Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2934

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-2934
Last Modified 19 Mar 2012 12:00:00
Published 30 Jun 2006 05:05:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2934

Summary

SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux kernel 2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to cause a denial of service (crash) via a packet without any chunks, which causes a variable to contain an invalid value that is later used to dereference a pointer.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.16

  • Linux Kernel 2.6.16.1

  • Linux Kernel 2.6.16.10

  • Linux Kernel 2.6.16.11

  • Linux Kernel 2.6.16.12

  • Linux Kernel 2.6.16.13

  • Linux Kernel 2.6.16.14

  • Linux Kernel 2.6.16.15

  • Linux Kernel 2.6.16.16

  • Linux Kernel 2.6.16.17

  • Linux Kernel 2.6.16.18

  • Linux Kernel 2.6.16.19

  • Linux Kernel 2.6.16.2

  • Linux Kernel 2.6.16.20

  • Linux Kernel 2.6.16.21

  • Linux Kernel 2.6.16.22

  • Linux Kernel 2.6.17

  • Linux Kernel 2.6.17.1

  • Linux Kernel 2.6.17.2


References

CERT-VN - VU#717844

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=197387

CONFIRM - http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.17.y.git;a=commit;h=9c48e1ea8cf8800cc5e2d39ccbb8b5ff9704f8e9

CONFIRM - https://issues.rpath.com/browse/RPL-488

VUPEN - ADV-2006-2623

UBUNTU - USN-346-1

UBUNTU - USN-331-1

BID - 18755

BUGTRAQ - 20060707 rPSA-2006-0122-1 kernel

BUGTRAQ - 20060710 Re: rPSA-2006-0122-1 kernel

REDHAT - RHSA-2006:0575

OSVDB - 26963

SUSE - SUSE-SA:2006:047

SUSE - SUSE-SA:2006:042

MANDRIVA - MDKSA-2006:151

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.17.3

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.23

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-200.htm

SECUNIA - 22417

SECUNIA - 21934

SECUNIA - 21614

SECUNIA - 21498

SECUNIA - 21465

SECUNIA - 21298

SECUNIA - 21179

SECUNIA - 20986

SECUNIA - 20917


Last Updated: 27 May 2016 10:57:29