Vulnerabilities

CVE-2012-6657

by Fred · 28/09/2014

The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5.7 does not ensure that a keepalive action is associated with a stream socket, which allows local users to cause a denial of service (system crash) by leveraging the ability to create a raw socket.

Date published : 2014-09-28

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3e10986d1d698140747fcfc2761ec9cb64c1d582

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.5.7

Related

Tags: Cybersecurity Alert