Red Hat Bugzilla – Bug 987633
CVE-2013-4163 Kernel: net: panic while appending data to a corked IPv6 socket in ip6_append_data_mtu
Last modified: 2015-10-15 13:55:12 EDT
Linux kernel built with the IPv6 networking support is vulnerable to a crash
while appending data to an IPv6 socket with UDP_CORKED option set. UDP_CORK
enables accumulating data and sending it as single datagram.
An unprivileged user/program could use this flaw to crash the kernel, resulting in local DoS.
Red Hat would like to thank Hannes Frederic Sowa for reporting this issue.
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 987639]
This issue does not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6.
This issue affects the version of the kernel package as shipped with Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise MRG 2 may address this issue.
This issue has been addressed in following products:
MRG for RHEL-6 v.2
Via RHSA-2013:1264 https://rhn.redhat.com/errata/RHSA-2013-1264.html