What the vulnerability does

01Description

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95%.

Key dates

02Disclosure timeline

June 30, 2023 CVE published
October 15, 2024 Record updated