** Description changed: - A flaw in the xfrm6_tunnel_rcv() function in the Linux kernel's IPv6 - implementation could lead to a use-after-free or double free flaw in - tunnel6_rcv(). A remote attacker could use this flaw to send specially- - crafted packets to a target system that is using IPv6 and also has the - xfrm6_tunnel kernel module loaded, causing it to crash. + Double free vulnerability in the xfrm6_tunnel_rcv function in + net/ipv6/xfrm6_tunnel.c in the Linux kernel before 2.6.22, when the + xfrm6_tunnel module is enabled, allows remote attackers to cause a + denial of service (panic) via crafted IPv6 packets. Break-Fix: - d0772b70faaf8e9f2013b6c4273d94d5eac8047a
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987564 Title: CVE-2012-1583 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/987564/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
