Launchpad CVE tracker

CVE 2010-1173

The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service (system crash) via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data.

Related bugs and status

CVE-2010-1173 (Candidate) is related to these bugs:

Bug #607824: Lucid update to 2.6.32.16 stable

Summary				In	Importance	Status
	607824	Lucid update to 2.6.32.16 stable		linux (Ubuntu)	Medium	Invalid
	607824	Lucid update to 2.6.32.16 stable		linux (Ubuntu Lucid)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.debian.org/...
MISC: http://www.mandriva.co...
MISC: https://bugzilla.redha...
MISC: http://www.redhat.com/...
MISC: http://article.gmane.o...
MISC: http://www.openwall.co...
MISC: http://marc.info/?l=os...
MISC: http://www.openwall.co...
MISC: http://git.kernel.org/...
MISC: http://kbase.redhat.co...
MISC: http://www.vmware.com/...
MISC: https://oval.cisecurit...

Launchpad.net

CVE 2010-1173

Related bugs and status

Related bugs

References