The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
Denial Of Service
Ubuntu
Linux
Linux Kernel
NVD
GitHub
CVSS 3.1
7.8
EPSS
2.7%