DEBIAN-CVE-2012-2663

See a problem?
Please try reporting it to the source first.
Source
https://security-tracker.debian.org/tracker/CVE-2012-2663
Import Source
https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2012-2663.json
JSON Data
https://api.osv.dev/v1/vulns/DEBIAN-CVE-2012-2663
Upstream
Published
2014-02-15T14:57:07.423Z
Modified
2025-11-20T10:10:58.956238Z
Summary
[none]
Details

extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant.

References

Affected packages

Debian:11 / iptables

Package

Name
iptables
Purl
pkg:deb/debian/iptables?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.8.7-1
1.8.8-1
1.8.9-1
1.8.9-2
1.8.10-1
1.8.10-2
1.8.10-3
1.8.10-4
1.8.11-1
1.8.11-2
1.8.11-3

Ecosystem specific 

{
    "urgency": "unimportant"
}

Debian:12 / iptables

Package

Name
iptables
Purl
pkg:deb/debian/iptables?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.8.9-2
1.8.10-1
1.8.10-2
1.8.10-3
1.8.10-4
1.8.11-1
1.8.11-2
1.8.11-3

Ecosystem specific 

{
    "urgency": "unimportant"
}

Debian:13 / iptables

Package

Name
iptables
Purl
pkg:deb/debian/iptables?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.8.11-2
1.8.11-3

Ecosystem specific 

{
    "urgency": "unimportant"
}

Debian:14 / iptables

Package

Name
iptables
Purl
pkg:deb/debian/iptables?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.8.11-2
1.8.11-3

Ecosystem specific 

{
    "urgency": "unimportant"
}