5 matches found
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992517)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992517 advisory. In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctpifwdtsnskip Currently, when traversing ifwdtsn skips with...
CVE-2023-53372 sctp: fix a potential overflow in sctp_ifwdtsn_skip
In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctpifwdtsnskip Currently, when traversing ifwdtsn skips with sctpwalkifwdtsn, it only checks the pos against the end of the chunk. However, the data left for the last pos may be sizeofstruct...
CVE-2023-53372
CVE-2023-53372 — Linux kernel SCTP vulnerability. The issue arises in sctp_ifwdtsn_skip where, while traversing ifwdtsn skips via _sctp_walk_ifwdtsn, the code may read beyond the chunk boundary because the remaining data can be smaller than sizeof(struct sctp_ifwdtsn_skip). This can cause a cover...
CVE-2023-53372
In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctpifwdtsnskip Currently, when traversing ifwdtsn skips with sctpwalkifwdtsn, it only checks the pos against the end of the chunk. However, the data left for the last pos may be sizeofstruct...
PT-2025-38351
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue in the sctp ifwdtsn skip function. A potential overflow can occur when traversing ifwdtsn skips, specifically during the dereference of data within the...