PublicDate: 2007-11-15 20:46:00 UTC
Candidate: CVE-2007-5501
References:
 https://ubuntu.com/security/notices/USN-574-1
 https://ubuntu.com/security/notices/USN-558-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5501
Description:
 The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux
 kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows
 remote attackers to cause a denial of service (crash) via crafted ACK
 responses that trigger a NULL pointer dereference.
Ubuntu-Description:
Notes:
 kees> Ilpo Järvinen (original reporter) confirms that this is not actually exploitable
Bugs:
Priority: negligible
Discovered-by:
Assigned-to: kees
CVSS: 
upstream_linux-source-2.6.22: released (2.6.23.7)
gutsy_linux-source-2.6.22: not-affected