Vulnerability Description
net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6_fl_socklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service (OOPS) or double free by opening a listening IPv6 socket, attaching a flow label, and connecting to that socket.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 2.6.0 |
Related Weaknesses (CWE)
References
- http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=233478
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=
- http://lists.suse.com/archive/suse-security-announce/2007-May/0001.html
- http://marc.info/?l=linux-netdev&m=117406721731891&w=2
- http://rhn.redhat.com/errata/RHBA-2007-0304.htmlVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2007-0436.htmlVendor Advisory
- http://secunia.com/advisories/24618Vendor Advisory
- http://secunia.com/advisories/24777Vendor Advisory
- http://secunia.com/advisories/25078Vendor Advisory
- http://secunia.com/advisories/25099Vendor Advisory
- http://secunia.com/advisories/25226Vendor Advisory
- http://secunia.com/advisories/25288Vendor Advisory
- http://secunia.com/advisories/25392Vendor Advisory
- http://secunia.com/advisories/25630Vendor Advisory
- http://secunia.com/advisories/25683Vendor Advisory
FAQ
What is CVE-2007-1592?
CVE-2007-1592 is a vulnerability with a CVSS score of 4.9 (MEDIUM). net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6_fl_socklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service...
How severe is CVE-2007-1592?
CVE-2007-1592 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1592?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.