Vigil@nce - Linux kernel: denial of service via IPv4 Forward
February 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker located on the same subnet can request the transfer of
numerous IPv4 packets through the Linux kernel, in order to
trigger a denial of service.
Impacted products: Fedora, Linux
Severity: 2/4
Creation date: 03/02/2015
DESCRIPTION OF THE VULNERABILITY
The net/ipv4/ip_forward.c file of the Linux kernel implements the
IPv4 packet routing.
However, when packets have to be transmitted to numerous
destinations, the routing cache management can consume up to one
million entries.
An attacker located on the same subnet can therefore request the
transfer of numerous IPv4 packets through the Linux kernel, in
order to trigger a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Linux-kernel-denial-of-service-via-IPv4-Forward-16100