ubuntu · CVE-2012-2663

Quick triage

Priority: low Published: 2014-02-15 14:57:00 UTC Updated: 2025-08-04 19:24:10 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2012-2663 low priority: Ubuntu including 1 source packages (iptables), 22 status rows across 22 suites (artful, bionic, cosmic, disco, eoan, focal, hardy, lucid, natty, oneiric, precise, quantal, raring, saucy, trusty, upstream, utopic, vivid, wily, xenial, yakkety, zesty): ignored 21, needed 1.

Description:

extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant.

cvelogic Threat Intelligence