Changes made to bug 1403260

Back to bug 1403260

Who	When	What	Removed	Added
Andrej Nemec	2016-12-09 14:26:56 UTC	Depends On		1403261
Andrej Nemec	2016-12-09 14:30:57 UTC	Blocks		1403262
Norman Sardella	2016-12-10 09:11:40 UTC	CC		sardella
Vladis Dronov	2016-12-13 08:46:27 UTC	CC		vdronov
		Doc Text		The icmp6_send function in net/ipv6/icmp.c in the Linux kernel through 4.8.12 omits a certain check of the dst data structure, which allows remote attackers to cause a denial of service (panic) via a fragmented IPv6 packet.
		Whiteboard	impact=important,public=20161208,reported=20161208,source=oss-security,cvss2=7.1/AV:N/AC:M/Au:N/C:N/I:N/A:C,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected	impact=important,public=20161208,reported=20161208,source=oss-security,cvss2=7.8/AV:N/AC:L/Au:N/C:N/I:N/A:C,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected
Vladis Dronov	2016-12-13 08:48:14 UTC	Whiteboard	impact=important,public=20161208,reported=20161208,source=oss-security,cvss2=7.8/AV:N/AC:L/Au:N/C:N/I:N/A:C,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected	impact=important,public=20161208,reported=20161208,source=oss-security,cvss2=7.8/AV:N/AC:L/Au:N/C:N/I:N/A:C,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-20,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected
Vladis Dronov	2016-12-13 08:51:18 UTC	Status	NEW	CLOSED
		Resolution	---	NOTABUG
		Doc Type	If docs needed, set a value	Bug Fix
		Last Closed		2016-12-13 03:51:18 UTC
Eric Christensen	2016-12-13 18:38:25 UTC	Doc Text	The icmp6_send function in net/ipv6/icmp.c in the Linux kernel through 4.8.12 omits a certain check of the dst data structure, which allows remote attackers to cause a denial of service (panic) via a fragmented IPv6 packet.	The icmp6_send function in net/ipv6/icmp.c in the Linux kernel through 4.8.12 omits a certain check of the dst data structure which allows remote attackers to cause a denial of service (panic) via a fragmented IPv6 packet.
Product Security DevOps Team	2019-09-29 14:02:45 UTC	Whiteboard	impact=important,public=20161208,reported=20161208,source=oss-security,cvss2=7.8/AV:N/AC:L/Au:N/C:N/I:N/A:C,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-20,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=notaffected,rhel-7/kernel-rt=notaffected,mrg-2/realtime-kernel=notaffected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=affected

Back to bug 1403260