CVE-2007-6282
CVE-2007-6282
The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.htmlhttp://marc.info/?l=linux-netdev&m=120372380411259&w=2https://bugzilla.redhat.com/show_bug.cgi?id=404291http://secunia.com/advisories/30112http://secunia.com/advisories/30294http://secunia.com/advisories/30818http://secunia.com/advisories/30890http://secunia.com/advisories/30962http://secunia.com/advisories/31107http://secunia.com/advisories/31551