CVE-2011-1547

Name of the Vulnerable Software and Affected Versions NetBSD versions 4.0, 5.0 through 5.0.2, and 5.1 through 5.1.0

Description The issue is related to multiple stack consumption vulnerabilities in the kernel when IPsec is enabled. This can be exploited by remote attackers via crafted IPv4 or IPv6 packets with nested IPComp headers, potentially leading to a denial of service, memory corruption, and panic, or possibly having other unspecified impacts.

Recommendations For NetBSD version 4.0, update to a newer version to mitigate the risk. For NetBSD versions 5.0 through 5.0.2, update to version 5.0.3 or later. For NetBSD versions 5.1 through 5.1.0, update to version 5.1.1 or later.