FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-2242

This CVE name corresponds to:

Entered Topic
2007-04-28 FreeBSD -- IPv6 Routing Header 0 is dangerous

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2007-2242 at cve.mitre.org

Details

Type Candidate
Name CVE-2007-2242
Phase Assigned(20070425)

Description

The IPv6 protocol allows remote attackers to cause a denial of service via crafted IPv6 type 0 route headers (IPV6_RTHDR_TYPE_0) that create network amplification between two routers.

References

Source Reference
BUGTRAQ 20070615 rPSA-2007-0124-1 kernel xen
BUGTRAQ 20070508 FLEA-2007-0016-1: kernel
MISC http://www.secdev.org/conf/IPv6_RH_security-csw07.pdf
CONFIRM https://issues.rpath.com/browse/RPL-1310
CONFIRM http://docs.info.apple.com/article.html?artnum=306375
CONFIRM http://docs.info.apple.com/article.html?artnum=305712
FREEBSD FreeBSD-SA-07:03.ipv6
MANDRIVA MDKSA-2007:171
MANDRIVA MDKSA-2007:196
MANDRIVA MDKSA-2007:216
OPENBSD [3.9] 20070423 022: SECURITY FIX: April 23, 2007
OPENBSD [4.0] 20070423 012: SECURITY FIX: April 23, 2007
REDHAT RHSA-2007:0347
SUSE SUSE-SA:2007:051
SUSE SUSE-SA:2008:006
UBUNTU USN-486-1
UBUNTU USN-508-1
CERT-VN VU#267289
BID 23615
OVAL oval:org.mitre.oval:def:9574
VUPEN ADV-2007-1563
VUPEN ADV-2007-3050
VUPEN ADV-2007-2270
SECTRACK 1017949
SECUNIA 24978
SECUNIA 25033
SECUNIA 25068
SECUNIA 25083
SECUNIA 25288
SECUNIA 25691
SECUNIA 25770
SECUNIA 26133
SECUNIA 26651
SECUNIA 26703
SECUNIA 26620
SECUNIA 26664
SECUNIA 28806
XF openbsd-ipv6-type0-dos(33851)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.