CVE-2010-3432 (retired)

Priority
Description
The sctp_packet_config function in net/sctp/output.c in the Linux kernel
before 2.6.35.6 performs extraneous initializations of packet data
structures, which allows remote attackers to cause a denial of service
(panic) via a certain sequence of SCTP traffic.
Ubuntu-Description
Thomas Dreibholz discovered that SCTP did not correctly handle appending
packet chunks. A remote attacker could send specially crafted traffic to
crash the system, leading to a denial of service.
Assigned-to
bradf
Package
Upstream:released (2.6.36~rc5)
Package
Upstream:released (2.6.36~rc5)
Package
Upstream:released (2.6.36~rc5)
Package
Upstream:released (2.6.36~rc5)
More Information

Updated: 2019-03-26 11:53:04 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)