CVE-2005-3848 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2005-3848
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-3848

Description: Memory leak in the icmp_push_reply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted packets that cause the ip_append_data function to fail, aka "DST leak in icmp_push_reply."

CVE Status: Candidate

References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-231-1 SUSE http://lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html SAID Secunia Advisory: SA19038 Secunia Advisory: SA18562 Secunia Advisory: SA18510 Secunia Advisory: SA18203 Secunia Advisory: SA19374 Secunia Advisory: SA19369 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0140.html http://www.redhat.com/support/errata/RHSA-2006-0101.html MLIST http://marc.theaimsgroup.com/?l=linux-kernel&m=112439084918917&w=2 http://marc.theaimsgroup.com/?l=linux-kernel&m=112508479212728&w=2 http://marc.theaimsgroup.com/?l=linux-kernel&m=112431016816937&w=2 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:072 DEBIAN http://www.debian.org/security/2006/dsa-1018 http://www.debian.org/security/2006/dsa-1017 CONFIRM http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=cb94c62c252796f42bb83fe40960d12f3ea5a82a http://www.kernel.org/git/?p=linux/kernel/git/chrisw/stable-queue.git;a=blob;h=1cf41a8a8db3080c9a9243e77c5c447c8e694f87;hb=9c5fcb99af7c157be45e9d53aeb857ded5211fcd;f=2.6.12.6/fix-dst-leak-in-icmp_push_reply.patch BID 16044

Return to the previous page.