Upstream information
Description
The ip_frag_reasm function in net/ipv4/ip_fragment.c in the Linux kernel 2.6.32-rc8, and 2.6.29 and later versions before 2.6.32, calls IP_INC_STATS_BH with an incorrect argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and hang) via long IP packets, possibly related to the ip_defrag function.NVD CVSS v2 Base Score: 7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Novell/SUSE information
Note from the SUSE Security Team
This issue only affects Linux kernels after and including 2.6.29, so it affects only openSUSE 11.2. No SLES version is affected by this bug. Novell Bugzilla entry: 560697 SUSE Security Advisories:- SUSE-SA:2010:001, published Thu, 07 Jan 2010 18:00:00 +0000
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|