ALT-PU-2023-4936-1
Package kernel-image-centos updated to version 5.14.0.354-alt1.el9 for branch sisyphus in task 327173.
Closed vulnerabilities
Published: 2023-03-06
BDU:2023-03642
Уязвимость реализации протокола IPv6 ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании
Severity: MEDIUM (5.7)
Vector: AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2023-07-01
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2023-1206
A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95%.
Severity: MEDIUM (5.7)
Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
References:
- https://bugzilla.redhat.com/show_bug.cgi?id=2175903
- https://bugzilla.redhat.com/show_bug.cgi?id=2175903
- [debian-lts-announce] 20231019 [SECURITY] [DLA 3623-1] linux-5.10 security update
- [debian-lts-announce] 20231019 [SECURITY] [DLA 3623-1] linux-5.10 security update
- [debian-lts-announce] 20240111 [SECURITY] [DLA 3710-1] linux security update
- [debian-lts-announce] 20240111 [SECURITY] [DLA 3710-1] linux security update
- https://security.netapp.com/advisory/ntap-20230929-0006/
- https://security.netapp.com/advisory/ntap-20230929-0006/
- DSA-5480
- DSA-5480
- DSA-5492
- DSA-5492