3 matches found
Linux Kernel < 2.6.26.4 - SCTP Kernel Memory Disclosure Exploit
No description provided by source. / cve-2008-4113.c Linux Kernel 2.6.26.4 SCTP kernel memory disclosure Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4113 The sctpgetsockopthmacident function in net/sctp/socket.c in t...
kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option
The sctpauthepsethmacs function in net/sctp/auth.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, does not verify that the identifier index is within the bounds established by SCTPAUTHHMACIDMAX, which...
kernel: sctp_getsockopt_hmac_ident information disclosure
The sctpgetsockopthmacident function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted length value to limit copying of data from kernel memory, which allows loc...