CVE-2010-4526 (retired)

Priority
Description
Race condition in the sctp_icmp_proto_unreachable function in
net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote
attackers to cause a denial of service (panic) via an ICMP unreachable
message to a socket that is already locked by a user, which causes the
socket to be freed and triggers list corruption, related to the
sctp_wait_for_connect function.
Ubuntu-Description
It was discovered that the ICMP stack did not correctly handle certain
unreachable messages. If a remote attacker were able to acquire a socket
lock, they could send specially crafted traffic that would crash the
system, leading to a denial of service.
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
More Information

Updated: 2019-03-26 11:54:18 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)