initialize rcv_mss to TCP_MIN_MSS instead of 0 in kernel-net-ipv4 CVE-2017-14106
Tracked by Jolla
(Rejected)
asked 2017-09-19 09:35:21 +0200
This post is a wiki. Anyone with karma >75 is welcome to improve it.
The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path. CVSS v3 Base Score: 5.5 Medium
Patch is available (upstream patch equal to 3.2-backport, so kernel-3.4-sbj should be no problem to patch) .
File affected: kernel-adaptation-sbj-3.4.108.20161101.1/net/ipv4/tcp.c lines 2131-2136
Thanks for sharing April 2018 calendar printableApril 2018 calendar template
mnojverma ( 2017-12-20 09:06:18 +0200 )edit