CVE-2007-1497

Upstream information

CVE-2007-1497 at MITRE

Description

nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	5
Vector	AV:N/AC:L/Au:N/C:P/I:N/A:N
Access Vector	Network
Access Complexity	Low
Authentication	None
Confidentiality Impact	Partial
Integrity Impact	None
Availability Impact	None

SUSE Bugzilla entries: 268298 [RESOLVED / FIXED], 270460 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SA:2007:043, published Mon, 09 Jul 2007 13:00:00 +0000

List of released packages

Product(s)	Fixed package version(s)	References
SUSE LINUX 10.0	`Intel-536ep >= 4.69-0.2` `kernel-bigsmp >= 2.6.13-15.16` `kernel-bigsmp-nongpl >= 2.6.13-15.16` `kernel-default >= 2.6.13-15.16` `kernel-default-nongpl >= 2.6.13-15.16` `kernel-iseries64 >= 2.6.13-15.16` `kernel-ppc64 >= 2.6.13-15.16` `kernel-smp >= 2.6.13-15.16` `kernel-smp-nongpl >= 2.6.13-15.16` `kernel-source >= 2.6.13-15.16` `kernel-syms >= 2.6.13-15.16` `kernel-um >= 2.6.13-15.16` `kernel-um-nongpl >= 2.6.13-15.16` `kernel-xen >= 2.6.13-15.16` `kernel-xen-nongpl >= 2.6.13-15.16` `um-host-kernel >= 2.6.13-15.16`

CVE-2007-1497

Common Vulnerabilities and Exposures

Upstream information

Description

SUSE information

List of released packages

Solutions

Enterprise Linux

Informatique stratégique

Solutions cloud

Software-Defined Storage

Solutions SAP

Gestion des infrastructures informatiques

Produits

Rubriques populaires

Rubriques populaires

Rubriques populaires

Rubriques populaires

Rubriques populaires

Rubriques populaires

Offres de support

Ressources de support

Services

Partenaires