Rapid7 Vulnerability & Exploit Database

USN-558-1: Linux kernel vulnerabilities

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

USN-558-1: Linux kernel vulnerabilities

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

11/15/2007

Created

07/25/2018

Added

05/06/2013

Modified

07/09/2020

Description

The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows remote attackers to cause a denial of service (crash) via crafted ACK responses that trigger a NULL pointer dereference.

Solution(s)

ubuntu-upgrade-linux-image-2-6-20-16-386
ubuntu-upgrade-linux-image-2-6-20-16-generic
ubuntu-upgrade-linux-image-2-6-20-16-hppa32
ubuntu-upgrade-linux-image-2-6-20-16-hppa64
ubuntu-upgrade-linux-image-2-6-20-16-itanium
ubuntu-upgrade-linux-image-2-6-20-16-lowlatency
ubuntu-upgrade-linux-image-2-6-20-16-mckinley
ubuntu-upgrade-linux-image-2-6-20-16-powerpc
ubuntu-upgrade-linux-image-2-6-20-16-powerpc-smp
ubuntu-upgrade-linux-image-2-6-20-16-powerpc64-smp
ubuntu-upgrade-linux-image-2-6-20-16-server
ubuntu-upgrade-linux-image-2-6-20-16-server-bigiron
ubuntu-upgrade-linux-image-2-6-20-16-sparc64
ubuntu-upgrade-linux-image-2-6-20-16-sparc64-smp
ubuntu-upgrade-linux-image-2-6-22-14-386
ubuntu-upgrade-linux-image-2-6-22-14-cell
ubuntu-upgrade-linux-image-2-6-22-14-generic
ubuntu-upgrade-linux-image-2-6-22-14-hppa32
ubuntu-upgrade-linux-image-2-6-22-14-hppa64
ubuntu-upgrade-linux-image-2-6-22-14-itanium
ubuntu-upgrade-linux-image-2-6-22-14-lpia
ubuntu-upgrade-linux-image-2-6-22-14-lpiacompat
ubuntu-upgrade-linux-image-2-6-22-14-mckinley
ubuntu-upgrade-linux-image-2-6-22-14-powerpc
ubuntu-upgrade-linux-image-2-6-22-14-powerpc-smp
ubuntu-upgrade-linux-image-2-6-22-14-powerpc64-smp
ubuntu-upgrade-linux-image-2-6-22-14-rt
ubuntu-upgrade-linux-image-2-6-22-14-server
ubuntu-upgrade-linux-image-2-6-22-14-sparc64
ubuntu-upgrade-linux-image-2-6-22-14-sparc64-smp
ubuntu-upgrade-linux-image-2-6-22-14-ume
ubuntu-upgrade-linux-image-2-6-22-14-virtual
ubuntu-upgrade-linux-image-2-6-22-14-xen

References

https://attackerkb.com/topics/cve-2006-6058
25504
25838
25904
26337
26474
26477
26943
CVE - 2006-6058
CVE - 2007-4133
CVE - 2007-4567
CVE - 2007-4849
CVE - 2007-4997
CVE - 2007-5093
CVE - 2007-5500
CVE - 2007-5501
DSA-1378
DSA-1381
DSA-1428
DSA-1436
DSA-1503
DSA-1504
OVAL10451
OVAL10494
OVAL10596
OVAL11083
OVAL7474
OVAL9868
RHSA-2007:0672
RHSA-2007:0940
RHSA-2007:0993
RHSA-2007:1104
RHSA-2008:0055
RHSA-2008:0275
RHSA-2008:0972
RHSA-2010:0019
RHSA-2010:0053
RHSA-2010:0095
SUSE-SA:2007:059
SUSE-SA:2007:063
SUSE-SA:2007:064
SUSE-SA:2008:006
SUSE-SA:2008:013
SUSE-SA:2008:030
SUSE-SA:2008:032
USN-558-1
36925
38247
38547
38548
39171

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

USN-558-1: Linux kernel vulnerabilities

USN-558-1: Linux kernel vulnerabilities

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.