NuytsTech Security

CVE-2007-1730

by ·

Integer signedness error in the DCCP support in the do_dccp_getsockopt function in net/dccp/proto.c in Linux kernel 2.6.20 and later allows local users to read kernel memory or cause a denial of service (oops) via a negative optlen value.

Date published : 2007-03-28

http://www.securityfocus.com/bid/23162

http://www.securityfocus.com/archive/1/463934/100/0/threaded

Tags: