CVE - CVE-2007-6282

CVE-ID
CVE-2007-6282	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MLIST:[linux-netdev] 20080222 [Patch] Crash (BUG()) when handling fragmented ESP packets URL:http://marc.info/?l=linux-netdev&m=120372380411259&w=2 MISC:https://bugzilla.redhat.com/show_bug.cgi?id=404291 DEBIAN:DSA-1630 URL:http://www.debian.org/security/2008/dsa-1630 REDHAT:RHSA-2008:0237 URL:http://www.redhat.com/support/errata/RHSA-2008-0237.html REDHAT:RHSA-2008:0275 URL:http://www.redhat.com/support/errata/RHSA-2008-0275.html REDHAT:RHSA-2008:0585 URL:http://www.redhat.com/support/errata/RHSA-2008-0585.html SUSE:SUSE-SA:2008:030 URL:http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html SUSE:SUSE-SA:2008:031 URL:http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.html SUSE:SUSE-SA:2008:032 URL:http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html UBUNTU:USN-625-1 URL:http://www.ubuntu.com/usn/usn-625-1 BID:29081 URL:http://www.securityfocus.com/bid/29081 OVAL:oval:org.mitre.oval:def:10549 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10549 SECUNIA:30294 URL:http://secunia.com/advisories/30294 SECUNIA:30818 URL:http://secunia.com/advisories/30818 SECUNIA:30890 URL:http://secunia.com/advisories/30890 SECUNIA:30962 URL:http://secunia.com/advisories/30962 SECUNIA:31107 URL:http://secunia.com/advisories/31107 SECUNIA:31628 URL:http://secunia.com/advisories/31628 SECUNIA:31551 URL:http://secunia.com/advisories/31551 SECUNIA:30112 URL:http://secunia.com/advisories/30112 XF:linux-kernel-esp-dos(42276) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/42276
Assigning CNA
N/A
Date Entry Created
20071210	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20071210)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org