Kernel Panic Vulnerability Caused by Improper mbuf Handling in IPv6 Hop-by-Hop Options

Kernel Panic Vulnerability Caused by Improper mbuf Handling in IPv6 Hop-by-Hop Options

CVE-2020-7462 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In 11.4-PRERELEASE before r360733 and 11.3-RELEASE before p13, improper mbuf handling in the kernel causes a use-after-free bug by sending IPv6 Hop-by-Hop options over the loopback interface. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.

Learn more about our Web Application Penetration Testing UK.