4 matches found
SUSE CVE-2007-2876
The sctpnew function in 1 ipconntrackprotosctp.c and 2 nfconntrackprotosctp.c in Netfilter in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, allows remote attackers to cause a denial of service by causing certain invalid states that trigger a NULL pointer dereference...
Null pointer dereference
The sctpnew function in 1 ipconntrackprotosctp.c and 2 nfconntrackprotosctp.c in Netfilter in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, allows remote attackers to cause a denial of service by causing certain invalid states that trigger a NULL pointer dereference...
CVE-2007-2876
The sctpnew function in 1 ipconntrackprotosctp.c and 2 nfconntrackprotosctp.c in Netfilter in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, allows remote attackers to cause a denial of service by causing certain invalid states that trigger a NULL pointer dereference...
racoon -- improper certificate handling
Thomas Walpuski noted when OpenSSL would detect an error condition for a peer certificate, racoon mistakenly ignored the error. This could allow five invalid certificate states to properly be used for authentication...