CVE-2007-1861

Name of the Vulnerable Software and Affected Versions linux-image-2.6.18-4-486 linux-image-2.6.18-4-686 linux-image-2.6.18-4-686-bigmem linux-image-2.6.18-4-alpha-legacy linux-image-2.6.18-4-alpha-smp linux-image-2.6.18-4-amd64 linux-image-2.6.18-4-footbridge linux-image-2.6.18-4-iop32x linux-image-2.6.18-4-itanium linux-image-2.6.18-4-k7 linux-image-2.6.18-4-mckinley linux-image-2.6.18-4-parisc linux-image-2.6.18-4-parisc64 linux-image-2.6.18-4-parisc64-smp linux-image-2.6.18-4-powerpc linux-image-2.6.18-4-powerpc-miboot linux-image-2.6.18-4-powerpc64 linux-image-2.6.18-4-powerpc-smp linux-image-2.6.18-4-prep linux-image-2.6.18-4-qemu linux-image-2.6.18-4-r3k-kn02 linux-image-2.6.18-4-r4k-ip22 linux-image-2.6.18-4-r4k-kn04 linux-image-2.6.18-4-r5k-cobalt linux-image-2.6.18-4-r5k-ip32 linux-image-2.6.18-4-s3c2410 linux-image-2.6.18-4-s390 linux-image-2.6.18-4-s390-tape linux-image-2.6.18-4-s390x linux-image-2.6.18-4-sparc32 linux-image-2.6.18-4-sparc64 linux-image-2.6.18-4-sparc64-smp linux-image-2.6.18-4-vserver-686 linux-image-2.6.18-4-vserver-alpha linux-image-2.6.18-4-vserver-amd64 linux-image-2.6.18-4-vserver-k7 linux-image-2.6.18-4-vserver-powerpc linux-image-2.6.18-4-vserver-powerpc64 linux-image-2.6.18-4-vserver-s390x linux-image-2.6.18-4-vserver-sparc64 linux-image-2.6.18-4-xen-686 linux-image-2.6.18-4-xen-amd64 linux-image-2.6.18-4-xen-vserver-686 linux-image-2.6.18-4-xen-vserver-amd64 linux-headers-2.6.18-4-686 linux-headers-2.6.18-4-686-bigmem linux-headers-2.6.18-4-alpha-legacy linux-headers-2.6.18-4-alpha-smp linux-headers-2.6.18-4-amd64 linux-headers-2.6.18-4-footbridge linux-headers-2.6.18-4-iop32x linux-headers-2.6.18-4-itanium linux-headers-2.6.18-4-k7 linux-headers-2.6.18-4-mckinley linux-headers-2.6.18-4-parisc linux-headers-2.6.18-4-parisc64 linux-headers-2.6.18-4-parisc64-smp linux-headers-2.6.18-4-parisc-smp linux-headers-2.6.18-4-powerpc linux-headers-2.6.18-4-powerpc64 linux-headers-2.6.18-4-powerpc-miboot linux-headers-2.6.18-4-powerpc-smp linux-headers-2.6.18-4-prep linux-headers-2.6.18-4-qemu linux-headers-2.6.18-4-r3k-kn02 linux-headers-2.6.18-4-r4k-ip22 linux-headers-2.6.18-4-r4k-kn04 linux-headers-2.6.18-4-r5k-cobalt linux-headers-2.6.18-4-r5k-ip32 linux-headers-2.6.18-4-s3c2410 linux-headers-2.6.18-4-s390 linux-headers-2.6.18-4-s390x linux-headers-2.6.18-4-sb1a-bcm91480b linux-headers-2.6.18-4-sparc32 linux-headers-2.6.18-4-sparc64 linux-headers-2.6.18-4-sparc64-smp linux-headers-2.6.18-4-vserver linux-headers-2.6.18-4-vserver-686 linux-headers-2.6.18-4-vserver-alpha linux-headers-2.6.18-4-vserver-amd64 linux-headers-2.6.18-4-vserver-k7 linux-headers-2.6.18-4-vserver-powerpc linux-headers-2.6.18-4-vserver-powerpc64 linux-headers-2.6.18-4-vserver-s390x linux-headers-2.6.18-4-vserver-sparc64 linux-headers-2.6.18-4-xen linux-headers-2.6.18-4-xen-686 linux-headers-2.6.18-4-xen-amd64 linux-headers-2.6.18-4-xen-vserver linux-headers-2.6.18-4-xen-vserver-686 linux-headers-2.6.18-4-xen-vserver-amd64 linux-modules-2.6.18-4-xen-686 linux-modules-2.6.18-4-xen-amd64 linux-modules-2.6.18-4-xen-vserver-686 linux-modules-2.6.18-4-xen-vserver-amd64 linux-support-2.6.18-4

Description The issue is related to multiple vulnerabilities in the Linux kernel, specifically in the Debian GNU/Linux operating system. These vulnerabilities can be exploited remotely, potentially leading to a breach of confidentiality of protected information. The nl fib lookup function in net/ipv4/fib frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service (kernel panic) via NETLINK FIB LOOKUP replies, which trigger infinite recursion and a stack overflow.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.