CVE-2010-3432

Updated: 2019-03-26

CWE: Other

Description:

The sctp_packet_config function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial of service (panic) via a certain sequence of SCTP traffic.

CVSS3:


Vendor State

OS Vendor version Errata
RHEL 6 2.6.32-71.7.1.el6 RHSA-2010:0842
CentOS 6 2.6.32-71.7.1.el6 CESA-2010:0842
CentOS 6 plus 2.6.32-71.7.1.el6.centos.plus CESA-2010:0842
Scientific 6 2.6.32-71.7.1.el6 CESA-2010:0842

KernelCare State

OS Original kernel version State
RHEL 6
Ready For Release
CentOS 6
Ready For Release
CentOS 6 plus
Ready For Release
OpenVZ 6
Ready For Release
Scientific 6
Ready For Release
OEL 6 Dell
Will Not Fix