5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
“jann” discovered that in certain configurations, if the relevant
conntrack kernel module is not loaded, conntrackd will crash when
handling DCCP, SCTP or ICMPv6 packets. In the version found in Debian
6.0 squeeze, this vulnerability only applies to ICMPv6.
For the oldoldstable distribution (squeeze), this problem has been
fixed in version 1:0.9.14-2+deb6u1.
For the oldstable distribution (wheezy) and stable distribution
(jessie), this problem will be fixed soon.
CPE | Name | Operator | Version |
---|---|---|---|
conntrack | eq | 1:0.9.14-2 |