The tr_rx function in ibmtr.c for Linux kernel 2.6.19 assigns the wrong flag to the ip_summed field, which allows remote malicious users to cause a denial of service (memory corruption) via crafted packets that cause the kernel to interpret another field as an offset.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 2.6.19 |