CVE-2018-17977
Mishandled interactions among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets resulting in a denial of service
References
Notes
carnil> Complex to fix at protocol level and will require significant
carnil> work to fix. To exploit the issue an user would need
carnil> CAP_NET_ADMIN or similar.
Bugs
Status
| Branch |
Status |
| upstream |
needed
|
| 6.18-upstream-stable |
|
| 6.17-upstream-stable |
|
| 6.12-upstream-stable |
|
| 6.6-upstream-stable |
|
| 6.1-upstream-stable |
needed
|
| 5.10-upstream-stable |
needed
|
| 4.9-upstream-stable |
|
| 3.16-upstream-stable |
ignored "EOL"
|
| sid |
needed
|
| 6.12-trixie-security |
needed
|
| 6.1-bookworm-security |
needed
|
| 5.10-bullseye-security |
needed
|
| 4.9-stretch-security |
|
| 3.16-jessie-security |
ignored "EOL"
|
