netfilter관련 문제라고 하는군요.linux kernel 2.6.x대 모두 해당한다고 합니다.

NETFILTER: {ip, nf}_conntrack_sctp: fix remotely triggerable NULL ptr dereference [CVE-2007-2876]

When creating a new connection by sending an unknown chunk type, we don't transition to a valid state,

causing a NULL pointer dereference in sctp_packet when accessing sctp_timeouts[SCTP_CONNTRACK_NONE].

Fix by don't creating new conntrack entry if initial state is invalid. Noticed by Vilmos Nebehaj

관련링크 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2876

+ Recent posts