The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote malicious users to cause a denial of service (CPU consumption by infinite loop) via a large option length that produces a negative integer after a casting operation to the char type.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
conectiva linux 10 |
||
gentoo linux |
||
linux linux kernel 2.6.0 |
||
suse suse linux 9.0 |
||
suse suse linux 9.1 |
||
suse suse linux 8.0 |
||
suse suse linux 8.1 |
||
suse suse linux 8.2 |