Intrusion Prevention

Linux.Kernel.UDP.UFO.Large.Packet.DoS

Description

This indicates an attack attempt to exploit a Denial of Service vulnerability in Linux Kernel with UFO enabled.
The vulnerability is due to an error when vulnerable software handles a UDP packets over IPv6 with a size larger than MTU. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system.

Affected Products

Linux Kernel Project Kernel from 3.10-rc5 prior to commit 0e033e04c2678 (mainline)

Impact

Denial of Service: Remote attackers can crash vulnerable systems or services

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0e033e04c2678

CVE References

CVE-2013-4563