CVE-2006-0454

Severity

50%

Complexity

99%

Confidentiality

48%

Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmp_send, does not properly handle when the ip_options_echo function in icmp.c fails, which allows remote attackers to cause a denial of service (crash) via vectors such as (1) record-route and (2) timestamp IP options with the needaddr bit set and a truncated value.

Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmp_send, does not properly handle when the ip_options_echo function in icmp.c fails, which allows remote attackers to cause a denial of service (crash) via vectors such as (1) record-route and (2) timestamp IP options with the needaddr bit set and a truncated value.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

Type

Linux Kernel

First reported 19 years ago

2006-02-07 18:06:00

Last updated 6 years ago

2018-10-19 15:44:00

Affected Software

Linux Kernel 2.6.12

2.6.12

Linux Kernel 2.6.12 Release Candidate 1

2.6.12

Linux Kernel 2.6.12 Release Candidate 2

2.6.12

Linux Kernel 2.6.12 Release Candidate 3

2.6.12

Linux Kernel 2.6.12 Release Candidate 4

2.6.12

Linux Kernel 2.6.12 Release Candidate 5

2.6.12

Linux Kernel 2.6.12 Release Candidate 6

2.6.12

Linux Kernel 2.6.12.1

2.6.12.1

Linux Kernel 2.6.12.2

2.6.12.2

Linux Kernel 2.6.12.3

2.6.12.3

Linux Kernel 2.6.12.4

2.6.12.4

Linux Kernel 2.6.12.5

2.6.12.5

Linux Kernel 2.6.12.6

2.6.12.6

Linux Kernel 2.6.13

2.6.13

Linux Kernel 2.6.13 Release Candidate 1

2.6.13

Linux Kernel 2.6.13 Release Candidate 2

2.6.13

Linux Kernel 2.6.13 Release Candidate 3

2.6.13

Linux Kernel 2.6.13 Release Candidate 4

2.6.13

Linux Kernel 2.6.13 Release Candidate 5

2.6.13

Linux Kernel 2.6.13 Release Candidate 6

2.6.13

Linux Kernel 2.6.13 Release Candidate 7

2.6.13

Linux Kernel 2.6.13.1

2.6.13.1

Linux Kernel 2.6.13.2

2.6.13.2

Linux Kernel 2.6.13.3

2.6.13.3

Linux Kernel 2.6.13.4

2.6.13.4

Linux Kernel 2.6.13.5

2.6.13.5

Linux Kernel 2.6.14

2.6.14

Linux Kernel 2.6.14 Release Candidate 1

2.6.14

Linux Kernel 2.6.14 Release Candidate 2

2.6.14

Linux Kernel 2.6.14 Release Candidate 3

2.6.14

Linux Kernel 2.6.14 Release Candidate 4

2.6.14

Linux Kernel 2.6.14 Release Candidate 5

2.6.14

Linux Kernel 2.6.14.1

2.6.14.1

Linux Kernel 2.6.14.2

2.6.14.2

Linux Kernel 2.6.14.3

2.6.14.3

Linux Kernel 2.6.14.4

2.6.14.4

Linux Kernel 2.6.14.5

2.6.14.5

Linux Kernel 2.6.14.6

2.6.14.6

Linux Kernel 2.6.14.7

2.6.14.7

Linux Kernel 2.6.15

2.6.15

Linux Kernel 2.6.15.1

2.6.15.1

Linux Kernel 2.6.15.2

2.6.15.2

References

[dailydave] 20060207 Fun with Linux (2.6.12 -> 2.6.15.2)

Patch

[linux-kernel] 20060207 Linux 2.6.15.3

[linux-kernel] 20060207 Re: Linux 2.6.15.3

18766

Patch, Vendor Advisory

18774

Patch, Vendor Advisory

18784

Patch, Vendor Advisory

18788

Patch, Vendor Advisory

18861

Patch, Vendor Advisory

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15.3

MDKSA-2006:040

SUSE-SA:2006:006

Patch, Vendor Advisory

FEDORA-2006-102

Patch, Vendor Advisory

FLSA:157459-4

16532

Patch

2006-0006

Vendor Advisory

USN-250-1

ADV-2006-0464

Vendor Advisory

kernel-icmp-ipoptionsecho-dos(24575)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.