CVE-2015-6496

Published: Aug 24, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

conntrackd in conntrack-tools 1.4.2 and earlier does not ensure that the optional kernel modules are loaded before using them, which allows remote attackers to cause a denial of service (crash) via a (1) DCCP, (2) SCTP, or (3) ICMPv6 packet.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

FEDORA-2015-5eb2131441

vendor-advisory

x_refsource_FEDORA

[oss-security] 20150817 Re: CVE request: conntrackd denial of service with unusual network traffic

mailing-list

x_refsource_MLIST

https://git.netfilter.org/conntrack-tools/commit/?id=c392c159605956c7bd4a264ab4490e2b2704c0cd

x_refsource_CONFIRM

FEDORA-2015-1aee5e6f0b

vendor-advisory

x_refsource_FEDORA

[oss-security] 20150814 CVE request: conntrackd denial of service with unusual network traffic

mailing-list

x_refsource_MLIST

openSUSE-SU-2015:1688

vendor-advisory

x_refsource_SUSE

http://bugzilla.netfilter.org/show_bug.cgi?id=910

x_refsource_CONFIRM

DSA-3341

vendor-advisory

x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-6496

Description

Affected Products

References