2 matches found
F5 Networks BIG-IP : Linux kernel SCTP vulnerabilities (K15910)
CVE-2014-3673 The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service system crash via a malformed ASCONF chunk, related to net/sctp/smmakechunk.c and net/sctp/smstatefuns.c. CVE-2014-3687 The sctpassoclookupasconfack function in...
CVE-2009-0065
CVE-2009-0065 affects the Linux kernel SCTP implementation: a buffer overflow in net/sctp/sm_statefuns.c allows a remote attacker to trigger an impact via a Forward-TSN chunk with a large stream ID on kernels before 2.6.28-git8. The vulnerability is described in multiple connected advisories (e.g...