CVE-2014-2309

2014-03-1100:00:00

ubuntu.com

6.1 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

0.015 Low

EPSS

Percentile

86.9%

JSON

The ip6_route_add function in net/ipv6/route.c in the Linux kernel through
3.13.6 does not properly count the addition of routes, which allows remote
attackers to cause a denial of service (memory consumption) via a flood of
ICMPv6 Router Advertisement packets.

Bugs

<https://launchpad.net/bugs/1293726>

Notes

Author	Note
jdstrand	android kernels (goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 13.10 preview kernels
apw	This is the patch with the following title: “ipv6: don’t set DST_NOCOUNT for remotely added routes”

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlinux< 3.2.0-63.95UNKNOWN
ubuntu13.10noarchlinux< 3.11.0-22.38UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1633.47UNKNOWN
ubuntu12.04noarchlinux-lts-quantal< 3.5.0-51.76~precise1UNKNOWN
ubuntu12.04noarchlinux-lts-raring< 3.8.0-41.60~precise1UNKNOWN
ubuntu12.04noarchlinux-lts-saucy< 3.11.0-22.38~precise1UNKNOWN
ubuntu12.04noarchlinux-ti-omap4< 3.2.0-1446.65UNKNOWN
ubuntu13.10noarchlinux-ti-omap4< 3.5.0-242.58UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	12.04	noarch	linux	< 3.2.0-63.95	UNKNOWN
ubuntu	13.10	noarch	linux	< 3.11.0-22.38	UNKNOWN
ubuntu	12.04	noarch	linux-armadaxp	< 3.2.0-1633.47	UNKNOWN
ubuntu	12.04	noarch	linux-lts-quantal	< 3.5.0-51.76~precise1	UNKNOWN
ubuntu	12.04	noarch	linux-lts-raring	< 3.8.0-41.60~precise1	UNKNOWN
ubuntu	12.04	noarch	linux-lts-saucy	< 3.11.0-22.38~precise1	UNKNOWN
ubuntu	12.04	noarch	linux-ti-omap4	< 3.2.0-1446.65	UNKNOWN
ubuntu	13.10	noarch	linux-ti-omap4	< 3.5.0-242.58	UNKNOWN