CVE-2006-3121 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-3121
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-3121

Description: The peel_netstring function in cl_netstring.c in the heartbeat subsystem in High-Availability Linux before 1.2.5, and 2.0 before 2.0.7, allows remote attackers to cause a denial of service (crash) via the length parameter in a heartbeat message.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/28396 UBUNTU http://www.ubuntu.com/usn/usn-335-1 SAID Secunia Advisory: SA21505 Secunia Advisory: SA21511 Secunia Advisory: SA21518 Secunia Advisory: SA21521 Secunia Advisory: SA21629 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:142 GENTOO http://security.gentoo.org/glsa/glsa-200608-23.xml DEBIAN http://www.debian.org/security/2006/dsa-1151 CONFIRM http://www.linux-ha.org/_cache/SecurityIssues__sec03.txt http://www.linux-ha.org/SecurityIssues BID 19516

Return to the previous page.