The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 3.2 (including) | 3.2.54 (excluding) |
Linux_kernel | Linux | 3.3 (including) | 3.4.70 (excluding) |
Linux_kernel | Linux | 3.5 (including) | 3.10.20 (excluding) |
Linux_kernel | Linux | 3.11 (including) | 3.11.9 (excluding) |
Linux_kernel | Linux | 3.12 (including) | 3.12.1 (excluding) |