Wind River Support Network

HomeOther DownloadsSecurity Advisory -Linux kernel - CVE-2007-6282
Recommended Type: Patch

Security Advisory -Linux kernel - CVE-2007-6282

Released: Apr 28, 2009     Updated: Apr 28, 2009

Description

The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV.


Product Version

Linux Platforms 1.x

Downloads


Installation Notes

Installation Notes

WIND00156701.zip is for 1.4
WIND00156704.zip is for 1.5
1. Unzip the patch under [install_dir]/updates 
2. Install the patch CD by entering the patch CD directory and run setup_linux. 
3. This is a source only patch so you will have to build the kernel 
4. Issue a make fs and make the kernel in a configured directory. 
5. Upload the kernel and rootfs into the target and boot it up.


Live chat
Online