Linux kernel built with the TCP/IP networking support(CONFIG_INET) is vulnerable to a possible DoS attack. It could occur when accepting new TCP connection requests with 'SYN+FIN' flags instead of only 'SYN' flag set. A remote user/program could use this flaw to cause DoS by sending multiple connection requests to a machine. Upstream fix: ------------- -> https://git.kernel.org/linus/fdf5af0daf8019cec2396cdef8fb042d80fe71fa
Statement: This issue does not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2.
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2014:0433 https://rhn.redhat.com/errata/RHSA-2014-0433.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5.9 EUS - Server Only Via RHSA-2014:0772 https://rhn.redhat.com/errata/RHSA-2014-0772.html