Linux Kernel TCP RTO Calculation Denial of Service
Release Date : 2010-02-22
Criticality level : Less critical
Impact : DoS
Where : From remote
Solution Status : Vendor Workaround
Operating System : Linux Kernel 2.6.x
A vulnerability has been reported in the Linux kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an error when calculating retransmission timeouts (RTO), which can be exploited to e.g. cause a high CPU and network load on an affected system.
Successful exploitation may require that TCP timestamps are disabled.
The vulnerability is reported in the 2.6.32.x kernel tree.
Fixed in the GIT repository.
Original Advisory :