Denial of Service Vulnerability in Linux Kernel TCP Fast Open Implementation

Denial of Service Vulnerability in Linux Kernel TCP Fast Open Implementation

CVE-2015-3332 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

A certain backport in the TCP Fast Open implementation for the Linux kernel before 3.18 does not properly maintain a count value, which allow local users to cause a denial of service (system crash) via the Fast Open feature, as demonstrated by visiting the chrome://flags/#enable-tcp-fast-open URL when using certain 3.10.x through 3.16.x kernel builds, including longterm-maintenance releases and ckt (aka Canonical Kernel Team) builds.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.