CVE-2003-0418

Linux 2.0 - Info Disclosure

Title source: llm

Description

The Linux 2.0 kernel IP stack does not properly calculate the size of an ICMP citation, which causes it to include portions of unauthorized memory in ICMP error responses.

References (3)

[Exploit, Patch, Vendor Advisory] http://www.cartel-securite.fr/pbiondi/adv/CARTSA-20030314-icmpleak.txt

[Patch, Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/471084

[Mailing List] http://marc.info/?l=bugtraq&m=105519179005065&w=2

Scores

EPSS 0.0093

EPSS Percentile 75.9%

Classification

Status draft

Affected Products (40)

linux/linux_kernel

... and 25 more

Timeline

Published Jul 24, 2003

Tracked Since Feb 18, 2026