Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 171886 (CVE-2007-1592) - Kernel: ipv6_fl_socklist is inadvertently shared (CVE-2007-1592)
Summary: Kernel: ipv6_fl_socklist is inadvertently shared (CVE-2007-1592)
Alias: CVE-2007-1592
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
Whiteboard: [linux <][linux >= 2.6.17 <...
Depends on:
Reported: 2007-03-23 07:15 UTC by Sune Kloppenborg Jeppesen (RETIRED)
Modified: 2013-09-05 02:52 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2007-03-23 07:15:01 UTC
[IPV6]: ipv6_fl_socklist is inadvertently shared.
 The ipv6_fl_socklist from listening socket is inadvertently shared
 with new socket created for connection.  This leads to a variety of
 interesting, but fatal, bugs. For example, removing one of the
 sockets may lead to the other socket's encountering a page fault
 when the now freed list is referenced.
 The fix is to not share the flow label list with the new socket.
 Signed-off-by: Masayuki Nakagawa <>
 Signed-off-by: David S. Miller <>
Comment 1 unnamedrambler 2008-03-08 17:25:43 UTC
[linux <] 202e363b00807107da624289eb2257ea32b29420
[linux >= 2.6.17 <] c92fc42fc79aa7c77c90d91c69144f2d9b94a71b
also in 2.6.21  d35690beda1429544d46c8eb34b2e3a8c37ab299

[gp < 2.6.20-5][gentoo < 2.6.20-r4]