2013-11-23
ALT-BU-2013-1382-1
Branch p6 update bulletin.
Package kernel-image-un-def updated to version 3.4.70-alt0.M60P.1 for branch p6 in task 108923.
Closed vulnerabilities
Published: 2013-11-04
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2013-4348
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
Severity: HIGH (7.1)
References:
- openSUSE-SU-2014:0204
- openSUSE-SU-2014:0204
- RHSA-2013:1490
- RHSA-2013:1490
- USN-2070-1
- USN-2070-1
- USN-2075-1
- USN-2075-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1007939
- https://bugzilla.redhat.com/show_bug.cgi?id=1007939
- https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=6f092343855a71e03b8d209815d8c45bf3a27fcd
- https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=6f092343855a71e03b8d209815d8c45bf3a27fcd