PT-2025-46761

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s SCTP implementation related to Message Authentication Code MAC comparison. The MAC comparison was not performed in constant time, potentially allowing...

PT-2025-35991

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the handling of cloned GSO Generic Segmentation Offload packets within the SCTP Stream Control Transmission Protocol stack. Specifically, a...

sctp: detect and prevent references to a freed transport in sendmsg

...

The vulnerability of the sctp_rcv_ootb() function in the net/sctp/input.c module of the Linux operating system’s SCTP protocol implementation allows a attacker to cause a service failure.

The vulnerability of the sctprcvootb function in the net/sctp/input.c module of the Linux operating system’s SCTP protocol implementation is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

Important: kernel6.12

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: bpf: track changespktdata property for global functions CVE-2024-58098 In the Linux kernel, the following vulnerability has been resolved: bpf: check changespktdata property for extension programs CVE-2024-58100 I...

The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer in the procsctpdoalphabeta function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2021-23013

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.1.x before 12.1.5.3, the Traffic Management Microkernel TMM may stop responding when processing Stream Control Transmission Protocol SCTP traffic under certain conditions. This...

CVE-2020-5918

In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management Microkernel TMM may stop responding when processing Stream Control Transmission Protocol SCTP traffic when traffic volume is high. This vulnerability...

CVE-2025-41399

When a Stream Control Transmission Protocol SCTP profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

The vulnerability of the sctp_sf_do_dupcook_a() function in the net/sctp/sm_statefuns.c module of the SCTP protocol implementation in the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the sctpsfdodupcooka function in the net/sctp/smstatefuns.c module of the Linux operating system’s SCTP protocol implementation is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2025-41399

When a Stream Control Transmission Protocol SCTP profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

F5 BIG-IP 安全漏洞

F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, and load balancing from F5 USA. A security vulnerability exists in F5 BIG-IP that stems from an SCTP configuration that results in increased memory resource utilization...

Avoid Using Uncommon Network Services

Some protocols are seldom used and their communities develop slowly. Therefore, related security issues cannot be quickly resolved. If these protocols are not disabled, attackers may exploit the protocols or code vulnerabilities to launch attacks. Stream Control Transmission Protocol SCTP is used...

CLSA-2025-1746479711 kernel-uek: Fix of 218 CVEs

sctp: sysctl: authenable: avoid using current-nsproxy - sctp: sysctl: cookiehmacalg: avoid using current-nsproxy CVE-2025-21640 - bpf: Use preemptcount directly in bpfsendsignalcommon - Revert "sctp: sysctl: cookiehmacalg: avoid using current-nsproxy" - jfs: fix slab-out-of-bounds read in eaget -...

The vulnerability of the sctp_listen_start() function in the Linux kernel’s SCTP component allows a hacker to trigger a service failure.

The vulnerability of the sctplistenstart function in the SCTP component of the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

SUSE CVE-2025-23142

In the Linux kernel, the following vulnerability has been resolved: sctp: detect and prevent references to a freed transport in sendmsg sctpsendmsg re-uses associations and transports when possible by doing a lookup based on the socket endpoint and the message destination address, and then...