Skip to main content

Divide By Zero

CVE-2010-4165

Severity Medium
Score 4.9/10

Summary

The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCP_MAXSEG (aka MSS) values, which allows local users to cause a denial of service (OOPS) via a setsockopt call that specifies a small value, leading to a divide-by-zero error or incorrect use of a signed integer.

  • LOW
  • LOCAL
  • NONE
  • NONE
  • NONE
  • COMPLETE

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

  • Published