CVE-2008-4576

Impact:: Important
Public Date:: 2008-09-18

Bugzilla:: 466079: CVE-2008-4576 kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH

The MITRE CVE dictionary describes this issue as:

sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service (OOPS) via an INIT-ACK that states the peer does not support AUTH, which causes the sctp_process_init function to clean up active transports and triggers the OOPS when the T1-Init timer expires.

Find out more about CVE-2008-4576 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform	Errata	Release Date
MRG Grid for RHEL 5 Server (kernel-rt)	RHSA-2009:0009	2009-01-22
Red Hat Enterprise Linux 5 (kernel)	RHSA-2008:1017	2008-12-16

Last Modified 2018-05-01T10:29:34+00:00

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

CVE-2008-4576

Red Hat Security Errata