CVE-2005-3275

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.4.32-rc1 Linux kernel versions prior to 2.6.13 Debian GNU/Linux kernel-image-2.4.27 versions Debian GNU/Linux kernel-headers-2.4.27 versions Debian GNU/Linux kernel-pcmcia-modules-2.4.27 versions Debian GNU/Linux kernel-patch-2.4.27 versions Debian GNU/Linux kernel-build-2.4.27 versions Debian GNU/Linux kernel-tree-2.4.27 versions Debian GNU/Linux kernel-source-2.4.27 versions SUSE Linux Enterprise k smp4G versions SUSE Linux Enterprise k um versions SUSE Linux Enterprise Intel-v92ham versions

Description The issue is related to multiple vulnerabilities in the Linux kernel, which can lead to a denial of service (memory corruption) by causing two packets for the same protocol to be NATed at the same time. The vulnerabilities can be exploited remotely. The affected packages include various kernel images, headers, pcmcia modules, patches, and builds for different architectures. The vulnerabilities can lead to a disruption of protected information.

Recommendations For Linux kernel versions prior to 2.4.32-rc1, update to version 2.4.32-rc1 or later. For Linux kernel versions prior to 2.6.13, update to version 2.6.13 or later. For Debian GNU/Linux kernel-image-2.4.27 versions, update to a newer version. For Debian GNU/Linux kernel-headers-2.4.27 versions, update to a newer version. For Debian GNU/Linux kernel-pcmcia-modules-2.4.27 versions, update to a newer version. For Debian GNU/Linux kernel-patch-2.4.27 versions, update to a newer version. For Debian GNU/Linux kernel-build-2.4.27 versions, update to a newer version. For Debian GNU/Linux kernel-tree-2.4.27 versions, update to a newer version. For Debian GNU/Linux kernel-source-2.4.27 versions, update to a newer version. For SUSE Linux Enterprise k smp4G versions, update to a newer version. For SUSE Linux Enterprise k um versions, update to a newer version. For SUSE Linux Enterprise Intel-v92ham versions, update to a newer version. As a temporary workaround, consider disabling the NAT functionality until a patch is available. Restrict access to the vulnerable kernel modules to minimize the risk of exploitation. Avoid using the affected kernel versions until the issue is resolved.