Release date:
Updated on:
Affected Systems:
Linux kernel 2.6.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 48802
Cve id: CVE-2011-2699
Linux Kernel is the Kernel of the Linux operating system.
Linux Kernel has a remote denial of service vulnerability in the implementation of IPv6 fragment recognition. Remote attackers can exploit this vulnerability to cause denial of service.
IPv6 fragment identification is generated using a single generator. It cannot be upgraded and DoS attacks are allowed.
<* Source: Fernando Gont
Link: http://permalink.gmane.org/gmane.comp.security.oss.general/5526
Http://thread.gmane.org/gmane.linux.network/201773
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Linux
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.kernel.org/