CVE-2006-4572

Publication date 7 November 2006

Last updated 24 July 2024

Ubuntu priority

ip6_tables in netfilter in the Linux kernel before 2.6.16.31 allows remote attackers to (1) bypass a rule that disallows a protocol, via a packet with the protocol header not located immediately after the fragment header, aka "ip6_tables protocol bypass bug;" and (2) bypass a rule that looks for a certain extension header, via a packet with an extension header outside the first fragment, aka "ip6_tables extension header bypass bug."

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux-source-2.6.15	7.04 feisty	Not in release
	6.10 edgy	Not in release
	6.06 LTS dapper	Fixed 2.6.15-29.58
linux-source-2.6.17	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.6.17.1-12.40
	6.06 LTS dapper	Not in release

References

Related Ubuntu Security Notices (USN)

USN-416-1
Linux kernel vulnerabilities
10 February 2007

USN-395-1
Linux kernel vulnerabilities
14 December 2006

Other references

https://www.cve.org/CVERecord?id=CVE-2006-4572