CVE-2008-3526

🗓️ 27 Aug 2008 20:00:00Reported by redhatType

Integer overflow in sctp_setsockopt_auth_key function in net/sctp/socket.c in Linux kernel 2.6.24-rc1 through 2.6.26.3 allows remote attackers to cause a denial of service or other impact

Reporter	Title	Published	Views	Family All 39
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the operating system openSUSE, which allow a malicious individual to compromise the accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the operating system openSUSE, which allow a malicious individual to compromise the accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
Cvelist	CVE-2008-3526	27 Aug 200820:00	–	cvelist
Debian	[SECURITY] [DSA 1636-1] New Linux 2.6.24 packages fix several vulnerabilities	11 Sep 200818:16	–	debian
Tenable Nessus	Debian DSA-1636-1 : linux-2.6.24 - denial of service/information leak	12 Sep 200800:00	–	nessus

NVD

Node

linux linux_kernelMatch2.6.24

linux linux_kernelMatch2.6.24rc2

linux linux_kernelMatch2.6.24rc3

linux linux_kernelMatch2.6.24.1

linux linux_kernelMatch2.6.24.2

linux linux_kernelMatch2.6.24.3

linux linux_kernelMatch2.6.24.4

linux linux_kernelMatch2.6.24.5

linux linux_kernelMatch2.6.24.6

linux linux_kernelMatch2.6.24.7

linux linux_kernelMatch2.6.24_rc1

linux linux_kernelMatch2.6.24_rc4

linux linux_kernelMatch2.6.24_rc5

linux linux_kernelMatch2.6.25

linux linux_kernelMatch2.6.25.1

linux linux_kernelMatch2.6.25.2

linux linux_kernelMatch2.6.25.3

linux linux_kernelMatch2.6.25.4

linux linux_kernelMatch2.6.25.5

linux linux_kernelMatch2.6.25.6

linux linux_kernelMatch2.6.25.7

linux linux_kernelMatch2.6.25.8

linux linux_kernelMatch2.6.25.9

linux linux_kernelMatch2.6.25.10

linux linux_kernelMatch2.6.25.11

linux linux_kernelMatch2.6.25.12

linux linux_kernelMatch2.6.25.13

linux linux_kernelMatch2.6.25.14

linux linux_kernelMatch2.6.25.15

linux linux_kernelMatch2.6.26

linux linux_kernelMatch2.6.26.1

linux linux_kernelMatch2.6.26.2

linux linux_kernelMatch2.6.26.3

Source	Link
redhat	www.redhat.com/support/errata/RHSA-2008-0857.html
securityfocus	www.securityfocus.com/bid/30847
mandriva	www.mandriva.com/security/advisories
git	www.git.kernel.org/
debian	www.debian.org/security/2008/dsa-1636
secunia	www.secunia.com/advisories/31881
ubuntu	www.ubuntu.com/usn/usn-659-1
openwall	www.openwall.com/lists/oss-security/2008/08/26/9
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/44723
lists	www.lists.opensuse.org/opensuse-security-announce/2008-10/msg00010.html

16 Jun 2026 22:55Current

6Medium risk

Vulners AI Score6

CVSS 27.8

EPSS0.03494

CWE-189