CVEs-PoC/2013/CVE-2013-4162.md

CVE-2013-4162

Description

The udp_v6_push_pending_frames function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service (BUG and system crash) via a crafted application that uses the UDP_CORK option in a setsockopt system call.

POC

Reference

• http://www.ubuntu.com/usn/USN-1938-1

Github

No PoCs found on GitHub currently.