Vulnerability Description
The udp_v6_get_port function in udp.c in Linux 2.6 before 2.6.14-rc5, when running IPv6, allows local users to cause a denial of service (infinite loop and crash).
CVSS Score
2.1
LOW
AV:L/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 2.6.0 |
References
- http://linux.bkbits.net:8080/linux-2.6/cset%404342df67SNhRx_3FGhUrrU-FXLlQIA
- http://secunia.com/advisories/17261
- http://secunia.com/advisories/17280
- http://secunia.com/advisories/17917
- http://secunia.com/advisories/17918
- http://secunia.com/advisories/18562
- http://secunia.com/advisories/18684
- http://secunia.com/advisories/19185
- http://secunia.com/advisories/19369
- http://secunia.com/advisories/19374
- http://secunia.com/advisories/20237
- http://secunia.com/advisories/21745
- http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm
- http://www.debian.org/security/2006/dsa-1017
- http://www.debian.org/security/2006/dsa-1018
FAQ
What is CVE-2005-2973?
CVE-2005-2973 is a vulnerability with a CVSS score of 2.1 (LOW). The udp_v6_get_port function in udp.c in Linux 2.6 before 2.6.14-rc5, when running IPv6, allows local users to cause a denial of service (infinite loop and crash).
How severe is CVE-2005-2973?
CVE-2005-2973 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2973?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.