Skip to main content

CVE-2007-1730

Severity Medium
Score 6.6/10

Summary

Integer signedness error in the DCCP support in the do_dccp_getsockopt function in net/dccp/proto.c in Linux kernel 2.6.20 and later allows local users to read kernel memory or cause a denial of service (oops) via a negative optlen value.

  • LOW
  • LOCAL
  • NONE
  • NONE
  • COMPLETE
  • COMPLETE

References

Advisory Timeline

  • Published