Rapid7 Vulnerability & Exploit Database

USN-574-1: Linux kernel vulnerabilities

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

USN-574-1: Linux kernel vulnerabilities

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

11/15/2007

Created

07/25/2018

Added

05/06/2013

Modified

07/09/2020

Description

The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows remote attackers to cause a denial of service (crash) via crafted ACK responses that trigger a NULL pointer dereference.

Solution(s)

ubuntu-upgrade-linux-image-2-6-20-16-386
ubuntu-upgrade-linux-image-2-6-20-16-generic
ubuntu-upgrade-linux-image-2-6-20-16-hppa32
ubuntu-upgrade-linux-image-2-6-20-16-hppa64
ubuntu-upgrade-linux-image-2-6-20-16-itanium
ubuntu-upgrade-linux-image-2-6-20-16-lowlatency
ubuntu-upgrade-linux-image-2-6-20-16-mckinley
ubuntu-upgrade-linux-image-2-6-20-16-powerpc
ubuntu-upgrade-linux-image-2-6-20-16-powerpc-smp
ubuntu-upgrade-linux-image-2-6-20-16-powerpc64-smp
ubuntu-upgrade-linux-image-2-6-20-16-server
ubuntu-upgrade-linux-image-2-6-20-16-server-bigiron
ubuntu-upgrade-linux-image-2-6-20-16-sparc64
ubuntu-upgrade-linux-image-2-6-20-16-sparc64-smp
ubuntu-upgrade-linux-image-2-6-22-14-386
ubuntu-upgrade-linux-image-2-6-22-14-cell
ubuntu-upgrade-linux-image-2-6-22-14-generic
ubuntu-upgrade-linux-image-2-6-22-14-hppa32
ubuntu-upgrade-linux-image-2-6-22-14-hppa64
ubuntu-upgrade-linux-image-2-6-22-14-itanium
ubuntu-upgrade-linux-image-2-6-22-14-lpia
ubuntu-upgrade-linux-image-2-6-22-14-lpiacompat
ubuntu-upgrade-linux-image-2-6-22-14-mckinley
ubuntu-upgrade-linux-image-2-6-22-14-powerpc
ubuntu-upgrade-linux-image-2-6-22-14-powerpc-smp
ubuntu-upgrade-linux-image-2-6-22-14-powerpc64-smp
ubuntu-upgrade-linux-image-2-6-22-14-rt
ubuntu-upgrade-linux-image-2-6-22-14-server
ubuntu-upgrade-linux-image-2-6-22-14-sparc64
ubuntu-upgrade-linux-image-2-6-22-14-sparc64-smp
ubuntu-upgrade-linux-image-2-6-22-14-ume
ubuntu-upgrade-linux-image-2-6-22-14-virtual
ubuntu-upgrade-linux-image-2-6-22-14-xen

References

https://attackerkb.com/topics/cve-2006-6058
24845
25504
25838
26337
26474
26477
26605
26701
26880
26943
27280
27497
27694
CVE - 2006-6058
CVE - 2007-3107
CVE - 2007-4567
CVE - 2007-4849
CVE - 2007-4997
CVE - 2007-5093
CVE - 2007-5500
CVE - 2007-5501
CVE - 2007-5966
CVE - 2007-6063
CVE - 2007-6151
CVE - 2007-6206
CVE - 2007-6417
CVE - 2008-0001
DSA-1378
DSA-1381
DSA-1428
DSA-1436
DSA-1479
DSA-1503
DSA-1504
37118
44120
OVAL10494
OVAL10596
OVAL10719
OVAL10774
OVAL10971
OVAL11083
OVAL6514
OVAL7474
OVAL8125
OVAL8920
OVAL9709
OVAL9846
OVAL9868
OVAL9936
RHSA-2007:0595
RHSA-2007:0672
RHSA-2007:0993
RHSA-2007:1104
RHSA-2008:0055
RHSA-2008:0089
RHSA-2008:0154
RHSA-2008:0211
RHSA-2008:0275
RHSA-2008:0585
RHSA-2008:0787
RHSA-2008:0885
RHSA-2008:0972
RHSA-2008:0973
RHSA-2009:1193
RHSA-2010:0019
RHSA-2010:0053
RHSA-2010:0095
SUSE-SA:2007:051
SUSE-SA:2007:053
SUSE-SA:2007:059
SUSE-SA:2007:063
SUSE-SA:2007:064
SUSE-SA:2008:006
SUSE-SA:2008:007
SUSE-SA:2008:013
SUSE-SA:2008:017
SUSE-SA:2008:030
SUSE-SA:2008:032
USN-574-1
35383
38247
38547
38548
38841
39171
39672

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

USN-574-1: Linux kernel vulnerabilities

USN-574-1: Linux kernel vulnerabilities

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.