Back to search
CVE-2010-3705
Published: Nov 26, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
The sctp_auth_asoc_get_hmac function in net/sctp/auth.c in the Linux kernel before 2.6.36 does not properly validate the hmac_ids array of an SCTP peer, which allows remote attackers to cause a denial of service (memory corruption and panic) via a crafted value in the last element of this array.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
USN-1000-1
vendor-advisory
x_refsource_UBUNTU
https://bugzilla.redhat.com/show_bug.cgi?id=640036
x_refsource_CONFIRM
[oss-security] 20101004 CVE request: kernel: SCTP memory corruption in HMAC handling
mailing-list
x_refsource_MLIST
FEDORA-2010-18983
vendor-advisory
x_refsource_FEDORA
ADV-2010-3321
vdb-entry
x_refsource_VUPEN
RHSA-2010:0842
vendor-advisory
x_refsource_REDHAT
RHSA-2010:0958
vendor-advisory
x_refsource_REDHAT
[oss-security] 20101004 Re: CVE request: kernel: SCTP memory corruption in HMAC handling
mailing-list
x_refsource_MLIST
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36
x_refsource_CONFIRM
MDVSA-2011:029
vendor-advisory
x_refsource_MANDRIVA
[linux-kernel] 20101001 [PATCH] Fix out-of-bounds reading in sctp_asoc_get_hmac()
mailing-list
x_refsource_MLIST
42745
third-party-advisory
x_refsource_SECUNIA
DSA-2126
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now