TCP option length over 127 bytes can cause infinit loop inside netfilter if options are used in filtering rules.
vulners.com/securityvulns/securityvulns:doc:6425