CVE-2005-4635
Published: 31 December 2005
The nl_fib_input function in fib_frontend.c in the Linux kernel before 2.6.15 does not check for valid lengths of the header and payload, which allows remote attackers to cause a denial of service (invalid memory reference) via malformed fib_lookup netlink messages.
Priority
Status
Package | Release | Status |
---|---|---|
linux-source-2.6.12 Launchpad, Ubuntu, Debian |
upstream |
Needs triage
|