Required CVE Record Information
Description
Integer overflow in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of service (kernel crash) via a cmsg_len that contains a -1, which leads to a buffer overflow.
References 5 Total
- securitytrap.com: 20041215 fun with linux kernel mailing-list
- marc.info: 20041215 [USN-47-1] Linux kernel vulnerabilities mailing-list
- http://www.guninski.com/where_do_you_want_billg_to_go_today_2.html
- securityfocus.com: 11956 vdb-entry
- exchange.xforce.ibmcloud.com: linux-ipoptionsget-dos(18522) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- securitytrap.com: 20041215 fun with linux kernel mailing-listx_transferred
- marc.info: 20041215 [USN-47-1] Linux kernel vulnerabilities mailing-listx_transferred
- http://www.guninski.com/where_do_you_want_billg_to_go_today_2.html x_transferred
- securityfocus.com: 11956 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: linux-ipoptionsget-dos(18522) vdb-entryx_transferred