2 matches found
The vulnerability of the tcp_add_backlog() function in the net/ipv4/tcp_ipv4.c module, which is part of the Linux operating system’s IPv4 protocol implementation, allows a hacker to cause a service failure.
The vulnerability of the tcpaddbacklog function in the net/ipv4/tcpipv4.c module, which is part of the Linux operating system’s IPv4 protocol implementation, involves integer overflow or cyclic shift vulnerabilities. Exploiting this vulnerability could allow a remote attacker to cause a service...
kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()
A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...