VYPR
Critical severity9.8NVD Advisory· Published Aug 29, 2017· Updated Jun 17, 2026

CVE-2017-13715

CVE-2017-13715

Description

The __skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel before 4.3 does not ensure that n_proto, ip_proto, and thoff are initialized, which allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a single crafted MPLS packet.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Linux/Kernel2 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=4.2,<4.3
    • (no CPE)range: <4.3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.