CVE-2011-3188
published 2012-05-24CVE-2011-3188: The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification…
critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote attackers to cause a denial of service (disrupted networking) or hijack network sessions by predicting these values and sending crafted packets.
Affected
27 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f5 | arx | 6.0.0 – 6.4.0 | — |
| f5 | big-ip_access_policy_manager | 10.1.0 – 10.2.4 | — |
| f5 | big-ip_access_policy_manager | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_analytics | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_application_security_manager | 10.0.0 – 10.2.4 | — |
| f5 | big-ip_application_security_manager | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_edge_gateway | 10.1.0 – 10.2.4 | — |
| f5 | big-ip_edge_gateway | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_global_traffic_manager | 10.0.0 – 10.2.4 | — |
| f5 | big-ip_global_traffic_manager | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_link_controller | 10.0.0 – 10.2.4 | — |
| f5 | big-ip_link_controller | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_local_traffic_manager | 10.0.0 – 10.2.4 | — |
| f5 | big-ip_local_traffic_manager | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_protocol_security_module | 10.0.0 – 10.2.4 | — |
| f5 | big-ip_protocol_security_module | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_wan_optimization_manager | 10.0.0 – 10.2.4 | — |
| f5 | big-ip_wan_optimization_manager | 11.0.0 – 11.1.0 | — |
| f5 | big-ip_webaccelerator | 10.0.0 – 10.2.4 | — |
| f5 | big-ip_webaccelerator | 11.0.0 – 11.1.0 | — |
| f5 | enterprise_manager | — | — |
| f5 | enterprise_manager | 2.1.0 – 2.3.0 | — |
| f5 | firepass | — | — |
| f5 | firepass | 6.0.0 – 6.1.0 | — |
| linux | linux_kernel | < 3.1 | 3.1 |