CVE-2013-4348

Published: Nov 4, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

RHSA-2013:1490

vendor-advisory

x_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=1007939

x_refsource_CONFIRM

USN-2070-1

vendor-advisory

x_refsource_UBUNTU

openSUSE-SU-2014:0204

vendor-advisory

x_refsource_SUSE

USN-2075-1

vendor-advisory

x_refsource_UBUNTU

https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=6f092343855a71e03b8d209815d8c45bf3a27fcd

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-4348

Description

Affected Products

References