A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw an attempt to use more buffer than is allocated triggers a BUG_ON issue leading to a denial of service (DOS).

...

Linux kernel denial-of-service vulnerability (CNVD-2022-68576)

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. Linux kernel is vulnerable to a denial-of-service vulnerability caused by a flaw in the sctpmakestrresetreq function in net/sctp/smmakechunk. A locally authenticated attacker can exploit this flaw to cau...