IPv6 RH0 Vulnerability
Bug #114530 reported by
Bernhard Schmidt
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux-source-2.6.20 (Ubuntu) |
Fix Released
|
High
|
Ubuntu Kernel Team |
Bug Description
Most IPv6 stacks (including the Linux kernel with forwarding enabled) accept IPv6 Routing Header Type 0 packets. Those packets work like IPv4 source routing and are an attack vector for DoS attacks and circumventing firewalls.
http://
This bug is considered a security vulnerability and has been fixed in every other affected OS and also Linux upstream in Kernel 2.6.20.9
http://
Please apply that patch to the Ubuntu kernel packages.
CVE References
To post a comment you must log in.
Thanks for the report. Note that this fix is also needed:
http:// git.kernel. org/?p= linux/kernel/ git/stable/ linux-2. 6.20.y. git;a=commit; h=9d08f13927545 0f9366d85ba09b9 a2e09bb33766