CVE-2009-1360 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-1360): The __inet6_check_established function in net/ipv6/inet6_hashtables.c in the Linux kernel before 2.6.29, when Network Namespace Support (aka NET_NS) is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via vectors involving IPv6 packets.
NIST continue to reside in Cloud Cuckoo Land. From the patch itself: "The bug exists since 2.6.27." Amending Status Whiteboard.