IPv6 Flow Label Handling Code Vulnerability

IPv6 Flow Label Handling Code Vulnerability

CVE-2005-3806 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:C/A:C

The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt kernel memory or cause a denial of service (crash) by triggering a free of non-allocated memory.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.