Description
The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x before 2.6.21, and possibly 2.4.x, allows remote attackers to cause a denial of service (crash) via an AppleTalk frame that is shorter than the specified length, which triggers a BUG_ON call when an attempt is made to perform a checksum.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Jean Delvare · textdoslinux
https://www.exploit-db.com/exploits/29826
References (23)
Core 23
Core References
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-464-1
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235857
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/23376
Vendor Advisory x_refsource_confirm
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.5
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/471457
Issue Tracking x_refsource_confirm
https://issues.rpath.com/browse/RPL-1244
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2007/dsa-1286
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1340
Vendor Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_43_kernel.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/24901
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25226
Various Sources vendor-advisory
x_refsource_suse
http://lists.suse.com/archive/suse-security-announce/2007-May/0001.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25683
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/24793
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25099
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25961
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25078
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25392
Vendor Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_30_kernel.html
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2007/dsa-1304
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25714
Vendor Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2007_35_kernel.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25691
Scores
EPSS
0.0954
EPSS Percentile
93.0%
Details
Status
published
Products (1)
linux/linux_kernel
< 2.6.20.4
Published
Apr 11, 2007
Tracked Since
Feb 18, 2026