Описание
Integer overflow in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of service (kernel crash) via a cmsg_len that contains a -1, which leads to a buffer overflow.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| linux-2.6 | not-affected | package | ||
| kernel-source-2.6.8 | fixed | 2.6.8-11 | sarge | package |
| kernel-source-2.4.27 | not-affected | package |
EPSS
Процентиль: 22%
0.00073
Низкий
Связанные уязвимости
nvd
почти 21 год назад
Integer overflow in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of service (kernel crash) via a cmsg_len that contains a -1, which leads to a buffer overflow.
github
больше 3 лет назад
Integer overflow in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of service (kernel crash) via a cmsg_len that contains a -1, which leads to a buffer overflow.
EPSS
Процентиль: 22%
0.00073
Низкий