CVE-2008-2826

2008-07-02T16:41:00
ID CVE-2008-2826
Type cve
Reporter cve@mitre.org
Modified 2020-08-25T20:28:00

Description

Integer overflow in the sctp_getsockopt_local_addrs_old function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) functionality in the Linux kernel before 2.6.25.9 allows local users to cause a denial of service (resource consumption and system outage) via vectors involving a large addr_num field in an sctp_getaddrs_old data structure.