Back to search
CVE-2006-0454
Published: Feb 7, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmp_send, does not properly handle when the ip_options_echo function in icmp.c fails, which allows remote attackers to cause a denial of service (crash) via vectors such as (1) record-route and (2) timestamp IP options with the needaddr bit set and a truncated value.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
18788
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:040
vendor-advisory
x_refsource_MANDRIVA
kernel-icmp-ipoptionsecho-dos(24575)
vdb-entry
x_refsource_XF
18861
third-party-advisory
x_refsource_SECUNIA
18774
third-party-advisory
x_refsource_SECUNIA
2006-0006
vendor-advisory
x_refsource_TRUSTIX
[linux-kernel] 20060207 Linux 2.6.15.3
mailing-list
x_refsource_MLIST
FEDORA-2006-102
vendor-advisory
x_refsource_FEDORA
SUSE-SA:2006:006
vendor-advisory
x_refsource_SUSE
FLSA:157459-4
vendor-advisory
x_refsource_FEDORA
ADV-2006-0464
vdb-entry
x_refsource_VUPEN
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15.3
x_refsource_CONFIRM
USN-250-1
vendor-advisory
x_refsource_UBUNTU
18784
third-party-advisory
x_refsource_SECUNIA
16532
vdb-entry
x_refsource_BID
[linux-kernel] 20060207 Re: Linux 2.6.15.3
mailing-list
x_refsource_MLIST
[dailydave] 20060207 Fun with Linux (2.6.12 -> 2.6.15.2)
mailing-list
x_refsource_MLIST
18766
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now