CVE-2005-4635

Published: 31 December 2005

The nl_fib_input function in fib_frontend.c in the Linux kernel before 2.6.15 does not check for valid lengths of the header and payload, which allows remote attackers to cause a denial of service (invalid memory reference) via malformed fib_lookup netlink messages.

Priority

Status

Package	Release	Status
linux-source-2.6.12 Launchpad, Ubuntu, Debian	upstream	Needs triage

References

https://www.cve.org/CVERecord?id=CVE-2005-4635
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.