CVE-2010-4563

Published: 02 February 2012

The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping.

Priority

Low

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)
linux-armadaxp
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)
This package is not directly supported by the Ubuntu Security Team
linux-ec2
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)
linux-lts-backport-natty
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)
linux-lts-backport-oneiric
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)
linux-lts-quantal
Launchpad, Ubuntu, Debian
Upstream Does not exist

linux-mvl-dove
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)
linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream Deferred
(referred to security)

Notes

AuthorNote
henrix
no upstream fix yet.
also, RH has rated this issue as having low security impact and is not
planning to address it.
mdeslaur
this is a minor issue, we don't plan on fixing this with a
security update.

References

Bugs