Advisories ยป MGASA-2015-0363

Updated conntrack-tools packages fix CVE-2015-6496

Publication date: 13 Sep 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-6496

Description

Updated conntrack-tools packages fix security vulnerability:

It was discovered that in certain configurations, if the relevant conntrack
kernel module is not loaded, conntrackd will crash when handling DCCP, SCTP or
ICMPv6 packets (CVE-2015-6496).
                

References

SRPMS

5/core

4/core