Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ip_expire function in net/ipv4/ip_fragment.c in the Linux kernel before 2.6.39 does not properly construct ICMP_TIME_EXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service (invalid pointer dereference) via crafted fragmented packets.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel 'ip_expire()'拒绝服务漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux Kernel 2.6.39之前版本中存在拒绝服务漏洞。该漏洞是由于net/ipv4/ip_fragment.c中的“ip_expire()”函数中的错误导致的,远程攻击者可以通过向系统发送数据包碎片,导致应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A