An integer underflow flaw was found in the way the Linux kernel's Stream Control Transmission Protocol (SCTP) implementation processed certain COOKIE_ECHO packets. By sending a specially crafted SCTP packet, a remote attacker could use this flaw to prevent legitimate connections to a particular SCTP server socket to be made.
Find out more about CVE-2014-4667 from the
MITRE CVE dictionary dictionary and
This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5.