The udp6_ufo_fragment function in net/ipv6/udp.c in the Linux kernel prior to 2.6.39, when a certain UDP Fragmentation Offload (UFO) configuration is enabled, allows remote malicious users to cause a denial of service (system crash) by sending fragmented IPv6 UDP packets to a bridge device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
avaya 96x1_ip_deskphone_firmware |