The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCP_MAXSEG (aka MSS) values, which allows local users to cause a denial of service (OOPS) via a setsockopt call that specifies a small value, leading to a divide-by-zero error or incorrect use of a signed integer.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-11-20T21:00:00
Updated: 2011-01-15T10:00:00
Reserved: 2010-11-04T00:00:00
Link: CVE-2010-4165
JSON object: View
NVD Information
Status : Modified
Published: 2010-11-22T13:00:19.300
Modified: 2023-02-13T04:27:36.907
Link: CVE-2010-4165
JSON object: View
Redhat Information
No data.
CWE