blob: b624c66489b4ea8bf601728ff7c687e041764766 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
Candidate: CVE-2006-4535
References:
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b9ac86727fc02cc7117ef3fe518a4d51cd573c82
Description:
fix for CVE-2006-3745 sctp fix from dave miller
Ubuntu-Description:
Sridhar Samudrala discovered a local Denial of Service vulnerability
in the handling of SCTP sockets. By opening such a socket with a
special SO_LINGER value, a local attacker could exploit this to crash
the kernel.
Notes:
Bugs:
upstream: released (2.6.18-rc6)
linux-2.6: released (2.6.18-1)
2.6.8-sarge-security: released (2.6.8-16sarge5) [sctp-priv-elevation-2.dpatch]
2.4.27-sarge-security: released (2.4.27-10sarge4) [228_sctp-priv-elevation-2.diff]
2.6.10-hoary-security: released (2.6.10-34.24)
2.6.12-breezy-security: released (2.6.12-10.40)
2.6.15-dapper-security: released (2.6.15-27.48)
2.6.17-edgy: released (2.6.17-10.31)
|