CVE-2007-5501 (retired)

Priority
Description
The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux
kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows
remote attackers to cause a denial of service (crash) via crafted ACK
responses that trigger a NULL pointer dereference.
Notes
 kees> Ilpo J√§rvinen (original reporter) confirms that this is not actually exploitable
Assigned-to
kees
Package
Upstream:released (2.6.23.7)
More Information

Updated: 2019-08-23 08:26:39 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)