Red Hat is aware of this issue and is tracking it via the following bug:
This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4, as they do not include support for Optimistic Duplicate Address Detection (DAD) in IPv6. This was addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2010-9419.html. A future update in Red Hat Enterprise MRG may address this flaw.
CVSS v2 metrics
NOTE: The following CVSS v2 metrics and score provided are preliminary and subject to review.
|Access Vector||Adjacent Network|
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Red Hat Security Errata
|Red Hat Enterprise Linux EUS (v. 5.3 server) (kernel)||RHSA-2010:0149||2010-03-17|
|Red Hat Enterprise Linux EUS (v. 5.2 server) (kernel)||RHSA-2010:0148||2010-03-17|
|MRG Grid for RHEL 5 Server (kernel-rt)||RHSA-2010:0161||2010-03-23|
|Red Hat Enterprise Linux 5 (kernel)||RHSA-2010:0147||2010-03-17|