CVE-2018-17977

Mishandled interactions among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets resulting in a denial of service

References

Notes

 carnil> Complex to fix at protocol level and will require significant
 carnil> work to fix. To exploit the issue an user would need
 carnil> CAP_NET_ADMIN or similar.

Bugs

Status

Branch Status
4.19-buster-security needed
4.19-upstream-stable needed
5.10-bullseye-security needed
5.10-upstream-stable needed
6.1-bookworm-security needed
6.1-upstream-stable needed
6.6-upstream-stable unknown
6.8-upstream-stable unknown
sid needed
upstream needed