oss-sec mailing list archives

CVE request: Linux panic on fragemented IPv6 traffic (icmp6_send)

From: Florian Pritz <bluewind () xinu at>
Date: Thu, 8 Dec 2016 16:21:26 +0100

Hi,

The linux kernel contains a bug where a fragmented IPv6 packet causes a
panic after a timeout (seems to be roughly 60 seconds). This can be
triggered remotely via the internet and results in a DoS (kernel panic).

Details: https://bugzilla.kernel.org/show_bug.cgi?id=189851

This is fixed by commit 79dc7e3f1cd323be4c81aa1a94faa1b3ed987fb2
Author: David Ahern <dsa () cumulusnetworks com>
Date:   Sun Nov 27 18:52:53 2016 -0800

    net: handle no dst on skb in icmp6_send

Reference:
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=79dc7e3f1cd323be4c81aa1a94faa1b3ed987fb2

Can a CVE be assigned to this issue?

Florian

Attachment: signature.asc
Description: OpenPGP digital signature

Current thread:

CVE request: Linux panic on fragemented IPv6 traffic (icmp6_send) Florian Pritz (Dec 08)
- Re: CVE request: Linux panic on fragemented IPv6 traffic (icmp6_send) cve-assign (Dec 08)