CVE-2007-4567

Published: 21 December 2007

The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted IPv6 packet.

Priority

Medium

Status

Package Release Status
linux-source-2.6.15
Launchpad, Ubuntu, Debian
Upstream Needs triage

linux-source-2.6.17
Launchpad, Ubuntu, Debian
Upstream Needs triage

linux-source-2.6.20
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.22.5)
linux-source-2.6.22
Launchpad, Ubuntu, Debian
Upstream Needs triage