4 matches found
kernel: ipv6: make fragment identifications less predictable
The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service disrupted networking by predicting these values and sending crafted packets...
RHEL 6 : kernel (RHSA-2011:1465)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1465 advisory. - kernel: tpm: infoleak CVE-2011-1162 - kernel: corrupted GUID partition tables can cause kernel oops CVE-2011-1577 - kernel: taskstats io...
kernel: ipv6: make fragment identifications less predictable
The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial of service disrupted networking by predicting these values and sending crafted packets...
kernel: net: improve sequence number generation
The 1 IPv4 and 2 IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service disrupted networking or hijack network sessions by predicting...