The SCTP implementation in the Linux kernel up to and including 3.17.2 allows remote malicious users to cause a denial of service (system crash) via a malformed ASCONF chunk, related to net/sctp/sm_make_chunk.c and net/sctp/sm_statefuns.c.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
linux linux kernel |
||
redhat enterprise linux 5.0 |
||
redhat enterprise mrg 2.0 |
||
canonical ubuntu linux 12.04 |
||
debian debian linux 7.0 |
||
opensuse evergreen 11.4 |
||
suse linux enterprise workstation extension 12 |
||
suse suse linux enterprise server 12 |
||
suse linux enterprise software development kit 12 |
||
suse suse linux enterprise server 11 |
||
suse suse linux enterprise server 10 |
||
oracle linux 5 |
||
oracle linux 6 |
||
oracle linux 7 |
Vulmon