[Bug 114530] IPv6 RH0 Vulnerability
Bernhard Schmidt
berni at birkenwald.de
Mon Jun 4 23:37:18 UTC 2007
You have been subscribed to a public bug:
Most IPv6 stacks (including the Linux kernel with forwarding enabled)
accept IPv6 Routing Header Type 0 packets. Those packets work like IPv4
source routing and are an attack vector for DoS attacks and
circumventing firewalls.
http://www.secdev.org/conf/IPv6_RH_security-csw07.pdf
This bug is considered a security vulnerability and has been fixed in every other affected OS and also Linux upstream in Kernel 2.6.20.9
http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.20.y.git;a=commit;h=010831ab8436dfd9304b203467566fb6b135c24f
Please apply that patch to the Ubuntu kernel packages.
** Affects: linux-meta (Ubuntu)
Importance: Medium
Status: Confirmed
--
IPv6 RH0 Vulnerability
https://bugs.launchpad.net/bugs/114530
More information about the kernel-bugs
mailing list