Linux Kernel DCCP Implementation Memory Corruption Vulnerability

Linux Kernel DCCP Implementation Memory Corruption Vulnerability

CVE-2017-2634 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

It was found that the Linux kernel's Datagram Congestion Control Protocol (DCCP) implementation before 2.6.22.17 used the IPv4-only inet_sk_rebuild_header() function for both IPv4 and IPv6 DCCP connections, which could result in memory corruptions. A remote attacker could use this flaw to crash the system.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.