CVE-2006-1525

ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service (panic) via a request for a route for a multicast IP address, which triggers a null dereference.

🔗 References (54)

• secalert@redhathttp://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.8
• secalert@redhathttp://lwn.net/Alerts/180820/
• secalert@redhathttp://secunia.com/advisories/19709
• secalert@redhathttp://secunia.com/advisories/19735
• secalert@redhathttp://secunia.com/advisories/19955
• secalert@redhathttp://secunia.com/advisories/20157
• secalert@redhathttp://secunia.com/advisories/20237
• secalert@redhathttp://secunia.com/advisories/20398
• secalert@redhathttp://secunia.com/advisories/20671
• secalert@redhathttp://secunia.com/advisories/20914
• secalert@redhathttp://secunia.com/advisories/21476
• secalert@redhathttp://secunia.com/advisories/21745
• secalert@redhathttp://support.avaya.com/elmodocs2/security/ASA-2006-161.htm
• secalert@redhathttp://www.debian.org/security/2006/dsa-1097
• secalert@redhathttp://www.debian.org/security/2006/dsa-1103