You are using IPv4 from 216.73.216.28
Main Headlines
New IPv6 Book "IPv6 for All"
Enable project releases Mobility publication
The Choice: IPv4 Exhaustion or Transition to IPv6
Consulintel: logos
 
SEARCH
Are you a...?
> POLICY MAKER
> JOURNALIST
> ISP
> MANAGER
> ENGINEER
> END USER
Keep informed, visit our
> NEWSROOM
Tell us your thoughts
on IPv6 > POLL
Looking for an
IPv6 Task Force? >
Questions? > FAQS
Jump to PROJECTS
Next EVENTS
000 members
036 guests
LOGIN 
Password 
Not member yet?
Get "extras". Register
Search Bar Plug-in
Firefox      IE7
Other News
(Mar 27, 2007)
(Mar 27, 2007)
(Mar 27, 2007)
(Mar 27, 2007)
(Mar 27, 2007)
(Mar 27, 2007)
(Mar 24, 2007)
(Mar 24, 2007)
(Mar 23, 2007)
Linux Kernel "tcp_v6_syn_recv_soc()" IPv6 Sockets Local Denial of Service Vulnerability
Posted by: Jordi on Saturday, March 24, 2007 - 02:12 AM
(213234 Reads) comments? Send this story to a friend Printer friendly page
A vulnerability has been identified in Linux Kernel, which could be exploited by local attackers to cause a denial of service. This issue is due to an error in the "tcp_v6_syn_recv_soc()" [net/ipv6/tcp_ipv6.c] function where the IPv6 flow list (ipv6_fl_socklist) is shared with child sockets, which could be exploited by malicious users to crash an affected system by manipulating listening IPv6 TCP sockets.
Complete info at FrSIRT and SecuObs.