CVE-2004-0592

Name of the Vulnerable Software and Affected Versions SUSE Linux kernel version 2.6.5 with USAGI patches

Description The issue is related to the tcp find option function in the netfilter subsystem for IPv6. It allows remote attackers to cause a denial of service by consuming CPU resources through an infinite loop. This is achieved by sending a large option length that results in a negative integer after a casting operation to the char type.

Recommendations For SUSE Linux kernel version 2.6.5 with USAGI patches, consider applying a patch to fix the tcp find option function to prevent the infinite loop and subsequent denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.