Saran Neti

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.13 **Description** The issue is related to the udp6 ufo fragment function in the Linux kernel, which does not properly perform a size comparison before inserting a fragment header when UDP Fragmentation Offload (UFO) is enabled. This allows remote attackers to cause a denial of service (panic) via a large IPv6 UDP packet. **Recommendations** For Linux kernel versions prior to 3.13, update to version 3.13 or later to resolve the issue. As a temporary workaround, consider disabling UDP Fragmentation Offload (UFO) until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Apache Tomcat versions 6.0.0 through 6.0.36 Apache Tomcat versions 7.0.0 through 7.0.29 **Description** The issue allows remote attackers to cause a denial of service by streaming data due to improper handling of chunk extensions in chunked transfer coding. **Recommendations** For Apache Tomcat versions 6.0.0 through 6.0.36, update to version 6.0.37 or later. For Apache Tomcat versions 7.0.0 through 7.0.29, update to version 7.0.30 or later.