CVE-2007-5501

Priority
Description
The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux
kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows
remote attackers to cause a denial of service (crash) via crafted ACK
responses that trigger a NULL pointer dereference.
Assigned-to
kees
Notes
keesIlpo Järvinen (original reporter) confirms that this is not actually exploitable
Package
Upstream:released (2.6.23.7)
More Information

Updated: 2020-01-29 19:29:30 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)