← back
CVE-2007-5501

CVE-2007-5501

EPSS 3.8%
The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows remote attackers to cause a denial of service (crash) via crafted ACK responses that trigger a NULL pointer dereference.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=96a2d41a3e495734b63bff4e5dd0112741b93b38http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00002.htmlhttp://lwn.net/Articles/258947/http://secunia.com/advisories/27664http://secunia.com/advisories/27703http://secunia.com/advisories/27888http://secunia.com/advisories/27919http://secunia.com/advisories/27922http://secunia.com/advisories/28170http://secunia.com/advisories/28706http://secunia.com/advisories/29245https://exchange.xforce.ibmcloud.com/vulnerabilities/38548