CVE-2010-0006
6.3 Medium
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.015 Low
EPSS
Percentile
86.5%
The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.32.4, when network namespaces are enabled, allows remote attackers to cause a denial of service (NULL pointer dereference) via an invalid IPv6 jumbogram, a related issue to CVE-2007-4567.
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux:linux_kernel | linux linux kernel | lt | 2.6.32.4 |
References
bugs.gentoo.org/show_bug.cgi?id=300951
cert.fi/en/reports/2010/vulnerability341748.html
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2570a4f5428bcdb1077622342181755741e7fa60
lists.fedoraproject.org/pipermail/package-announce/2010-January/034250.html
lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html
marc.info/?l=linux-netdev&m=126343325807340&w=2
secunia.com/advisories/38168
secunia.com/advisories/38333
security-tracker.debian.org/tracker/CVE-2010-0006
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.4
www.openwall.com/lists/oss-security/2010/01/14/2
www.osvdb.org/61876
www.securityfocus.com/bid/37810
bugzilla.redhat.com/show_bug.cgi?id=555217
Social References
More
Related
6.3 Medium
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.015 Low
EPSS
Percentile
86.5%