CVE-2007-5501

Linux Kernel - Resource Management Error

Title source: rule

Description

The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows remote attackers to cause a denial of service (crash) via crafted ACK responses that trigger a NULL pointer dereference.

References (24)

... and 4 more

Scores

EPSS 0.0748
EPSS Percentile 91.6%

Classification

CWE
CWE-399
Status draft

Affected Products (50)

linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
linux/linux_kernel
... and 35 more

Timeline

Published Nov 15, 2007
Tracked Since Feb 18, 2026