The vulnerability of the dccp_v6_request_recv_sock function in the net/dccp/ipv6.c file of the Linux kernel allows a attacker to cause a service failure or exert other effects.

🗓️ 15 Jun 2017 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Vulnerability in dccp_v6_request_recv_sock enables local attacker to cause service failure.

Reporter	Title	Published	Views	Family All 230
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in Linux kernel	16 Jun 201822:04	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM	18 Jun 201801:40	–	ibm
Amazon	Medium: kernel	22 Jun 201700:00	–	amazon
Tenable Nessus	Amazon Linux AMI : kernel (ALAS-2017-846)	23 Jun 201700:00	–	nessus
Tenable Nessus	CentOS 7 : kernel (CESA-2017:1842) (Stack Clash)	25 Aug 201700:00	–	nessus
Tenable Nessus	CentOS 6 : kernel (CESA-2018:1854) (Spectre)	22 Jun 201800:00	–	nessus
Tenable Nessus	Debian DLA-993-2 : linux regression update (Stack Clash)	20 Jun 201700:00	–	nessus
Tenable Nessus	Debian DSA-3886-1 : linux - security update (Stack Clash)	20 Jun 201700:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1500)	13 May 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1504)	13 May 201900:00	–	nessus

Source	Link
git	www.git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/
securityfocus	www.securityfocus.com/bid/98586
github	www.github.com/torvalds/linux/commit/83eaddab4378db256d00d295bda6ca997cd13a52
patchwork	www.patchwork.ozlabs.org/patch/760370/
wiki	www.wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-28.001
web	www.web.nvd.nist.gov/view/vuln/detail

18 Mar 2023 00:00Current

6.4Medium risk

Vulners AI Score6.4

CVSS 27.2

CVSS 37.3

EPSS0.00074

datagram congestion control protocol issue local attacker service failure data processing