Lucene search
RootSSV:4214HistoryAug 17, 2006 - 12:00 a.m.
Linux Kernel IP6_Input_Finish远程拒绝服务漏洞
2006-08-1700:00:00
Root
www.seebug.org
25
0.055 Low
EPSS
Percentile
92.4%
BUGTRAQ ID: 16043
CVE(CAN) ID: CVE-2005-3858
Linux Kernel是开放源码操作系统Linux所使用的内核。
Linux Kernel的ip6_input_finish()函数中存在内存泄露漏洞,远程攻击者可能利用此漏洞对服务器进行拒绝服务攻击。
远程攻击者可以发送特制的IPv6报文导致耗尽所有可用的Kernel内存,造成拒绝服务。
Linux kernel <= 2.6.12.5
Linux
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
- Linux Upgrade linux-2.6.12.6.tar.bz2
<a href=“http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.12.6.tar.bz2” target=“_blank”>http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.12.6.tar.bz2</a>
RedHat
RedHat已经为此发布了一个安全公告(RHSA-2006:0101-01)以及相应补丁:
RHSA-2006:0101-01:Important: kernel security update
链接:<a href=“http://lwn.net/Alerts/168077/?format=printable” target=“_blank”>http://lwn.net/Alerts/168077/?format=printable</a>
Related
cve
cve
CVE-2005-3858
2005-11-27 22:03:00
ubuntucve
ubuntucve
CVE-2005-3858
2005-11-27 00:00:00
openvas
openvas
SLES9: Security update for Linux kernel
2009-10-10 00:00:00
SLES9: Security update for Linux kernel
2009-10-10 00:00:00
Debian Security Advisory DSA 1018-2 (kernel-source-2.4.27)
2008-01-17 00:00:00
suse
suse
various security problems in kernel
2006-02-27 14:26:20
nessus
nessus
Ubuntu 4.10 / 5.04 / 5.10 : linux-source-2.6.8.1/-2.6.10/-2.6.12 vulnerabilities (USN-231-1)
2006-01-21 00:00:00
CentOS 3 : kernel (CESA-2006:0140)
2006-07-03 00:00:00
RHEL 3 : kernel (RHSA-2006:0140)
2006-01-20 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2005-12-23 00:00:00
redhat
redhat
(RHSA-2006:0140) kernel security update
2006-01-19 00:00:00
(RHSA-2006:0101) kernel security update
2006-01-17 00:00:00
centos
centos
kernel security update
2006-01-19 22:25:06
kernel security update
2006-01-18 00:05:51
debian
debian
osv
osv
kernel-source-2.4.27 - several
2006-03-24 00:00:00
kernel-source-2.6.8 - several
2006-03-23 00:00:00