CVE-2010-4526

Priority
Description
Race condition in the sctp_icmp_proto_unreachable function in
net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote
attackers to cause a denial of service (panic) via an ICMP unreachable
message to a socket that is already locked by a user, which causes the
socket to be freed and triggers list corruption, related to the
sctp_wait_for_connect function.
Ubuntu-Description
It was discovered that the ICMP stack did not correctly handle certain
unreachable messages. If a remote attacker were able to acquire a socket
lock, they could send specially crafted traffic that would crash the
system, leading to a denial of service.
Notes
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
More Information

Updated: 2019-12-05 20:56:04 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)