Published: 22/11/2010 Updated: 13/02/2023

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 695

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

The sctp_packet_config function in net/sctp/output.c in the Linux kernel prior to 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote malicious users to cause a denial of service (panic) via a certain sequence of SCTP traffic.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
opensuse opensuse 11.3
suse linux enterprise real time extension 11
debian debian linux 5.0
canonical ubuntu linux 10.10
canonical ubuntu linux 9.04
canonical ubuntu linux 9.10
canonical ubuntu linux 8.04
canonical ubuntu linux 10.04
canonical ubuntu linux 6.06

Multiple kernel flaws ...

An attacker could send crafted input to the kernel and cause it to crash ...

Multiple security issues fixed ...

Multiple kernel flaws ...

CWE-20 http://www.securityfocus.com/bid/43480 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.6 https://bugzilla.redhat.com/show_bug.cgi?id=637675 http://marc.info/?l=oss-security&m=128534569803598&w=2 http://marc.info/?l=linux-netdev&m=128453869227715&w=3 http://marc.info/?l=oss-security&m=128537701808336&w=2 http://www.redhat.com/support/errata/RHSA-2010-0936.html http://secunia.com/advisories/42400 http://www.ubuntu.com/usn/USN-1000-1 http://www.vupen.com/english/advisories/2010/3113 http://www.redhat.com/support/errata/RHSA-2010-0842.html http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html http://www.redhat.com/support/errata/RHSA-2011-0004.html http://www.redhat.com/support/errata/RHSA-2010-0958.html http://www.debian.org/security/2010/dsa-2126 http://www.vupen.com/english/advisories/2011/0012 http://secunia.com/advisories/42778 http://www.vupen.com/english/advisories/2011/0024 http://secunia.com/advisories/42789 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html http://www.vupen.com/english/advisories/2011/0298 http://secunia.com/advisories/46397 http://www.vmware.com/security/advisories/VMSA-2011-0012.html http://www.securityfocus.com/archive/1/520102/100/0/threaded http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4bdab43323b459900578b200a4b8cf9713ac8fab https://nvd.nist.gov https://usn.ubuntu.com/1083-1/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-3432

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect