CVE-2007-1497 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-1497
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1497

Description: nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-464-1 SUSE http://www.novell.com/linux/security/advisories/2007_43_kernel.html SAID Secunia Advisory: SA25228 Secunia Advisory: SA24492 Secunia Advisory: SA25288 Secunia Advisory: SA25392 Secunia Advisory: SA25961 Secunia Advisory: SA26620 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0347.html OSVDB 33028 MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:196 http://www.mandriva.com/security/advisories?name=MDKSA-2007:171 DEBIAN http://www.debian.org/security/2007/dsa-1289 CONFIRM http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.3 BID 23976

Return to the previous page.