Denial of Service Vulnerability in Linux Kernel's udp_recvmsg and udpv6_recvmsg Functions

Denial of Service Vulnerability in Linux Kernel's udp_recvmsg and udpv6_recvmsg Functions

CVE-2015-5366 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 provide inappropriate -EAGAIN return values, which allows remote attackers to cause a denial of service (EPOLLET epoll application read outage) via an incorrect checksum in a UDP packet, a different vulnerability than CVE-2015-5364.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.