CVE-2017-6214

Published: Feb 23, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service (infinite loop and soft lockup) via vectors involving a TCP packet with the URG flag.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://source.android.com/security/bulletin/2017-09-01

x_refsource_CONFIRM

96421

vdb-entry

x_refsource_BID

RHSA-2017:1615

vendor-advisory

x_refsource_REDHAT

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ccf7abb93af09ad0868ae9033d1ca8108bdaec82

x_refsource_CONFIRM

RHSA-2017:1647

vendor-advisory

x_refsource_REDHAT

RHSA-2017:1616

vendor-advisory

x_refsource_REDHAT

RHSA-2017:1372

vendor-advisory

x_refsource_REDHAT

1037897

vdb-entry

x_refsource_SECTRACK

DSA-3804

vendor-advisory

x_refsource_DEBIAN

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.11

x_refsource_CONFIRM

https://github.com/torvalds/linux/commit/ccf7abb93af09ad0868ae9033d1ca8108bdaec82

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-6214

Description

Affected Products

References