CVE-2007-2172

Linux Kernel < 2.4.35 - Improper Input Validation

Title source: rule

Description

A typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 causes RTA_MAX to be used as an array size instead of RTN_MAX, which leads to an "out of bound access" by the (1) dn_fib_props (dn_fib.c, DECNet) and (2) fib_props (fib_semantics.c, IPv4) functions.

References (32)

[Vendor Advisory] http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.21-rc6

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2007-0488.html

[Third Party Advisory] http://secunia.com/advisories/25068

[Third Party Advisory] http://secunia.com/advisories/25288

[Third Party Advisory] http://secunia.com/advisories/25392

[Third Party Advisory] http://secunia.com/advisories/25838

[Third Party Advisory] http://secunia.com/advisories/26289

[Third Party Advisory] http://secunia.com/advisories/26450

[Third Party Advisory] http://secunia.com/advisories/26620

[Third Party Advisory] http://secunia.com/advisories/26647

[Third Party Advisory] http://secunia.com/advisories/27913

[Third Party Advisory] http://secunia.com/advisories/29058

[Third Party Advisory] http://secunia.com/advisories/33280

[Third Party Advisory] http://support.avaya.com/elmodocs2/security/ASA-2007-287.htm

[Third Party Advisory] http://www.debian.org/security/2007/dsa-1356

[Third Party Advisory] http://www.debian.org/security/2007/dsa-1363

[Third Party Advisory] http://www.debian.org/security/2008/dsa-1503

[Third Party Advisory] http://www.debian.org/security/2008/dsa-1504

[Vendor Advisory] http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.35

[Mailing List] http://www.mail-archive.com/git-commits-head%40vger.kernel.org/msg08269.html

... and 12 more

Scores

EPSS 0.0007

EPSS Percentile 21.5%

Classification

CWE

CWE-20

Status draft

Affected Products (18)

linux/linux_kernel < 2.4.35

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

debian/debian_linux

debian/debian_linux

... and 3 more

Timeline

Published Apr 22, 2007

Tracked Since Feb 18, 2026