Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A certain backport in the TCP Fast Open implementation for the Linux kernel before 3.18 does not properly maintain a count value, which allow local users to cause a denial of service (system crash) via the Fast Open feature, as demonstrated by visiting the chrome://flags/#enable-tcp-fast-open URL when using certain 3.10.x through 3.16.x kernel builds, including longterm-maintenance releases and ckt (aka Canonical Kernel Team) builds.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel TCP Fast Open 资源管理错误漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.17.8及之前版本的TCP Fast Open实现过程中的反向移植存在安全漏洞,该漏洞源于程序没有正确保存计数值。本地攻击者可借助Fast Open功能利用该漏洞造成拒绝服务(系统崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A