PT-2007-7492 · Linux Foundation+1 · Linux+1

Patrick Mchardy

·

Published

1970-01-01

·

Updated

2017-10-11

·

CVE-2007-1497

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions linux-image-2.6.18-4-sparc64-smp version 2.6.18-4 linux-image-2.6.18-4-vserver-686 version 2.6.18-4 linux-image-2.6.18-4-sb1a-bcm91480b version 2.6.18-4 linux-headers-2.6.18-4-s390x version 2.6.18-4 linux-headers-2.6.18-4-sparc64-smp version 2.6.18-4 linux-support-2.6.18-4 version 2.6.18-4 linux-image-2.6.18-4-r4k-kn04 version 2.6.18-4 linux-headers-2.6.18-4-parisc64-smp version 2.6.18-4 linux-image-2.6.18-4-qemu version 2.6.18-4 linux-image-2.6.18-4-r5k-ip32 version 2.6.18-4 linux-image-2.6.18-4-686 version 2.6.18-4 linux-headers-2.6.18-4-sb1a-bcm91480b version 2.6.18-4 linux-headers-2.6.18-4-xen-amd64 version 2.6.18-4 linux-image-2.6.18-4-s3c2410 version 2.6.18-4 linux-image-2.6.18-4-vserver-amd64 version 2.6.18-4 linux-headers-2.6.18-4-all-i386 version 2.6.18-4 linux-image-2.6.18-4-r5k-cobalt version 2.6.18-4 linux-image-2.6.18-4-mckinley version 2.6.18-4 linux-image-2.6.18-4-ixp4xx version 2.6.18-4 linux-image-2.6.18-4-xen-vserver-686 version 2.6.18-4 linux-headers-2.6.18-4-all version 2.6.18-4 linux-headers-2.6.18-4-s3c2410 version 2.6.18-4 linux-headers-2.6.18-4-all-hppa version 2.6.18-4 linux-headers-2.6.18-4-alpha-legacy version 2.6.18-4 linux-image-2.6.18-4-r4k-ip22 version 2.6.18-4 linux-headers-2.6.18-4-sparc32 version 2.6.18-4 linux-headers-2.6.18-4-rpc version 2.6.18-4 linux-headers-2.6.18-4-footbridge version 2.6.18-4 linux-headers-2.6.18-4-parisc-smp version 2.6.18-4 linux-headers-2.6.18-4-all-powerpc version 2.6.18-4 linux-headers-2.6.18-4-powerpc version 2.6.18-4 linux-image-2.6.18-4-parisc64 version 2.6.18-4 linux-image-2.6.18-4-vserver-powerpc version 2.6.18-4 linux-image-2.6.18-4-486 version 2.6.18-4 linux-image-2.6.18-4-vserver-s390x version 2.6.18-4 linux-headers-2.6.18-4-xen-vserver-686 version 2.6.18-4 linux-headers-2.6.18-4-parisc64 version 2.6.18-4 linux-image-2.6.18-4-xen-amd64 version 2.6.18-4 linux-image-2.6.18-4-sparc64 version 2.6.18-4 linux-headers-2.6.18-4-vserver-s390x version 2.6.18-4 linux-image-2.6.18-4-parisc-smp version 2.6.18-4 linux-modules-2.6.18-4-xen-amd64 version 2.6.18-4 linux-image-2.6.18-4-xen-686 version 2.6.18-4 linux-headers-2.6.18-4-parisc version 2.6.18-4 linux-headers-2.6.18-4-all-arm version 2.6.18-4 linux-image-2.6.18-4-alpha-smp version 2.6.18-4 linux-headers-2.6.18-4-powerpc64 version 2.6.18-4 linux-headers-2.6.18-4-amd64 version 2.6.18-4 linux-image-2.6.18-4-powerpc-smp version 2.6.18-4 linux-modules-2.6.18-4-xen-686 version 2.6.18-4 linux-headers-2.6.18-4-alpha-smp version 2.6.18-4 linux-image-2.6.18-4-686-bigmem version 2.6.18-4 linux-headers-2.6.18-4-k7 version 2.6.18-4 linux-image-2.6.18-4-sparc32 version 2.6.18-4 linux-headers-2.6.18-4-xen-vserver version 2.6.18-4 linux-headers-2.6.18-4-686 version 2.6.18-4 linux-headers-2.6.18-4-prep version 2.6.18-4 linux-headers-2.6.18-4-powerpc-miboot version 2.6.18-4 linux-image-2.6.18-4-s390-tape version 2.6.18-4 linux-image-2.6.18-4-vserver-k7 version 2.6.18-4 linux-modules-2.6.18-4-xen-vserver-686 version 2.6.18-4 linux-headers-2.6.18-4-xen version 2.6.18-4 linux-headers-2.6.18-4-all-amd64 version 2.6.18-4 linux-headers-2.6.18-4-vserver-sparc64 version 2.6.18-4 linux-headers-2.6.18-4-vserver-amd64 version 2.6.18-4 linux-image-2.6.18-4-itanium version 2.6.18-4 linux-image-2.6.18-4-vserver-sparc64 version 2.6.18-4 linux-image-2.6.18-4-rpc version 2.6.18-4 linux-headers-2.6.18-4-vserver-alpha version 2.6.18-4 linux-headers-2.6.18-4-mckinley version 2.6.18-4 linux-headers-2.6.18-4-powerpc-smp version 2.6.18-4 linux-headers-2.6.18-4-vserver-powerpc version 2.6.18-4 linux-image-2.6.18-4-s390x version 2.6.18-4 linux-image-2.6.18-4-vserver-powerpc64 version 2.6.18-4 linux-headers-2.6.18-4-all-sparc version 2.6.18-4 linux-headers-2.6.18-4-all-s390 version 2.6.18-4 linux-image-2.6.18-4-prep version 2.6.18-4 linux-image-2.6.18-4-alpha-legacy version 2.6.18-4 linux-headers-2.6.18-4-xen-686 version 2.6.18-4 linux-headers-2.6.18-4-sb1-bcm91250a version 2.6.18-4 linux-image-2.6.18-4-powerpc64 version 2.6.18-4 linux-image-2.6.18-4-amd64 version 2.6.18-4 linux-headers-2.6.18-4-all-alpha version 2.6.18-4 linux-image-2.6.18-4-parisc version 2.6.18-4 linux-image-2.6.18-4-sb1-bcm91250a version 2.6.18-4 linux-image-2.6.18-4-r3k-kn02 version 2.6.18-4 linux-headers-2.6.18-4-alpha-generic version 2.6.18-4 linux-headers-2.6.18-4-sparc64 version 2.6.18-4 linux-image-2.6.18-4-powerpc-miboot version 2.6.18-4 linux-headers-2.6.18-4-vserver-k7 version 2.6.18-4 linux-headers-2.6.18-4-r4k-kn04 version 2.6.18-4 linux-headers-2.6.18-4-qemu version 2.6.18-4 linux-image-2.6.18-4-footbridge version 2.6.18-4 linux-image-2.6.18-4-powerpc version 2.6.18-4 linux-headers-2.6.18-4-r5k-ip32 version 2.6.18-4 linux-image-2.6.18-4-vserver-alpha version 2.6.18-4 linux-headers-2.6.18-4-r4k-ip22 version 2.6.18-4 linux-image-2.6.18-4-parisc64-smp version 2.6.18-4 linux-headers-2.6.18-4-all-mips version 2.6.18-4 linux-headers-2.6.18-4-all-mipsel version 2.6.18-4 linux-headers-2.6.18-4-iop32x version 2.6.18-4 linux-headers-2.6.18-4-r3k-kn02 version 2.6.18-4 linux-headers-2.6.18-4-vserver-powerpc64 version 2.6.18-4 linux-headers-2.6.18-4-itanium version 2.6.18-4 linux-image-2.6.18-4-alpha-generic version 2.6.18-4
Description The issue is related to multiple vulnerabilities in the Linux kernel, specifically in the nf conntrack module, which may allow remote attackers to bypass certain rulesets using IPv6 fragments. The vulnerabilities can be exploited remotely and may lead to a breach of confidentiality of protected information.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

BDU:2015-02412
BDU:2015-02413
BDU:2015-02414
BDU:2015-02415
BDU:2015-02416
BDU:2015-02417
BDU:2015-02418
BDU:2015-02419
BDU:2015-02420
BDU:2015-02421
BDU:2015-02422
BDU:2015-02423
BDU:2015-02424
BDU:2015-02425
BDU:2015-02426
BDU:2015-02427
BDU:2015-02428
BDU:2015-02429
BDU:2015-02430
BDU:2015-02431
BDU:2015-02432
BDU:2015-02433
BDU:2015-02434
BDU:2015-02435
BDU:2015-02436
BDU:2015-02437
BDU:2015-02438
BDU:2015-02439
BDU:2015-02440
BDU:2015-02441
BDU:2015-02442
BDU:2015-02443
BDU:2015-02444
BDU:2015-02445
BDU:2015-02446
BDU:2015-02447
BDU:2015-02448
BDU:2015-02449
BDU:2015-02450
BDU:2015-02451
BDU:2015-02452
BDU:2015-02453
BDU:2015-02454
BDU:2015-02455
BDU:2015-02456
BDU:2015-02457
BDU:2015-02458
BDU:2015-02459
BDU:2015-02460
BDU:2015-02461
BDU:2015-02462
BDU:2015-02463
BDU:2015-02464
BDU:2015-02465
BDU:2015-02466
BDU:2015-02467
BDU:2015-02468
BDU:2015-02469
BDU:2015-02470
BDU:2015-02471
BDU:2015-02472
BDU:2015-02473
BDU:2015-02474
BDU:2015-02475
BDU:2015-02476
BDU:2015-02477
BDU:2015-02478
BDU:2015-02479
BDU:2015-02480
BDU:2015-02481
BDU:2015-02482
BDU:2015-02483
BDU:2015-02484
BDU:2015-02485
BDU:2015-02486
BDU:2015-02487
BDU:2015-02488
BDU:2015-02489
BDU:2015-02490
BDU:2015-02491
BDU:2015-02492
BDU:2015-02493
BDU:2015-02494
BDU:2015-02495
BDU:2015-02496
BDU:2015-02497
BDU:2015-02498
BDU:2015-02499
BDU:2015-02500
BDU:2015-02501
BDU:2015-02502
BDU:2015-02503
BDU:2015-02504
BDU:2015-02505
BDU:2015-02506
BDU:2015-02507
BDU:2015-02508
BDU:2015-02509
BDU:2015-02510
BDU:2015-02511
BDU:2015-02512
BDU:2015-02513
BDU:2015-02514
BDU:2015-02515
BDU:2015-02516
BDU:2015-02517
BDU:2015-02518
BDU:2015-02519
BDU:2015-02520
BDU:2015-02521
BDU:2015-02522
BDU:2015-02523
BDU:2015-02524
BDU:2015-02525
BDU:2015-02526
BDU:2015-02527
BDU:2015-02528
BDU:2015-02529
BDU:2015-02530
BDU:2015-02531
CVE-2007-1497
DSA-1289-1
RHSA-2007:0347
RHSA-2007_0347

Affected Products

Linux
Red Hat