3 matches found
EUVD-2026-38872
In the Linux kernel, the following vulnerability has been resolved: sctp: fix OOB write to userspace in sctpgetsockoptpeerauthchunks sctpgetsockoptpeerauthchunks checks that the caller's optval buffer is large enough for the peer AUTH chunk list with if len gauthchunks, which lives at offset...
CVE-2026-53004
Summary of CVE-2026-53004 : In the Linux kernel, sctp_getsockopt_peer_auth_chunks can perform an out-of-bounds write to user space when the caller provides a short optval buffer. The check tests len vs num_chunks but forgets to account for sizeof(struct sctp_authchunks) header (8 bytes), allowing...
CVE-2008-2826
Integer overflow in the sctpgetsockoptlocaladdrsold function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp functionality in the Linux kernel before 2.6.25.9 allows local users to cause a denial of service resource consumption and system outage via vectors involving a large...