Wind River Support Network

HomeDefectsLIN6-5374

Fixed

LIN6-5374 : Security Advisory - linux - CVE-2013-4348

Created: Nov 15, 2013 Updated: Dec 3, 2018

Resolved Date: Feb 9, 2014

Previous ID: LIN3-19641

Found In Version: 6.0

Fix Version: 6.0.0.3

Severity: Severe

Applicable for: Wind River Linux 6

Component/s: Kernel

Description

The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4348

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38