CVE-2010-4165
CVSS v2.0
4.9 (Medium)
EPSS
0.04 % (0th)
Affected Products
5
Advisories
15
The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCP_MAXSEG (aka MSS) values, which allows local users to cause a denial of service (OOPS) via a setsockopt call that specifies a small value, leading to a divide-by-zero error or incorrect use of a signed integer.
Weaknesses
- CWE-369
- Divide By Zero
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2010-11-22 13:00:19
(14 years ago) - Updated Date
-
2023-02-13 04:27:36
(19 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...