CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
EPSS
Percentile
5.1%
iproute is a set of tools for managing linux network routing and advanced features.
It has been reported that iproute can accept spoofed messages on the kernel netlink interface from local users. This could lead to a local Denial of Service condition.
Local users could cause a Denial of Service.
A workaround is not currently known for this issue. All users are advised to upgrade to the latest version of the affected package.
All iproute users should upgrade to version 20010824-r5 or later:
# emerge sync
# emerge -pv ">=sys-apps/iproute-20010824-r5";
# emerge ">=sys-apps/iproute-20010824-r5";
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Gentoo | any | all | sys-apps/iproute | <= 20010824-r4 | UNKNOWN |