176579 – Kernel: IPv6 Type 0 Route Headers Denial of Service (CVE-2007-2242)

Bug 176579 - Kernel: IPv6 Type 0 Route Headers Denial of Service (CVE-2007-2242)

Summary: Kernel: IPv6 Type 0 Route Headers Denial of Service (CVE-2007-2242)

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://secunia.com/advisories/25068/
Whiteboard:	[linux < 2.6.16.47][linux >= 2.6.17 <...
Keywords:

Depends on:
Blocks:

Reported:	2007-04-30 14:10 UTC by Sune Kloppenborg Jeppesen (RETIRED)
Modified:	2013-09-03 03:16 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2007-04-30 14:10:18 UTC

Description:
A security issue has been reported in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).
 
 The security issue is caused due to an error within the processing of packets with IPv6 type 0 route headers. This can be exploited to cause a DoS due to high network traffic by sending specially crafted IPv6 packets to vulnerable systems.

Solution:
Update to version 2.6.20.9 or 2.6.21.

Provided and/or discovered by:
Philippe Biondi and Arnaud Ebalard

Comment 1 unnamedrambler 2008-03-08 19:19:38 UTC

metadata:
[linux < 2.6.16.47] 132d8d23a0a2726fb2375fcac89119e28858eb6f
[linux >= 2.6.17 < 2.6.20.5] f8c08c340b8308ca0afb19d62f71b2b39ccfc9e0
also made it in 2.6.21 75559c167bddc1254db5bcff032ad5eed8bd6f4a

[gp < 2.6.20-6]