QNX, Software Systems, Inc. Information for VU#110947

KAME project IPv6 IPComp header denial of service vulnerability



Vendor Statement

QNX Software Systems has verified that vulnerability VU#110947 is present in products which contain the IPv6 version of the TCP/IP network stack. This issue has been corrected in patch 933-CERT-VU110947 for QNX Momentics 6.3.2 and 6.3.0 SP3 Extended Networking TDK 1.0.1.

Please contact your QNX representative to obtain this patch, or for more information regarding older QNX releases and how to determine if you are using the affected binary.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References



There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.