CVE-2013-4350

2013-09-2500:00:00

ubuntu.com

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

70.3%

JSON

The IPv6 SCTP implementation in net/sctp/ipv6.c in the Linux kernel through
3.11.1 uses data structures and function calls that do not trigger an
intended configuration of IPsec encryption, which allows remote attackers
to obtain sensitive information by sniffing the network.

Bugs

Notes

Author	Note
jdstrand	requires IPv6 on SCTP IPsec traffic Per kernel team, too intrusive to backport

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlinux< 3.2.0-57.87UNKNOWN
ubuntu12.10noarchlinux< 3.5.0-43.66UNKNOWN
ubuntu13.04noarchlinux< 3.8.0-34.49UNKNOWN
ubuntu13.10noarchlinux< 3.11.0-13.20UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1628.40UNKNOWN
ubuntu12.10noarchlinux-armadaxp< 3.5.0-1624.33UNKNOWN
ubuntu12.04noarchlinux-lts-quantal< 3.5.0-43.66~precise1UNKNOWN
ubuntu12.04noarchlinux-lts-raring< 3.8.0-34.49~precise1UNKNOWN
ubuntu12.04noarchlinux-ti-omap4< 3.2.0-1441.60UNKNOWN
ubuntu12.10noarchlinux-ti-omap4< 3.5.0-235.51UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	12.04	noarch	linux	< 3.2.0-57.87	UNKNOWN
ubuntu	12.10	noarch	linux	< 3.5.0-43.66	UNKNOWN
ubuntu	13.04	noarch	linux	< 3.8.0-34.49	UNKNOWN
ubuntu	13.10	noarch	linux	< 3.11.0-13.20	UNKNOWN
ubuntu	12.04	noarch	linux-armadaxp	< 3.2.0-1628.40	UNKNOWN
ubuntu	12.10	noarch	linux-armadaxp	< 3.5.0-1624.33	UNKNOWN
ubuntu	12.04	noarch	linux-lts-quantal	< 3.5.0-43.66~precise1	UNKNOWN
ubuntu	12.04	noarch	linux-lts-raring	< 3.8.0-34.49~precise1	UNKNOWN
ubuntu	12.04	noarch	linux-ti-omap4	< 3.2.0-1441.60	UNKNOWN
ubuntu	12.10	noarch	linux-ti-omap4	< 3.5.0-235.51	UNKNOWN