The ip6_route_add function in net/ipv6/route.c in the Linux kernel up to and including 3.13.6 does not properly count the addition of routes, which allows remote malicious users to cause a denial of service (memory consumption) via a flood of ICMPv6 Router Advertisement packets.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
opensuse opensuse 11.4 |
||
suse linux enterprise server 11 |