Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The udp6_ufo_fragment function in net/ipv6/udp_offload.c in the Linux kernel through 3.12, when UDP Fragmentation Offload (UFO) is enabled, does not properly perform a certain size comparison before inserting a fragment header, which allows remote attackers to cause a denial of service (panic) via a large IPv6 UDP packet, as demonstrated by use of the Token Bucket Filter (TBF) queueing discipline.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel 数字错误漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.12及之前的版本中的net/ipv6/udp_offload.c文件中的‘udp6_ufo_fragment’函数存在安全漏洞,该漏洞源于当使用UDP Fragmentation Offload (UFO)时,程序在插入段头部之前没有执行大小检查。远程攻击者可通过发送大的IPv6 UDP数据包利用该漏洞造成拒绝服务(
CVSS Information
N/A
Vulnerability Type
N/A