CVE-2006-2272 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-2272
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-2272

Description: Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/26431 UBUNTU http://www.ubuntu.com/usn/usn-302-1 TRUSTIX http://www.trustix.org/errata/2006/0026 SUSE http://www.novell.com/linux/security/advisories/2006-05-31.html SAID Secunia Advisory: SA19990 Secunia Advisory: SA20157 Secunia Advisory: SA20237 Secunia Advisory: SA20671 Secunia Advisory: SA20716 Secunia Advisory: SA20914 Secunia Advisory: SA21745 Secunia Advisory: SA20398 Secunia Advisory: SA21476 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0493.html OSVDB 25633 MISC http://labs.musecurity.com/advisories/MU-200605-01.txt MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:086 FULLDISC http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0227.html DEBIAN http://www.debian.org/security/2006/dsa-1103 http://www.debian.org/security/2006/dsa-1097 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm http://git.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=62b08083ec3dbfd7e533c8d230dd1d8191a6e813 BID 17910

Return to the previous page.