kernel: denial of service
| Package(s): | kernel |
CVE #(s): | CVE-2015-8215
|
| Created: | December 18, 2015 |
Updated: | December 23, 2015 |
| Description: |
From the SUSE advisory:
CVE-2015-8215: net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel
did not validate attempted changes to the MTU value, which allowed
context-dependent attackers to cause a denial of service (packet loss)
via a value that is (1) smaller than the minimum compliant value or (2)
larger than the MTU of an interface, as demonstrated by a Router
Advertisement (RA) message that is not validated by a daemon, a
different vulnerability than CVE-2015-0272. (bsc#955354) |
| Alerts: |
|
