CVE-2007-4567 (retired)

Priority
Description
The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel
before 2.6.22 does not properly validate the hop-by-hop IPv6 extended
header, which allows remote attackers to cause a denial of service (NULL
pointer dereference and kernel panic) via a crafted IPv6 packet.
Notes
 kees> introduced in 2.6.20, fixed in 2.6.22
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:released (2.6.22.5)
Package
Upstream:needs-triage
More Information

Updated: 2019-09-19 15:09:26 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)