CVE-2006-0454

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.15.3

Description The issue arises when constructing an ICMP response in the icmp send function, which fails to properly handle the failure of the ip options echo function in icmp.c. This allows remote attackers to cause a denial of service (crash) through specific vectors, including the use of record-route and timestamp IP options with the needaddr bit set and a truncated value.

Recommendations For Linux kernel versions prior to 2.6.15.3, update to version 2.6.15.3 or later to resolve the issue.