CVE-2015-5283 in Kernel
Resumen (Inglés)
The sctp_init function in net/sctp/protocol.c in the Linux kernel before 4.2.3 has an incorrect sequence of protocol-initialization steps, which allows local users to cause a denial of service (panic or memory corruption) by creating SCTP sockets before all of the steps have finished.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Reservar
2015-07-01
Divulgación
2015-10-19
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 78509 | Linux Kernel SCTP Socket protocol.c sctp_init desbordamiento de búfer | 119 | No está definido | Arreglo oficial | CVE-2015-5283 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV