[v2.5] linux-vserver: CVE-2013-4348: kernel denial of service
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
•CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1007939
•CONFIRM:https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=6f092343855a71e03b8d209815d8c45bf3a27fcd
(from redmine: issue id 2321, created on 2013-11-12, closed on 2013-11-15)
- Relations:
- parent #2302 (closed)
- Changesets:
- Revision b5380952 by Natanael Copa on 2013-11-13T14:24:11Z:
main/linux-vserver: various security fixes
CVE-2013-2015
CVE-2013-2164
CVE-2013-2206
CVE-2013-2850
CVE-2013-2851
CVE-2013-2852
CVE-2013-4348
CVE-2013-4350
CVE-2013-4387
CVE-2013-4470
fixes #2321