Back to search
CVE-2004-0592
Published: Jan 23, 2006
Modified: Aug 8, 2024
PUBLISHED
Description
The tcp_find_option function of the netfilter subsystem for IPv6 in the SUSE Linux 2.6.5 kernel with USAGI patches, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large option length that produces a negative integer after a casting operation to the char type, a similar flaw to CVE-2004-0626.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20040703 Re: SUSE Security Announcement: kernel (SUSE-SA:2004:020)
mailing-list
x_refsource_FULLDISC
linux-kernel-tcpfindoption-dos(43137)
vdb-entry
x_refsource_XF
SUSE-SA:2004:020
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now