View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2012-6704 severity moderate: SUSE including 101 source package names (kernel-bigmem-3.0.101-94.1, kernel-bigmem-base-3.0.101-94.1, …), 509 product×package rows across 84 product lines (HPE Helion OpenStack 8, SUSE CaaS Platform 4.0, … (84 product lines)): Known Not Affected 330, Fixed 179.
The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sk_sndbuf and sk_rcvbuf, which allows local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact by leveraging the CAP_NET_ADMIN capability for a crafted setsockopt system call with the (1) SO_SNDBUF or (2) SO_RCVBUF option.