6.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:C/A:C
0.001 Low
EPSS
Percentile
26.5%
The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels 2.4 up
to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain
circumstances, which allows local users to corrupt kernel memory or cause a
denial of service (crash) by triggering a free of non-allocated memory.