A vulnerability was found in the Linux kernel’s netfilter system, in the synproxy TCP option parser. This issue allows the parser to read one byte beyond its intended limit when processing TCP options, which could lead to unexpected behavior or crash.
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.