CVE-2005-3858
6.1 Medium
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.055 Low
EPSS
Percentile
93.2%
Memory leak in the ip6_input_finish function in ip6_input.c in Linux kernel 2.6.12 and earlier might allow attackers to cause a denial of service via malformed IPv6 packets with unspecified parameter problems, which prevents the SKB from being freed.
References
lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html
marc.info/?l=linux-kernel&m=112508479120081&w=2
marc.info/?l=linux-kernel&m=112533899509033&w=2
secunia.com/advisories/18203
secunia.com/advisories/18510
secunia.com/advisories/18562
secunia.com/advisories/19038
secunia.com/advisories/19369
secunia.com/advisories/19374
www.debian.org/security/2006/dsa-1017
www.debian.org/security/2006/dsa-1018
www.redhat.com/support/errata/RHSA-2006-0101.html
www.redhat.com/support/errata/RHSA-2006-0140.html
www.securityfocus.com/bid/16043
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9396
usn.ubuntu.com/231-1/
Related
6.1 Medium
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.055 Low
EPSS
Percentile
93.2%