The Linux kernel is prone to an out-of-bounds-access vulnerability. This issue occurs because the semantics for IPv4 Forwarding Information Base fail to adequately bounds-check user-supplied data before accessing an array. An attacker can exploit this issue to cause denial-of-service conditions. Arbitrary code execution may also be possible, but this has not been confirmed. Versions prior to 2.6.21-rc6 are vulnerable.
metadata: [linux < 2.6.21] a0ee18b9b7d3847976c6fb315c06a34fb296de0e [gp < 2.6.21-1]