VYPR
High severity7.8NVD Advisory· Published Feb 18, 2017· Updated Jun 17, 2026

CVE-2017-6074

CVE-2017-6074

Description

The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service (double free) via an application that makes an IPV6_RECVPKTINFO setsockopt system call.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

89

Patches

Vulnerability mechanics

References

25

News mentions

0

No linked articles in our index yet.