Linux: >> Linux Kernel >> 3.25 Security Vulnerabilities
A certain Debian patch to the IPv6 implementation in the Linux kernel 3.2.x through 3.2.63 does not properly validate arguments in ipv6_select_ident function calls, which allows local users to cause a denial of service (NULL pointer dereference and system crash) by leveraging (1) tun or (2) macvtap device access.
CVSS Score
4.9
EPSS Score
0.001
Published
2014-11-10