Uninitialized Variable Vulnerability in Linux Kernel's __skb_flow_dissect Function

Uninitialized Variable Vulnerability in Linux Kernel's __skb_flow_dissect Function

CVE-2017-13715 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The __skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel before 4.3 does not ensure that n_proto, ip_proto, and thoff are initialized, which allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a single crafted MPLS packet.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.