The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.
References
Configurations
History
12 Feb 2023, 23:30
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
CWE | ||
Summary | The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket. |
02 Feb 2023, 21:17
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | An integer overflow vulnerability in ip6_find_1stfragopt() function was found. A local attacker that has privileges (of CAP_NET_RAW) to open raw socket can cause an infinite loop inside the ip6_find_1stfragopt() function. |
Information
Published : 2017-07-21 16:29
Updated : 2023-12-10 12:15
NVD link : CVE-2017-7542
Mitre link : CVE-2017-7542
CVE.ORG link : CVE-2017-7542
JSON object : View
Products Affected
linux
- linux_kernel