VDB
CVE-2007-6282
CVE-2007-6282
PUBLISHED
Reported by redhat · Published May 8, 2008
The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a, n/a |
Timeline
- May 8, 2008 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- RHSA-2008:0275 vendor-advisoryx_refsource_REDHAT
- 30962 third-party-advisoryx_refsource_SECUNIA
- DSA-1630 vendor-advisoryx_refsource_DEBIAN
- 30294 third-party-advisoryx_refsource_SECUNIA
- oval:org.mitre.oval:def:10549 vdb-entrysignaturex_refsource_OVAL
- RHSA-2008:0237 vendor-advisoryx_refsource_REDHAT
- 29081 vdb-entryx_refsource_BID
- 31551 third-party-advisoryx_refsource_SECUNIA
- SUSE-SA:2008:031 vendor-advisoryx_refsource_SUSE
- RHSA-2008:0585 vendor-advisoryx_refsource_REDHAT
- x_refsource_MISC
- 31107 third-party-advisoryx_refsource_SECUNIA
- 30890 third-party-advisoryx_refsource_SECUNIA
- 31628 third-party-advisoryx_refsource_SECUNIA
- USN-625-1 vendor-advisoryx_refsource_UBUNTU
- SUSE-SA:2008:030 vendor-advisoryx_refsource_SUSE
- linux-kernel-esp-dos(42276) vdb-entryx_refsource_XF
- 30818 third-party-advisoryx_refsource_SECUNIA
- [linux-netdev] 20080222 [Patch] Crash (BUG()) when handling fragmented ESP packets mailing-listx_refsource_MLIST
- 30112 third-party-advisoryx_refsource_SECUNIA
…and 1 more