CVE-2008-4113

Priority
Low
Description
The sctp_getsockopt_hmac_ident function in net/sctp/socket.c in the Stream
Control Transmission Protocol (sctp) implementation in the Linux kernel
before 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an
untrusted length value to limit copying of data from kernel memory, which
allows local users to obtain sensitive information via a crafted
SCTP_HMAC_IDENT IOCTL request involving the sctp_getsockopt function.
References
Assigned-to
smb_tp
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):released (2.6.24-21.43)
Patches:
Patch:http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.26.y.git;a=commit;h=d97240552cd98c4b07322f30f66fd9c3ba4171de
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:19:05 UTC (commit 5347)