net/ipv4/route.c in the Linux kernel 4.13-rc1 through 4.13-rc6 is too late to check for a NULL fi field when RTM_F_FIB_MATCH is set, which allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via crafted system calls. NOTE: this does not affect any stable release.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 4.13-rc1 (including) | 4.13-rc1 (including) |
Linux_kernel | Linux | 4.13-rc2 (including) | 4.13-rc2 (including) |
Linux_kernel | Linux | 4.13-rc3 (including) | 4.13-rc3 (including) |
Linux_kernel | Linux | 4.13-rc4 (including) | 4.13-rc4 (including) |
Linux_kernel | Linux | 4.13-rc5 (including) | 4.13-rc5 (including) |
Linux_kernel | Linux | 4.13-rc6 (including) | 4.13-rc6 (including) |