SUSE CVE-2006-4572
ip6tables in netfilter in the Linux kernel before 2.6.16.31 allows remote attackers to 1 bypass a rule that disallows a protocol, via a packet with the protocol header not located immediately after the fragment header, aka "ip6tables protocol bypass bug;" and 2 bypass a rule that looks for a...