Lucene search
+L

258 matches found

RedHat Linux
RedHat Linux
added 2013/11/20 4:35 p.m.4 views

wireshark: DoS (infinite loop) in the SCTP dissector (wnpa-sec-2012-33)

Integer overflow in the dissectsackchunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Duplicate TSN count...

5CVSS6.4AI score0.02662EPSS
Exploits0References4
OSV
OSV
added 2013/09/25 12:0 a.m.3 views

UBUNTU-CVE-2013-4350

The IPv6 SCTP implementation in net/sctp/ipv6.c in the Linux kernel through 3.11.1 uses data structures and function calls that do not trigger an intended configuration of IPsec encryption, which allows remote attackers to obtain sensitive information by sniffing the network...

5CVSS7.1AI score0.04144EPSS
Exploits2References13
RedHat Linux
RedHat Linux
added 2013/08/20 6:55 p.m.5 views

kernel: sctp: duplicate cookie handling NULL pointer dereference

The sctpsfdo524dupcook function in net/sctp/smstatefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers to cause a denial of service NULL pointer dereference a...

5.4CVSS7.5AI score0.04707EPSS
Exploits1References4
OSV
OSV
added 2013/07/04 9:55 p.m.1 views

DEBIAN-CVE-2013-2206

The sctpsfdo524dupcook function in net/sctp/smstatefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers to cause a denial of service NULL pointer dereference a...

5.4CVSS7AI score0.04707EPSS
Exploits1References1
OSV
OSV
added 2013/06/21 12:0 a.m.3 views

UBUNTU-CVE-2013-2206

The sctpsfdo524dupcook function in net/sctp/smstatefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers to cause a denial of service NULL pointer dereference a...

5.4CVSS7.3AI score0.04707EPSS
Exploits1References9
OSV
OSV
added 2012/12/05 11:57 a.m.3 views

UBUNTU-CVE-2012-6056

Integer overflow in the dissectsackchunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Duplicate TSN count...

5CVSS6.3AI score0.02662EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2011/09/06 12:0 a.m.3 views

PT-2013-1396 · Red Hat +1 · Red Hat +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.21 Red Hat Enterprise Linux RHEL 5 Description: The issue is related to a certain Red Hat patch to the sctp sock migrate function in net/sctp/socket.c in the Linux kernel. It allows remote attackers to cause...

7.8CVSS7.2AI score0.03769EPSS
Exploits2References19
RedHat Linux
RedHat Linux
added 2011/04/08 2:53 a.m.14 views

kernel: sctp: a race between ICMP protocol unreachable and connect()

Race condition in the sctpicmpprotounreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service panic via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and...

7.1CVSS6.1AI score0.02523EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/01/04 4:49 p.m.3 views

kernel: sctp: do not reset the packet during sctp_packet_config

The sctppacketconfig function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial of service panic via a certain sequence of SCTP traffic...

7.8CVSS6.2AI score0.05542EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/03/17 3:1 a.m.8 views

kernel: sctp remote denial of service

The sctprcvootb function in the SCTP implementation in the Linux kernel before 2.6.23 allows remote attackers to cause a denial of service infinite loop via 1 an Out Of The Blue OOTB chunk or 2 a chunk of zero length...

7.8CVSS5.9AI score0.0452EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/05/20 1:5 a.m.6 views

kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID

Buffer overflow in net/sctp/smstatefuns.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN aka FORWARD-TSN chunk with a large stream ID...

10CVSS6AI score0.1673EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2009/02/10 3:50 p.m.6 views

kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID

Buffer overflow in net/sctp/smstatefuns.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN aka FORWARD-TSN chunk with a large stream ID...

10CVSS6AI score0.1673EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2009/02/04 3:5 p.m.8 views

kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID

Buffer overflow in net/sctp/smstatefuns.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN aka FORWARD-TSN chunk with a large stream ID...

10CVSS6AI score0.1673EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2009/01/22 10:39 a.m.6 views

kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH

sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service OOPS via an INIT-ACK that states the peer does not support AUTH, which causes the sctpprocessinit function to clean up active transports and triggers the OOPS when the T1-Init timer expires...

7.8CVSS5.8AI score0.0368EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/01/22 10:39 a.m.6 views

kernel: sctp: Fix kernel panic while process protocol violation parameter

The Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.27 does not properly handle a protocol violation in which a parameter has an invalid length, which allows attackers to cause a denial of service panic via unspecified vectors, related to...

7.8CVSS5.8AI score0.02659EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/10/07 7:16 p.m.5 views

Linux kernel sctp_setsockopt_auth_key() integer overflow

Integer overflow in the sctpsetsockoptauthkey function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel 2.6.24-rc1 through 2.6.26.3 allows remote attackers to cause a denial of service panic or possibly have unspecified other impact via a...

7.8CVSS6AI score0.03494EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2008/10/07 7:16 p.m.4 views

kernel: sctp_getsockopt_hmac_ident information disclosure

The sctpgetsockopthmacident function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted length value to limit copying of data from kernel memory, which allows loc...

4.7CVSS5.8AI score0.00833EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2006/08/10 7:31 p.m.7 views

security flaw

Linux SCTP lksctp before 2.6.17 allows remote attackers to cause a denial of service deadlock via a large number of small messages to a receiver application that cannot process the messages quickly enough, which leads to "spillover of the receive buffer."...

7.5CVSS5.8AI score0.03285EPSS
Exploits0References4
Rows per page
Query Builder