CVE-2007-4567 : The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6

The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted IPv6 packet.

Published 2007-12-21 00:46:00

Updated 2025-04-09 00:30:58

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Memory CorruptionDenial of service

Products affected by CVE-2007-4567

Linux » Linux Kernel
Versions up to, including, (<=) 2.6.21.7
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.36.2
cpe:2.3:o:linux:linux_kernel:2.4.36.2:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.36
cpe:2.3:o:linux:linux_kernel:2.4.36:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.36.3
cpe:2.3:o:linux:linux_kernel:2.4.36.3:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.36.4
cpe:2.3:o:linux:linux_kernel:2.4.36.4:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.2.27
cpe:2.3:o:linux:linux_kernel:2.2.27:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.36.5
cpe:2.3:o:linux:linux_kernel:2.4.36.5:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.36.1
cpe:2.3:o:linux:linux_kernel:2.4.36.1:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.4.36.6
cpe:2.3:o:linux:linux_kernel:2.4.36.6:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC1
cpe:2.3:o:linux:linux_kernel:2.6.18:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC2
cpe:2.3:o:linux:linux_kernel:2.6.18:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC5
cpe:2.3:o:linux:linux_kernel:2.6.18:rc5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC3
cpe:2.3:o:linux:linux_kernel:2.6.18:rc3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC4
cpe:2.3:o:linux:linux_kernel:2.6.18:rc4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18
cpe:2.3:o:linux:linux_kernel:2.6.18:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC6
cpe:2.3:o:linux:linux_kernel:2.6.18:rc6:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC7
cpe:2.3:o:linux:linux_kernel:2.6.18:rc7:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.19.7
cpe:2.3:o:linux:linux_kernel:2.6.19.7:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.19.4
cpe:2.3:o:linux:linux_kernel:2.6.19.4:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.19.5
cpe:2.3:o:linux:linux_kernel:2.6.19.5:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.19.6
cpe:2.3:o:linux:linux_kernel:2.6.19.6:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.21.6
cpe:2.3:o:linux:linux_kernel:2.6.21.6:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.21.5
cpe:2.3:o:linux:linux_kernel:2.6.21.5:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.20.20
cpe:2.3:o:linux:linux_kernel:2.6.20.20:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.20.19
cpe:2.3:o:linux:linux_kernel:2.6.20.19:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.20.16
cpe:2.3:o:linux:linux_kernel:2.6.20.16:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.20.21
cpe:2.3:o:linux:linux_kernel:2.6.20.21:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.20.18
cpe:2.3:o:linux:linux_kernel:2.6.20.18:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.20.17
cpe:2.3:o:linux:linux_kernel:2.6.20.17:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6
cpe:2.3:o:linux:linux_kernel:2.6:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2007-4567

Top countries where our scanners detected CVE-2007-4567

Top open port discovered on systems with this issue 52869

IPs affected by CVE-2007-4567 182,877

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2007-4567!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2007-4567

EPSS FAQ

5.52%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 89 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2007-4567

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C	10.0	6.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

CWE ids for CVE-2007-4567

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

Vendor statements for CVE-2007-4567

Red Hat 2010-01-21

This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit a11d206d that introduced the problem. This upstream commit was backported in Red Hat Enterprise Linux 5 via RHBA-2008:0314. It was reported and addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2010-0019.html

References for CVE-2007-4567

Jump to