A flaw was found in the Linux kernel’s net/ipv6/ip6mr.c function where setting a specific socket option can cause an inet_csk_listen_stop general protection fault. An attacker with CAP_NET_ADMIN style privileges inside a container, can crash the system or execute arbitrary code when issuing a specially crafted call to configure ipv6 multicast routing.