Time Test Vulnerability in ipt_recent Kernel Module

Time Test Vulnerability in ipt_recent Kernel Module

CVE-2005-2873 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

The ipt_recent kernel module (ipt_recent.c) in Linux kernel 2.6.12 and earlier does not properly perform certain time tests when the jiffies value is greater than LONG_MAX, which can cause ipt_recent netfilter rules to block too early, a different vulnerability than CVE-2005-2872.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.