Security Advisory

CVE-2014-9715

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-05-27 10:00:00

Last updated 2024-08-06 13:55:04

Assigner mitre

State PUBLISHED

Description

include/net/netfilter/nf_conntrack_extend.h in the netfilter subsystem in the Linux kernel before 3.14.5 uses an insufficiently large data type for certain extension data, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via outbound network traffic that triggers extension loading, as demonstrated by configuring a PPTP tunnel in a NAT environment.

← Browse all CVEs View on cve.org ↗