F5 Networks BIG-IP : Linux kernel vulnerability (K17309)
High Nessus Plugin ID 97308
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionThe (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 provide inappropriate -EAGAIN return values, which allows remote attackers to cause a denial of service (EPOLLET epoll application read outage) via an incorrect checksum in a UDP packet, a different vulnerability than CVE-2015-5364. (CVE-2015-5366)
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K17309.