CVE-2010-4526

Priority
Description
Race condition in the sctp_icmp_proto_unreachable function in
net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote
attackers to cause a denial of service (panic) via an ICMP unreachable
message to a socket that is already locked by a user, which causes the
socket to be freed and triggers list corruption, related to the
sctp_wait_for_connect function.
Ubuntu-Description
It was discovered that the ICMP stack did not correctly handle certain
unreachable messages. If a remote attacker were able to acquire a socket
lock, they could send specially crafted traffic that would crash the
system, leading to a denial of service.
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
More Information

Updated: 2019-01-14 21:55:10 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)