CVE-2010-3432

Published: 01 October 2010

The sctp_packet_config function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial of service (panic) via a certain sequence of SCTP traffic.

From the Ubuntu security team

Thomas Dreibholz discovered that SCTP did not correctly handle appending packet chunks. A remote attacker could send specially crafted traffic to crash the system, leading to a denial of service.

Priority

Status

Package	Release	Status
linux Launchpad, Ubuntu, Debian	Upstream	Released (2.6.36~rc5)







	Patches: Upstream: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=4bdab43323b459900578b200a4b8cf9713ac8fab Hardy: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-3432/patches/hardy/linux/0001-sctp-Do-not-reset-the-packet-during-sctp_packet_config.txt Jaunty: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-3432/patches/jaunty/linux/0001-sctp-Do-not-reset-the-packet-during-sctp_packet_config.txt Karmic: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-3432/patches/karmic/linux/0001-sctp-Do-not-reset-the-packet-during-sctp_packet_config.txt Lucid: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-3432/patches/lucid/linux/0001-sctp-Do-not-reset-the-packet-during-sctp_packet_config.txt
linux-ec2 Launchpad, Ubuntu, Debian	Upstream	Released (2.6.36~rc5)







linux-fsl-imx51 Launchpad, Ubuntu, Debian	Upstream	Released (2.6.36~rc5)







linux-lts-backport-maverick Launchpad, Ubuntu, Debian	Upstream	Released (2.6.36~rc5)







linux-mvl-dove Launchpad, Ubuntu, Debian	Upstream	Released (2.6.36~rc5)







linux-source-2.6.15 Launchpad, Ubuntu, Debian	Upstream	Released (2.6.36~rc5)







	Patches: Dapper: http://chinstrap.ubuntu.com/~bradf/CVEs/CVE-2010-3432/patches/dapper/linux/0001-sctp-Do-not-reset-the-packet-during-sctp_packet_config.txt

References

Bugs

https://bugs.launchpad.net/ubuntu/+source/linux/+bug/644209

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›