Public Date:

The MITRE CVE dictionary describes this issue as:

net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the getsockopt function with SO_ORIGINAL_DST, which allows local users to obtain portions of potentially sensitive memory.

Find out more about CVE-2006-1343 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 RHSA-2006:0580 2006-07-13
Red Hat Enterprise Linux 2.1 RHSA-2006:0579 2006-07-13
Red Hat Enterprise Linux 4 (kernel) RHSA-2006:0575 2006-08-10
Red Hat Enterprise Linux 3 (kernel) RHSA-2006:0437 2006-07-20

Last Modified

CVE description copyright © 2017, The MITRE Corporation


Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.