Accepting overlapping fragmented ipv6 packets can lead to OS fingerprinting, IDS/IPS insertion/evasion, firewall evasion. Following this email, there are two patches that fix this issue on Lucid and on Hardy. -- Luis