PT-2012-5405 · Linux+3 · Linux Kernel+3

Zhang Zuotao

Published

2012-12-18

Updated

2023-02-13

CVE-2012-4444

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.36

Description The issue allows remote attackers to bypass intended network restrictions via overlapping IPv6 fragments. This is due to a problem in the ip6 frag queue function in net/ipv6/reassembly.c.

Recommendations For versions prior to 2.6.36, update to version 2.6.36 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CESA-2012_1580

CVE-2012-4444

RHSA-2012:1580

RHSA-2012_1580

RHSA-2013:0168

RHSA-2013_0168

SUSE-SU-2013_0856-1

SUSE-SU-2015:0652-1

Affected Products

Centos

Linux Kernel

Red Hat

Suse

PT-2012-5405 · Linux+3 · Linux Kernel+3

CVE-2012-4444

Related Identifiers

Affected Products

References · 16