CVE-2010-4526

Priority
Description
Race condition in the sctp_icmp_proto_unreachable function in
net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote
attackers to cause a denial of service (panic) via an ICMP unreachable
message to a socket that is already locked by a user, which causes the
socket to be freed and triggers list corruption, related to the
sctp_wait_for_connect function.
Ubuntu-Description
It was discovered that the ICMP stack did not correctly handle certain
unreachable messages. If a remote attacker were able to acquire a socket
lock, they could send specially crafted traffic that would crash the
system, leading to a denial of service.
Notes
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
Package
Upstream:released (2.6.34)
More Information

Updated: 2020-03-18 22:04:49 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)