Unrated severityNVD Advisory· Published Aug 17, 2006· Updated Apr 16, 2026
CVE-2006-3121
CVE-2006-3121
Description
The peel_netstring function in cl_netstring.c in the heartbeat subsystem in High-Availability Linux before 1.2.5, and 2.0 before 2.0.7, allows remote attackers to cause a denial of service (crash) via the length parameter in a heartbeat message.
Affected products
8cpe:2.3:a:high_availability_linux_project:heartbeat:1.2.3:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:high_availability_linux_project:heartbeat:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:high_availability_linux_project:heartbeat:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:high_availability_linux_project:heartbeat:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:high_availability_linux_project:heartbeat:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:high_availability_linux_project:heartbeat:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:high_availability_linux_project:heartbeat:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:high_availability_linux_project:heartbeat:2.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:high_availability_linux_project:heartbeat:2.0.6:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- www.debian.org/security/2006/dsa-1151nvdPatch
- www.linux-ha.org/SecurityIssuesnvdPatch
- www.securityfocus.com/bid/19516nvdPatch
- secunia.com/advisories/21505nvdVendor Advisory
- secunia.com/advisories/21511nvdVendor Advisory
- secunia.com/advisories/21518nvdVendor Advisory
- secunia.com/advisories/21521nvdVendor Advisory
- secunia.com/advisories/21629nvdVendor Advisory
- www.vupen.com/english/advisories/2006/3288nvdVendor Advisory
- security.gentoo.org/glsa/glsa-200608-23.xmlnvd
- www.linux-ha.org/_cache/SecurityIssues__sec03.txtnvd
- www.mandriva.com/security/advisoriesnvd
- www.ubuntu.com/usn/usn-335-1nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28396nvd
News mentions
0No linked articles in our index yet.