CVE-2013-4563 in Kernel
Resumen (Inglés)
The udp6_ufo_fragment function in net/ipv6/udp_offload.c in the Linux kernel through 3.12, when UDP Fragmentation Offload (UFO) is enabled, does not properly perform a certain size comparison before inserting a fragment header, which allows remote attackers to cause a denial of service (panic) via a large IPv6 UDP packet, as demonstrated by use of the Token Bucket Filter (TBF) queueing discipline.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
Reservar
2013-06-12
Divulgación
2013-11-20
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 11224 | Linux Kernel UDP udp_offload.c udp6_ufo_fragment denegación de servicio | 189 | No está definido | Arreglo oficial | CVE-2013-4563 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV