The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel prior to 4.11, and 4.9.x prior to 4.9.36, allows remote malicious users to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
debian debian linux 8.0 |
||
debian debian linux 7.0 |
||
arista eos 4.20.1fx-virtual-router |
||
f5 arx |
||
suse linux enterprise server 11 |
||
suse linux enterprise software development kit 12 |
||
suse linux enterprise debuginfo 11 |
||
suse linux enterprise desktop 12 |
||
suse linux enterprise server 12 |
||
suse linux enterprise real time extension 11 |
||
suse linux enterprise software development kit 11 |
||
suse linux enterprise high availability 12 |
||
opensuse leap 42.3 |
||
suse linux enterprise module for public cloud 12 |
||
suse openstack cloud 6 |
||
suse linux enterprise point of sale 11 |
||
suse linux enterprise high availability extension 11 |
||
suse linux enterprise real time extension 12 |
||
suse linux enterprise live patching 12 |
||
suse linux enterprise workstation extension 12 |
||
suse caas platform |
||
openstack cloud magnum orchestration 7 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 12.04 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux for real time 7 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux for real time for nfv 7 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux server tus 7.3 |
||
redhat enterprise linux server aus 7.3 |
||
redhat enterprise linux server aus 7.4 |
||
redhat enterprise linux server tus 7.4 |
||
redhat enterprise linux eus 7.3 |
||
redhat enterprise linux eus 7.4 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux eus 7.6 |
||
redhat mrg realtime 2.0 |
||
redhat enterprise linux server aus 7.7 |
||
redhat enterprise linux server tus 7.7 |
||
redhat enterprise linux eus 7.7 |