Oval Definition:oval:org.opensuse.security:def:20082136
Revision Date:2017-09-27Version:1
Title:CVE-2008-2136
Description:

Memory leak in the ipip6_rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service (memory consumption) via network traffic to a Simple Internet Transition (SIT) tunnel interface, related to the pskb_may_pull and kfree_skb functions, and management of an skb reference count.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-2136
Platform(s):openSUSE 10.2
openSUSE 10.3
SUSE CORE 9 for AMD64 and Intel EM64T
SUSE Linux Enterprise Realtime 10 SP2
SUSE Linux Enterprise SDK 10 SP2
Product(s):
Definition Synopsis
  • Release Information
  • sles10-sp2-rt is installed
  • AND
  • kernel-rt less than 2.6.22.19-0.15
  • OR kernel-rt_debug less than 2.6.22.19-0.15
  • OR kernel-rt_timing less than 2.6.22.19-0.15
  • OR kernel-source less than 2.6.22.19-0.15
  • OR kernel-syms less than 2.6.22.19-0.15
  • OR Package Information
  • sles10-sp2-sdk is installed
  • AND
  • kernel-debug less than 2.6.16.60-0.23
  • OR kernel-kdump less than 2.6.16.60-0.23
  • OR kernel-xen less than 2.6.16.60-0.23
  • OR Package Information
  • sles10-sp2-rt is installed
  • AND
  • kernel-rt less than 2.6.22.19-0.15
  • OR kernel-rt_bigsmp less than 2.6.22.19-0.15
  • OR kernel-rt_debug less than 2.6.22.19-0.15
  • OR kernel-rt_timing less than 2.6.22.19-0.15
  • OR kernel-source less than 2.6.22.19-0.15
  • OR kernel-syms less than 2.6.22.19-0.15
  • OR Package Information
  • sles10-sp2-sdk is installed
  • AND
  • kernel-debug less than 2.6.16.60-0.23
  • OR kernel-kdump less than 2.6.16.60-0.23
  • OR kernel-xen less than 2.6.16.60-0.23
  • OR kernel-xenpae less than 2.6.16.60-0.23
  • OR Package Information
  • sles10-sp2-sdk is installed
  • AND kernel-debug less than 2.6.16.60-0.23
  • OR Package Information
  • sles10-sp2-sdk is installed
  • AND kernel-kdump less than 2.6.16.60-0.23
    • BACK