Debian Security Advisory DSA 492-1 (iproute)

The remote host is missing an update to iproute announced via advisory DSA 492-1. OpenVAS Vulnerability Test $Id: deb4921.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 492-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian DSA-492-1 : iproute - denial of service

Herbert Xu reported that local users could cause a denial of service against iproute, a set of tools for controlling networking in Linux kernels. iproute uses the netlink interface to communicate with the kernel, but failed to verify that the messages it received came from the kernel rather than...

Fedora Core 1 : iproute-2.4.7-13.2 (2004-115)

This update of the iproute package fixes a security problem found in netlink. See CVE-2003-0856. All users of the netlink application are very strongly advised to update to these latest packages. - Thu May 06 2004 Phil Knirsch 2.4.7-13.2 - Built security errata version for FC1. - Wed Apr 21 2004...

CVE-2003-0856

...

CVE-2003-0856

CVE-2003-0856 affects iproute up to version 2.4.7, where local users could trigger a denial of service by sending spoofed messages through the kernel netlink interface. The issue is a local-privilege-path denial of service caused by unverified netlink messages. Public advisories (Debian DSA-492, ...

CVE-2003-0856

iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface...