Back to search
CVE-2014-7841
Published: Nov 30, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The sctp_process_param function in net/sctp/sm_make_chunk.c in the SCTP implementation in the Linux kernel before 3.17.4, when ASCONF is used, allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via a malformed INIT chunk.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
62735
third-party-advisory
x_refsource_SECUNIA
RHSA-2015:0695
vendor-advisory
x_refsource_REDHAT
http://linux.oracle.com/errata/ELSA-2015-3004.html
x_refsource_CONFIRM
https://support.f5.com/kb/en-us/solutions/public/16000/000/sol16016.html
x_refsource_CONFIRM
SUSE-SU-2015:0652
vendor-advisory
x_refsource_SUSE
RHSA-2015:0285
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0087
vendor-advisory
x_refsource_REDHAT
DSA-3093
vendor-advisory
x_refsource_DEBIAN
SUSE-SU-2015:0481
vendor-advisory
x_refsource_SUSE
71081
vdb-entry
x_refsource_BID
openSUSE-SU-2015:0566
vendor-advisory
x_refsource_SUSE
https://bugzilla.redhat.com/show_bug.cgi?id=1163087
x_refsource_CONFIRM
RHSA-2015:0284
vendor-advisory
x_refsource_REDHAT
http://linux.oracle.com/errata/ELSA-2015-3005.html
x_refsource_CONFIRM
SUSE-SU-2015:0529
vendor-advisory
x_refsource_SUSE
62597
third-party-advisory
x_refsource_SECUNIA
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.4
x_refsource_CONFIRM
RHSA-2015:0102
vendor-advisory
x_refsource_REDHAT
62305
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now