of service (NULL
 pointer dereference and kernel panic) via a crafted IPv6 packet.
Ubuntu-Description: 
Notes: 
 kees> introduced in 2.6.20, fixed in 2.6.22
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: 
CVSS: 
upstream_linux-source-2.6.20: released (2.6.22.5)
dapper_linux-source-2.6.15: not-affected
edgy_linux-source-2.6.17: not-affected
feisty_linux-source-2.6.20: released (2.6.20-16.33)
gutsy_linux-source-2.6.22: not-affected
devel_linux-source-2.6.22: not-affected
upstream_linux-source-2.6.15: needs-triage
upstream_linux-source-2.6.17: needs-triage
upstream_linux-source-2.6.22: needs-triage