Back to search
CVE-2008-2136
Published: May 16, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Memory leak in the ipip6_rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service (memory consumption) via network traffic to a Simple Internet Transition (SIT) tunnel interface, related to the pskb_may_pull and kfree_skb functions, and management of an skb reference count.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1020118
vdb-entry
x_refsource_SECTRACK
30276
third-party-advisory
x_refsource_SECUNIA
30962
third-party-advisory
x_refsource_SECUNIA
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.3
x_refsource_CONFIRM
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0169
x_refsource_CONFIRM
31198
third-party-advisory
x_refsource_SECUNIA
30368
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:167
vendor-advisory
x_refsource_MANDRIVA
31341
third-party-advisory
x_refsource_SECUNIA
http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.36.5
x_refsource_CONFIRM
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.3
x_refsource_CONFIRM
ADV-2008-1716
vdb-entry
x_refsource_VUPEN
RHSA-2008:0607
vendor-advisory
x_refsource_REDHAT
30499
third-party-advisory
x_refsource_SECUNIA
linux-kernel-ipip6rcv-dos(42451)
vdb-entry
x_refsource_XF
30198
third-party-advisory
x_refsource_SECUNIA
DSA-1588
vendor-advisory
x_refsource_DEBIAN
33280
third-party-advisory
x_refsource_SECUNIA
31689
third-party-advisory
x_refsource_SECUNIA
29235
vdb-entry
x_refsource_BID
RHSA-2008:0585
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:6503
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:11038
vdb-entry
signature
x_refsource_OVAL
[linux-kernel] 20080509 Re: When should kfree_skb be used?
mailing-list
x_refsource_MLIST
30241
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:174
vendor-advisory
x_refsource_MANDRIVA
31107
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0973
vendor-advisory
x_refsource_REDHAT
http://support.avaya.com/elmodocs2/security/ASA-2008-362.htm
x_refsource_CONFIRM
RHSA-2008:0612
vendor-advisory
x_refsource_REDHAT
31628
third-party-advisory
x_refsource_SECUNIA
USN-625-1
vendor-advisory
x_refsource_UBUNTU
FEDORA-2008-3949
vendor-advisory
x_refsource_FEDORA
RHSA-2008:0787
vendor-advisory
x_refsource_REDHAT
ADV-2008-1543
vdb-entry
x_refsource_VUPEN
SUSE-SA:2008:030
vendor-advisory
x_refsource_SUSE
30818
third-party-advisory
x_refsource_SECUNIA
33201
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2008:032
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now