Patrick Mchardy

**Name of the Vulnerable Software and Affected Versions** go-ethereum (geth) versions prior to 1.12.1-stable **Description** A vulnerable node can be made to consume unbounded amounts of memory when handling specially crafted p2p messages sent from an attacker node. This occurs because the p2p handler spawns a new goroutine to respond to `ping` requests, and by flooding a node with ping requests, an unbounded number of goroutines can be created, leading to resource exhaustion and potentially crash due to OOM. **Recommendations** For go-ethereum (geth) versions prior to 1.12.1-stable, upgrade to version 1.12.1-stable or later, such as 1.12.2-unstable and onwards, to resolve the issue. As a temporary workaround, consider restricting access to the p2p handler to minimize the risk of exploitation. There are no known workarounds for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Debian GNU/Linux kernel-image versions prior to 2.6.8-3 Debian GNU/Linux kernel-headers versions prior to 2.6.8-3 Debian GNU/Linux kernel-pcmcia-modules versions prior to 2.6.8-3 Debian GNU/Linux kernel-build versions prior to 2.6.8-3 Debian GNU/Linux lm-sensors versions prior to 2.4.27-3 Debian GNU/Linux i2c versions prior to 2.4.27-3 Debian GNU/Linux hostap-modules versions prior to 2.6.8-3 Debian GNU/Linux pcmcia-modules versions prior to 2.4.27-3 **Description** The vulnerability is related to multiple issues in the Debian GNU/Linux operating system, including the kernel, lm-sensors, and other packages. Exploitation of these vulnerabilities can lead to a denial of service, allowing attackers to cause a disruption in the availability of protected information. The vulnerabilities can be exploited remotely. **Recommendations** For kernel-image versions prior to 2.6.8-3, update to version 2.6.8-3 or later. For kernel-headers versions prior to 2.6.8-3, update to version 2.6.8-3 or later. For kernel-pcmcia-modules versions prior to 2.6.8-3, update to version 2.6.8-3 or later. For kernel-build versions prior to 2.6.8-3, update to version 2.6.8-3 or later. For lm-sensors versions prior to 2.4.27-3, update to version 2.4.27-3 or later. For i2c versions prior to 2.4.27-3, update to version 2.4.27-3 or later. For hostap-modules versions prior to 2.6.8-3, update to version 2.6.8-3 or later. For pcmcia-modules versions prior to 2.4.27-3, update to version 2.4.27-3 or later.

**Name of the Vulnerable Software and Affected Versions** openSUSE (affected versions not specified) **Description** The issue involves multiple vulnerabilities in various packages of the openSUSE operating system, which can lead to disruptions in confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SUSE Linux Enterprise (affected versions not specified) **Description** The issue affects the confidentiality, integrity, and availability of protected information. It can be exploited locally, potentially leading to a denial of service (system crash) via the `/proc/net/route` endpoint. The `fib seq start` function in `fib hash.c` is involved in this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** linux-image-2.6.18-4-sparc64-smp version 2.6.18-4 linux-image-2.6.18-4-vserver-686 version 2.6.18-4 linux-image-2.6.18-4-sb1a-bcm91480b version 2.6.18-4 linux-headers-2.6.18-4-s390x version 2.6.18-4 linux-headers-2.6.18-4-sparc64-smp version 2.6.18-4 linux-support-2.6.18-4 version 2.6.18-4 linux-image-2.6.18-4-r4k-kn04 version 2.6.18-4 linux-headers-2.6.18-4-parisc64-smp version 2.6.18-4 linux-image-2.6.18-4-qemu version 2.6.18-4 linux-image-2.6.18-4-r5k-ip32 version 2.6.18-4 linux-image-2.6.18-4-686 version 2.6.18-4 linux-headers-2.6.18-4-sb1a-bcm91480b version 2.6.18-4 linux-headers-2.6.18-4-xen-amd64 version 2.6.18-4 linux-image-2.6.18-4-s3c2410 version 2.6.18-4 linux-image-2.6.18-4-vserver-amd64 version 2.6.18-4 linux-headers-2.6.18-4-all-i386 version 2.6.18-4 linux-image-2.6.18-4-r5k-cobalt version 2.6.18-4 linux-image-2.6.18-4-mckinley version 2.6.18-4 linux-image-2.6.18-4-ixp4xx version 2.6.18-4 linux-image-2.6.18-4-xen-vserver-686 version 2.6.18-4 linux-headers-2.6.18-4-all version 2.6.18-4 linux-headers-2.6.18-4-s3c2410 version 2.6.18-4 linux-headers-2.6.18-4-all-hppa version 2.6.18-4 linux-headers-2.6.18-4-alpha-legacy version 2.6.18-4 linux-image-2.6.18-4-r4k-ip22 version 2.6.18-4 linux-headers-2.6.18-4-sparc32 version 2.6.18-4 linux-headers-2.6.18-4-rpc version 2.6.18-4 linux-headers-2.6.18-4-footbridge version 2.6.18-4 linux-headers-2.6.18-4-parisc-smp version 2.6.18-4 linux-headers-2.6.18-4-all-powerpc version 2.6.18-4 linux-headers-2.6.18-4-powerpc version 2.6.18-4 linux-image-2.6.18-4-parisc64 version 2.6.18-4 linux-image-2.6.18-4-vserver-powerpc version 2.6.18-4 linux-image-2.6.18-4-486 version 2.6.18-4 linux-image-2.6.18-4-vserver-s390x version 2.6.18-4 linux-headers-2.6.18-4-xen-vserver-686 version 2.6.18-4 linux-headers-2.6.18-4-parisc64 version 2.6.18-4 linux-image-2.6.18-4-xen-amd64 version 2.6.18-4 linux-image-2.6.18-4-sparc64 version 2.6.18-4 linux-headers-2.6.18-4-vserver-s390x version 2.6.18-4 linux-image-2.6.18-4-parisc-smp version 2.6.18-4 linux-modules-2.6.18-4-xen-amd64 version 2.6.18-4 linux-image-2.6.18-4-xen-686 version 2.6.18-4 linux-headers-2.6.18-4-parisc version 2.6.18-4 linux-headers-2.6.18-4-all-arm version 2.6.18-4 linux-image-2.6.18-4-alpha-smp version 2.6.18-4 linux-headers-2.6.18-4-powerpc64 version 2.6.18-4 linux-headers-2.6.18-4-amd64 version 2.6.18-4 linux-image-2.6.18-4-powerpc-smp version 2.6.18-4 linux-modules-2.6.18-4-xen-686 version 2.6.18-4 linux-headers-2.6.18-4-alpha-smp version 2.6.18-4 linux-image-2.6.18-4-686-bigmem version 2.6.18-4 linux-headers-2.6.18-4-k7 version 2.6.18-4 linux-image-2.6.18-4-sparc32 version 2.6.18-4 linux-headers-2.6.18-4-xen-vserver version 2.6.18-4 linux-headers-2.6.18-4-686 version 2.6.18-4 linux-headers-2.6.18-4-prep version 2.6.18-4 linux-headers-2.6.18-4-powerpc-miboot version 2.6.18-4 linux-image-2.6.18-4-s390-tape version 2.6.18-4 linux-image-2.6.18-4-vserver-k7 version 2.6.18-4 linux-modules-2.6.18-4-xen-vserver-686 version 2.6.18-4 linux-headers-2.6.18-4-xen version 2.6.18-4 linux-headers-2.6.18-4-all-amd64 version 2.6.18-4 linux-headers-2.6.18-4-vserver-sparc64 version 2.6.18-4 linux-headers-2.6.18-4-vserver-amd64 version 2.6.18-4 linux-image-2.6.18-4-itanium version 2.6.18-4 linux-image-2.6.18-4-vserver-sparc64 version 2.6.18-4 linux-image-2.6.18-4-rpc version 2.6.18-4 linux-headers-2.6.18-4-vserver-alpha version 2.6.18-4 linux-headers-2.6.18-4-mckinley version 2.6.18-4 linux-headers-2.6.18-4-powerpc-smp version 2.6.18-4 linux-headers-2.6.18-4-vserver-powerpc version 2.6.18-4 linux-image-2.6.18-4-s390x version 2.6.18-4 linux-image-2.6.18-4-vserver-powerpc64 version 2.6.18-4 linux-headers-2.6.18-4-all-sparc version 2.6.18-4 linux-headers-2.6.18-4-all-s390 version 2.6.18-4 linux-image-2.6.18-4-prep version 2.6.18-4 linux-image-2.6.18-4-alpha-legacy version 2.6.18-4 linux-headers-2.6.18-4-xen-686 version 2.6.18-4 linux-headers-2.6.18-4-sb1-bcm91250a version 2.6.18-4 linux-image-2.6.18-4-powerpc64 version 2.6.18-4 linux-image-2.6.18-4-amd64 version 2.6.18-4 linux-headers-2.6.18-4-all-alpha version 2.6.18-4 linux-image-2.6.18-4-parisc version 2.6.18-4 linux-image-2.6.18-4-sb1-bcm91250a version 2.6.18-4 linux-image-2.6.18-4-r3k-kn02 version 2.6.18-4 linux-headers-2.6.18-4-alpha-generic version 2.6.18-4 linux-headers-2.6.18-4-sparc64 version 2.6.18-4 linux-image-2.6.18-4-powerpc-miboot version 2.6.18-4 linux-headers-2.6.18-4-vserver-k7 version 2.6.18-4 linux-headers-2.6.18-4-r4k-kn04 version 2.6.18-4 linux-headers-2.6.18-4-qemu version 2.6.18-4 linux-image-2.6.18-4-footbridge version 2.6.18-4 linux-image-2.6.18-4-powerpc version 2.6.18-4 linux-headers-2.6.18-4-r5k-ip32 version 2.6.18-4 linux-image-2.6.18-4-vserver-alpha version 2.6.18-4 linux-headers-2.6.18-4-r4k-ip22 version 2.6.18-4 linux-image-2.6.18-4-parisc64-smp version 2.6.18-4 linux-headers-2.6.18-4-all-mips version 2.6.18-4 linux-headers-2.6.18-4-all-mipsel version 2.6.18-4 linux-headers-2.6.18-4-iop32x version 2.6.18-4 linux-headers-2.6.18-4-r3k-kn02 version 2.6.18-4 linux-headers-2.6.18-4-vserver-powerpc64 version 2.6.18-4 linux-headers-2.6.18-4-itanium version 2.6.18-4 linux-image-2.6.18-4-alpha-generic version 2.6.18-4 **Description** The issue is related to multiple vulnerabilities in the Linux kernel, specifically in the nf conntrack module, which may allow remote attackers to bypass certain rulesets using IPv6 fragments. The vulnerabilities can be exploited remotely and may lead to a breach of confidentiality of protected information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.