asked 2017-04-03 23:03:05 +0300
This post is a wiki. Anyone with karma >75 is welcome to improve it.
udp: properly support MSG_PEEK with truncated buffers
Description ( NVD ): udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.