CVE-2012-6657
EPSS 0.12%linux-2.6 - security update
Published: 9/28/2014Modified: 4/28/2026
Description
The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5.7 does not ensure that a keepalive action is associated with a stream socket, which allows local users to cause a denial of service (system crash) by leveraging the ability to create a raw socket.
Affected packages (2)
- Debian/linuxfrom 0, < 3.6.4-1
- Debian/linux-2.6from 0, < 2.6.32-48squeeze9