CVE-2007-6282
First published: Thu Nov 29 2007(Updated: )
The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel-rt | <0:2.6.24.7-74.el5 | 0:2.6.24.7-74.el5 |
| redhat/kernel | <0:2.6.18-53.1.21.el5 | 0:2.6.18-53.1.21.el5 |
| Red Hat Enterprise Linux Desktop | =4 | |
| Red Hat Enterprise Linux | =as_4 | |
| Red Hat Enterprise Linux | =es_4 | |
| Red Hat Enterprise Linux | =ws_4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://marc.info/?l=linux-netdev&m=120372380411259&w=2
- https://bugzilla.redhat.com/show_bug.cgi?id=404291
- http://www.redhat.com/support/errata/RHSA-2008-0237.html
- http://www.redhat.com/support/errata/RHSA-2008-0275.html
- http://www.securityfocus.com/bid/29081
- http://secunia.com/advisories/30294
- http://www.ubuntu.com/usn/usn-625-1
- http://secunia.com/advisories/30818
- http://secunia.com/advisories/30962
- http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00000.html
- http://secunia.com/advisories/30890
- http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html
- http://secunia.com/advisories/31107
- http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html
- http://www.redhat.com/support/errata/RHSA-2008-0585.html
- http://secunia.com/advisories/31628
- http://www.debian.org/security/2008/dsa-1630
- http://secunia.com/advisories/31551
- http://secunia.com/advisories/30112
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42276
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10549
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=272881
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=272881&action=edit
- https://access.redhat.com/security/cve/CVE-2007-6282
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=299408&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=299408&action=edit
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=920fc941a9617f95ccb283037fe6f8a38d95bb69
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=404291#c13
- https://www.cve.org/CVERecord?id=CVE-2007-6282 https://nvd.nist.gov/vuln/detail/CVE-2007-6282
- https://access.redhat.com/errata/RHSA-2008:0585
- https://access.redhat.com/errata/RHSA-2008:0237
- https://access.redhat.com/errata/RHSA-2008:0275
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6282.json
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is the severity of CVE-2007-6282?
CVE-2007-6282 is classified as a denial of service vulnerability, potentially allowing a system crash.
How do I fix CVE-2007-6282?
To fix CVE-2007-6282, update the Linux kernel to version 2.6.25 or later.
Which Linux kernel versions are affected by CVE-2007-6282?
CVE-2007-6282 affects Linux kernel versions prior to 2.6.25.
What types of systems are vulnerable to CVE-2007-6282?
Red Hat Enterprise Linux versions AS 4, ES 4, WS 4, and the Red Hat Enterprise Linux Desktop version 4 are vulnerable to CVE-2007-6282.
Who can exploit CVE-2007-6282?
This vulnerability can be exploited by remote routers sending crafted fragmented ESP packets.
- agent/type
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2007-6282
- agent/references
- agent/author
- agent/weakness
- agent/severity
- agent/description
- collector/redhat-cve
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/redhat
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/4
- canonical/red hat enterprise linux
- version/red hat enterprise linux/as_4
- version/red hat enterprise linux/es_4
- version/red hat enterprise linux/ws_4