A vulnerability was found in the Linux kernel. A remote attacker that can send packets containing malicious IP options could cause the ipv4_pktinfo_prepare() function to drop/free the dst. This could result in a system crash or possible privilege escalation if the attacker is able to place crafted objects in this dropped location. Upstream patch: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=34b2cef20f19c87999fff3da4071e66937db9644 References: http://seclists.org/oss-sec/2017/q1/414 https://patchwork.ozlabs.org/patch/724136/
Fix in 4.9.11 onward